Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250671 7.5 危険 cartkeeper - CartKeeper CKGold Shopping Cart の category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4736 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
250672 9.3 危険 Aztech Group Ltd - Aztech DSL600EU ルータにおける Web インターフェースに接続される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2007-4733 2012-06-26 15:54 2007-09-6 Show GitHub Exploit DB Packet Storm
250673 4.3 警告 Apache Software Foundation - Apache Tomcat の cal2.jsp における任意のユーザとしてイベントを追加される脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2007-4724 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250674 7.5 危険 jasio.net
Apache Software Foundation
- Ragnarok Online Control Panel におけるディレクトリトラバーサルの脆弱性 CWE-22
CWE-287
CVE-2007-4723 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250675 7.5 危険 212cafe - 212cafeBoard の read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-4719 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250676 5.1 警告 Claroline Consortium - Claroline の inc/lib/language.lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-4718 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250677 3.5 注意 Claroline Consortium - Claroline におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-4717 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250678 7.5 危険 enetman - eNetman の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-4712 2012-06-26 15:54 2007-09-5 Show GitHub Exploit DB Packet Storm
250679 9.3 危険 アップル - Apple Mac OS X の Address Book におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題
CVE-2007-4708 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
250680 4 警告 Firebird Project - Firebird の Services API におけるサーバログ (firebird.log) を読まれる脆弱性 CWE-200
CWE-264
CVE-2007-4669 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
248021 8.8 HIGH
Network
paessler prtg_network_monitor PRTG Network Monitor before 18.3.44.2054 allows a remote authenticated attacker (with read-write privileges) to execute arbitrary code and OS commands with system privileges. When creating an HTTP Ad… CWE-20
 Improper Input Validation 
CVE-2018-19204 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248022 7.5 HIGH
Network
paessler prtg_network_monitor PRTG Network Monitor before 18.2.41.1652 allows remote unauthenticated attackers to terminate the PRTG Core Server Service via a special HTTP request. NVD-CWE-noinfo
CVE-2018-19203 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248023 7.5 HIGH
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri* function. CWE-476
 NULL Pointer Dereference
CVE-2018-19200 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248024 9.8 CRITICAL
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an integer overflow via a uriComposeQuery* or uriComposeQueryEx* function because of an unchecked multiplication. CWE-190
 Integer Overflow or Wraparound
CVE-2018-19199 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248025 9.8 CRITICAL
Network
uriparser_project
debian
uriparser
debian_linux
An issue was discovered in uriparser before 0.9.0. UriQuery.c allows an out-of-bounds write via a uriComposeQuery* or uriComposeQueryEx* function because the '&' character is mishandled in certain co… CWE-787
 Out-of-bounds Write
CVE-2018-19198 2024-11-21 12:57 2018-11-13 Show GitHub Exploit DB Packet Storm
248026 4.9 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. admin\controller\database.php allows arbitrary directory deletion via admin/index.php?c=database&a=import&paths[]=../ directory traversal. CWE-22
Path Traversal
CVE-2018-19197 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248027 9.8 CRITICAL
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. It allows remote attackers to execute arbitrary code by using the type parameter to bypass the standard admin\controller\uploadfile.php restrictions on up… CWE-94
Code Injection
CVE-2018-19196 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248028 6.1 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. There is XSS related to the template\default\show_product.html file. CWE-79
Cross-site Scripting
CVE-2018-19195 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248029 5.3 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. /admin/index.php?c=database allows full path disclosure in a "failed to open stream" error message. CWE-200
Information Exposure
CVE-2018-19194 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm
248030 6.1 MEDIUM
Network
xiaocms xiaocms An issue was discovered in XiaoCms 20141229. There is XSS via the largest input box on the "New news" screen. CWE-79
Cross-site Scripting
CVE-2018-19193 2024-11-21 12:57 2018-11-12 Show GitHub Exploit DB Packet Storm