Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251001 7.5 危険 FreeType Project - FreeType の src/base/ftbimap.c におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3506 2012-06-26 15:46 2007-07-2 Show GitHub Exploit DB Packet Storm
251002 4.3 警告 JBMC Software - DirectAdmin の CMD_USER_STATS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3501 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
251003 6.8 警告 conti - Conti FtpServer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3492 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
251004 9.3 危険 チェック・ポイント・ソフトウェア・テクノロジーズ - Check Point VPN-1 Edge X 埋め込み型 NGX におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-3489 2012-06-26 15:46 2007-06-29 Show GitHub Exploit DB Packet Storm
251005 4.3 警告 altavista - AltaVista の検索エンジンにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3486 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
251006 7.8 危険 アップル
マイクロソフト
- Apple Safari における "同一生成元ポリシ" を回避される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-3482 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
251007 4.3 警告 LibGD project - GD Graphics Library の gdImageStringFTEx におけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-362
競合状態
CVE-2007-3478 2012-06-26 15:46 2007-06-28 Show GitHub Exploit DB Packet Storm
251008 7.5 危険 clicktech - ClickGallery Server の edit_image.asp における SQL インジェクションの脆弱性 - CVE-2007-3411 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
251009 7.5 危険 elkagroup - elkagroup Image Gallery の property.php における SQL インジェクションの脆弱性 - CVE-2007-3461 2012-06-26 15:46 2007-06-27 Show GitHub Exploit DB Packet Storm
251010 7.5 危険 eva-web - EVA-Web の index.php3 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3460 2012-06-26 15:46 2007-06-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247551 5.5 MEDIUM
Local
agilebits 1password An issue was discovered in 1Password 7.2.3.BETA before 7.2.3.BETA-3 on macOS. A mistake in error logging resulted in instances where sensitive data passed from Safari to 1Password could be logged loc… CWE-532
 Inclusion of Sensitive Information in Log Files
CVE-2018-19863 2024-11-21 12:58 2018-12-23 Show GitHub Exploit DB Packet Storm
247552 4.8 MEDIUM
Network
statamic statamic Statamic 2.10.3 allows XSS via First Name or Last Name to the /users URI in an 'Add new user' request. CWE-79
Cross-site Scripting
CVE-2018-19598 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247553 4.8 MEDIUM
Network
cmsmadesimple cms_made_simple CMS Made Simple 2.2.8 allows XSS via an uploaded SVG document, a related issue to CVE-2017-16798. CWE-79
Cross-site Scripting
CVE-2018-19597 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247554 4.8 MEDIUM
Network
zurmo zurmo Zurmo 3.2.4 allows HTML Injection via an admin's use of HTML in the report section, a related issue to CVE-2018-19506. CWE-79
Cross-site Scripting
CVE-2018-19596 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247555 4.8 MEDIUM
Network
cmsimple cmsimple CMSimple 4.7.5 has XSS via an admin's upload of an SVG file at a ?userfiles&subdir=userfiles/images/flags/ URI. CWE-79
Cross-site Scripting
CVE-2018-19508 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247556 4.8 MEDIUM
Network
cmsimple cmsimple CMSimple 4.7.5 has XSS via an admin's use of a ?file=config&action=array URI. CWE-79
Cross-site Scripting
CVE-2018-19507 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247557 4.8 MEDIUM
Network
zurmo zurmo Zurmo 3.2.4 has XSS via an admin's use of the name parameter in the reports section, aka the app/index.php/reports/default/details?id=1 URI. CWE-79
Cross-site Scripting
CVE-2018-19506 2024-11-21 12:58 2018-12-20 Show GitHub Exploit DB Packet Storm
247558 6.5 MEDIUM
Network
artica integria_ims Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary user when the ID number is known. CWE-352
 Origin Validation Error
CVE-2018-19829 2024-11-21 12:58 2018-12-19 Show GitHub Exploit DB Packet Storm
247559 6.1 MEDIUM
Network
sensiolabs
fedoraproject
debian
symfony
fedora
debian_linux
An open redirect was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9 and 4.2.x before 4.2.1. By using backslashes in the `_f… CWE-601
Open Redirect
CVE-2018-19790 2024-11-21 12:58 2018-12-19 Show GitHub Exploit DB Packet Storm
247560 5.3 MEDIUM
Network
sensiolabs
debian
symfony
debian_linux
An issue was discovered in Symfony 2.7.x before 2.7.50, 2.8.x before 2.8.49, 3.x before 3.4.20, 4.0.x before 4.0.15, 4.1.x before 4.1.9, and 4.2.x before 4.2.1. When using the scalar type hint `strin… CWE-434
 Unrestricted Upload of File with Dangerous Type 
CVE-2018-19789 2024-11-21 12:58 2018-12-19 Show GitHub Exploit DB Packet Storm