Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251081 7.5 危険 feindt computerservice - News-Script の newsadmin.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2708 2012-06-26 15:46 2007-05-16 Show GitHub Exploit DB Packet Storm
251082 7.5 危険 Geeklog - Media Gallery の maint/ftpmedia.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2706 2012-06-26 15:46 2007-05-16 Show GitHub Exploit DB Packet Storm
251083 7.8 危険 BEAシステムズ - BEA WebLogic Integration の Test View Console におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2705 2012-06-26 15:46 2007-05-15 Show GitHub Exploit DB Packet Storm
251084 3.6 注意 BEAシステムズ - BEA WebLogic Portal GA における特権を有するリソースへアクセスされる脆弱性 - CVE-2007-2703 2012-06-26 15:46 2007-05-15 Show GitHub Exploit DB Packet Storm
251085 3.5 注意 BEAシステムズ - BEA WebLogic Portal GA の GroupSpace アプリケーションにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2702 2012-06-26 15:46 2007-05-15 Show GitHub Exploit DB Packet Storm
251086 7.5 危険 アップル
アドビシステムズ		 - Adobe CS3 で使用される Adobe Version Cue CS3 Server のインストーラにおけるファイアウォールルールを回避される脆弱性 - CVE-2007-2682 2012-06-26 15:46 2007-05-16 Show GitHub Exploit DB Packet Storm
251087 7.5 危険 b2evolution - b2evolution の blogs/index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2681 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
251088 7.5 危険 censura - Censura の includes/funcs_vendors.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2673 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
251089 4.3 警告 globalmegacorp - PHPChain におけるインストールパスを取得される脆弱性 - CVE-2007-2670 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
251090 4.3 警告 globalmegacorp - PHPChain におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2669 2012-06-26 15:46 2007-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247271 9.8 CRITICAL
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2019.010.20069 and earlier, 2017.011.30113 and earlier version, and 2015.006.30464 and earlier have a security bypass vulnerability. Successful exploitation could le… CWE-269
 Improper Privilege Management 		CVE-2018-19725 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247272 5.5 MEDIUM
Local 		opensuse supportutils If the attacker manages to create files in the directory used to collect log files in supportutils before version 3.1-5.7.1 (e.g. with CVE-2018-19638) he can kill arbitrary processes on the local mac… CWE-20
 Improper Input Validation  		CVE-2018-19640 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247273 7.8 HIGH
Local 		opensuse supportutils If supportutils before version 3.1-5.7.1 is run with -v to perform rpm verification and the attacker manages to manipulate the rpm listing (e.g. with CVE-2018-19638) he can execute arbitrary commands… NVD-CWE-noinfo
CVE-2018-19639 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247274 4.7 MEDIUM
Local 		opensuse supportutils In supportutils, before version 3.1-5.7.1 and if pacemaker is installed on the system, an unprivileged user could have overwritten arbitrary files in the directory that is used by supportutils to col… CWE-59
Link Following 		CVE-2018-19638 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247275 5.5 MEDIUM
Local 		opensuse supportutils Supportutils, before version 3.1-5.7.1, wrote data to static file /tmp/supp_log, allowing local attackers to overwrite files on systems without symlink protection CWE-59
Link Following 		CVE-2018-19637 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247276 7.8 HIGH
Local 		opensuse supportutils Supportutils, before version 3.1-5.7.1, when run with command line argument -A searched the file system for a ndspath binary. If an attacker provides one at an arbitrary location it is executed with … CWE-20
 Improper Input Validation  		CVE-2018-19636 2024-11-21 12:58 2019-03-6 Show GitHub Exploit DB Packet Storm
247277 9.8 CRITICAL
Network 		microfocus solutions_business_manager An Authentication Bypass issue exists in Solutions Business Manager (SBM) (formerly Serena Business Manager (SBM)) versions prior to 11.5. CWE-287
Improper Authentication 		CVE-2018-19645 2024-11-21 12:58 2019-02-13 Show GitHub Exploit DB Packet Storm
247278 8.6 HIGH
Network 		princexml princexml PrinceXML, versions 10 and below, is vulnerable to XXE due to the lack of protection against external entities. If an attacker passes HTML referencing an XML file (e.g., in an IFRAME element), Prince… CWE-611
XXE 		CVE-2018-19858 2024-11-21 12:58 2019-01-31 Show GitHub Exploit DB Packet Storm
247279 6.1 MEDIUM
Network 		freshrss freshrss Multiple cross-site scripting (XSS) vulnerabilities in GET requests in FreshRSS 1.11.1 allow remote attackers to inject arbitrary web script or HTML via the (1) c parameter or (2) a parameter. CWE-79
Cross-site Scripting 		CVE-2018-19782 2024-11-21 12:58 2019-01-31 Show GitHub Exploit DB Packet Storm
247280 7.5 HIGH
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2018.011.20058 and earlier, 2017.011.30099 and earlier, and 2015.006.30448 and earlier have an out-of-bounds read vulnerability. Successful exploitation could lead t… CWE-125
Out-of-bounds Read 		CVE-2018-19723 2024-11-21 12:58 2019-01-29 Show GitHub Exploit DB Packet Storm