Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
251131 4 警告 activeWeb - activeWeb contentserver CMS における任意のディレクトリのファイルを作成される脆弱性 - CVE-2007-3018 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
251132 4 警告 activeWeb - activeWeb contentserver CMS の WYSIWYG エディタアプレットにおける任意の JavaScript を挿入される脆弱性 - CVE-2007-3017 2012-06-26 15:46 2007-07-16 Show GitHub Exploit DB Packet Storm
251133 4.3 警告 activeWeb - activeWeb contentserver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3014 2012-06-26 15:46 2007-07-15 Show GitHub Exploit DB Packet Storm
251134 6.5 警告 activeWeb - activeWeb contentserver における SQL インジェクションの脆弱性 - CVE-2007-3013 2012-06-26 15:46 2007-07-15 Show GitHub Exploit DB Packet Storm
251135 5 警告 富士通 - Fujitsu-Siemens Computers PRIMERGY BX300 における重要な情報を取得される脆弱性 - CVE-2007-3012 2012-06-26 15:46 2007-07-5 Show GitHub Exploit DB Packet Storm
251136 7.5 危険 富士通 - Fujitsu-Siemens Computers ServerView におけるコマンドを実行される脆弱性 - CVE-2007-3011 2012-06-26 15:46 2007-07-5 Show GitHub Exploit DB Packet Storm
251137 6.8 警告 acoustica - Acoustica MP3 CD Burner におけるバッファオーバフローの脆弱性 - CVE-2007-3006 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251138 7.5 危険 diangemilang - DGNews の news.php における SQL インジェクションの脆弱性 - CVE-2007-2994 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251139 4.3 警告 evenzia - Evenzia CMS の includes/send.inc.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2991 2012-06-26 15:46 2007-06-4 Show GitHub Exploit DB Packet Storm
251140 9.3 危険 btglobalservices - British Telecommunications Business Connect webhelper の ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-2983 2012-06-26 15:46 2007-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
247561 5.5 MEDIUM
Local
driveragent driveragent DriverAgent 2.2015.7.14, which includes DrvAgent64.sys 1.0.0.1, allows a user to send an IOCTL (0x800020F4) with a buffer containing user defined content. The driver's subroutine will execute a wrmsr… CWE-20
 Improper Input Validation 
CVE-2018-19522 2024-11-21 12:58 2018-12-19 Show GitHub Exploit DB Packet Storm
247562 5.5 MEDIUM
Local
virustotal yara In YARA 3.8.1, bytecode in a specially crafted compiled rule is exposed to information about its environment, in libyara/exec.c. This is a consequence of the design of the YARA virtual machine. CWE-200
Information Exposure
CVE-2018-19976 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247563 5.5 MEDIUM
Local
virustotal yara In YARA 3.8.1, bytecode in a specially crafted compiled rule can read data from any arbitrary address in memory, in libyara/exec.c. Specifically, OP_COUNT can read a DWORD. CWE-125
Out-of-bounds Read
CVE-2018-19975 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247564 5.5 MEDIUM
Local
virustotal yara In YARA 3.8.1, bytecode in a specially crafted compiled rule can read uninitialized data from VM scratch memory in libyara/exec.c. This can allow attackers to discover addresses in the real stack (no… CWE-908
 Use of Uninitialized Resource
CVE-2018-19974 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247565 6.5 MEDIUM
Network
printeron printeron PrinterOn Enterprise 4.1.4 allows Arbitrary File Deletion. CWE-20
 Improper Input Validation 
CVE-2018-19936 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247566 6.1 MEDIUM
Network
bolt bolt_cms Bolt CMS <3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and New Entry. CWE-79
Cross-site Scripting
CVE-2018-19933 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247567 6.1 MEDIUM
Network
artica integria_ims Artica Integria IMS 5.0.83 has XSS via the search_string parameter. CWE-79
Cross-site Scripting
CVE-2018-19828 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247568 6.1 MEDIUM
Network
infovista vistaportal Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SharedCriteria.jsp" has reflected XSS via the ConnPoolName or GroupId parameter. CWE-79
Cross-site Scripting
CVE-2018-19822 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247569 6.1 MEDIUM
Network
infovista vistaportal Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SecurityPolicies.jsp" has reflected XSS via the ConnPoolName parameter. CWE-79
Cross-site Scripting
CVE-2018-19821 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm
247570 6.1 MEDIUM
Network
infovista vistaportal Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Roles.jsp" has reflected XSS via the ConnPoolName parameter. CWE-79
Cross-site Scripting
CVE-2018-19820 2024-11-21 12:58 2018-12-18 Show GitHub Exploit DB Packet Storm