Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 3, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227611 | 4.3 | 警告 | phpslideshow | - | PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6135 | 2012-12-20 18:33 | 2007-11-27 | Show | GitHub Exploit DB Packet Storm |
| 227612 | 7.5 | 危険 | PHPKIT | - | PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6134 | 2012-12-20 18:33 | 2007-11-27 | Show | GitHub Exploit DB Packet Storm |
| 227613 | 2.1 | 注意 | レッドハット | - | scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性 |
CWE-16
環境設定 |
CVE-2007-6131 | 2012-12-20 18:33 | 2007-11-14 | Show | GitHub Exploit DB Packet Storm |
| 227614 | 7.5 | 危険 | project alumni | - | project alumni における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6127 | 2012-12-20 18:33 | 2007-11-26 | Show | GitHub Exploit DB Packet Storm |
| 227615 | 4.3 | 警告 | project alumni | - | project alumni におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6126 | 2012-12-20 18:33 | 2007-11-26 | Show | GitHub Exploit DB Packet Storm |
| 227616 | 7.5 | 危険 | softbiz | - | Softbiz Freelancers Script の search_form.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-6125 | 2012-12-20 18:33 | 2007-11-26 | Show | GitHub Exploit DB Packet Storm |
| 227617 | 4.3 | 警告 | softbiz | - | Softbiz Freelancers Script の signin.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6124 | 2012-12-20 18:33 | 2007-11-26 | Show | GitHub Exploit DB Packet Storm |
| 227618 | 6.8 | 警告 | talkback | - | TalkBack における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-6105 | 2012-12-20 18:33 | 2007-11-23 | Show | GitHub Exploit DB Packet Storm |
| 227619 | 2.6 | 注意 | The phpMyAdmin Project | - | phpMyAdmin の libraries/auth/cookie.auth.lib.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6100 | 2012-12-20 18:33 | 2007-11-20 | Show | GitHub Exploit DB Packet Storm |
| 227620 | 9.3 | 危険 | phpbbviet | - | phpBBViet の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-6088 | 2012-12-20 18:33 | 2007-11-21 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 3, 2026, 4:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 213571 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop). |
CWE-125
Out-of-bounds Read |
CVE-2019-7576 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213572 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c. |
CWE-787
Out-of-bounds Write |
CVE-2019-7575 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213573 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-7574 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213574 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop). |
CWE-125
Out-of-bounds Read |
CVE-2019-7573 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213575 | 8.8 |
HIGH
Network |
libsdl debian opensuse canonical fedoraproject |
simple_directmedia_layer debian_linux leap ubuntu_linux fedora |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-7572 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213576 | 6.5 |
MEDIUM
Network |
pbootcms | pbootcms | A CSRF vulnerability was found in PbootCMS v1.3.6 that can delete users via an admin.php/User/del/ucode/ URI. |
CWE-352
Origin Validation Error |
CVE-2019-7570 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213577 | 8.8 |
HIGH
Network |
wdoyo | doyo | An issue was discovered in DOYO (aka doyocms) 2.3(20140425 update). There is a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1. |
CWE-352
Origin Validation Error |
CVE-2019-7569 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213578 | 9.8 |
CRITICAL
Network |
baijiacms_project | baijiacms | An issue was discovered in baijiacms V4 that can result in time-based blind SQL injection to get data via the cate parameter in an index.php?act=index request. |
CWE-89
SQL Injection |
CVE-2019-7568 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213579 | 6.1 |
MEDIUM
Network |
bijiadao | waimai_super_cms | An issue was discovered in Waimai Super Cms 20150505. admin.php?m=Member&a=adminaddsave has XSS via the username or password parameter. |
CWE-79
Cross-site Scripting |
CVE-2019-7567 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213580 | 8.8 |
HIGH
Network |
cszcms | csz_cms | CSZ CMS 1.1.8 has CSRF via admin/users/new/add. |
CWE-352
Origin Validation Error |
CVE-2019-7566 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |