Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227611 4.3 警告 phpslideshow - PHPSlideShow の phpslideshow.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6135 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
227612 7.5 危険 PHPKIT - PHPKIT の pkinc/public/article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6134 2012-12-20 18:33 2007-11-27 Show GitHub Exploit DB Packet Storm
227613 2.1 注意 レッドハット - scanbuttond の buttonpressed.sh における任意のファイルを上書きされる脆弱性 CWE-16
環境設定 		CVE-2007-6131 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
227614 7.5 危険 project alumni - project alumni における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6127 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
227615 4.3 警告 project alumni - project alumni におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6126 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
227616 7.5 危険 softbiz - Softbiz Freelancers Script の search_form.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6125 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
227617 4.3 警告 softbiz - Softbiz Freelancers Script の signin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6124 2012-12-20 18:33 2007-11-26 Show GitHub Exploit DB Packet Storm
227618 6.8 警告 talkback - TalkBack における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6105 2012-12-20 18:33 2007-11-23 Show GitHub Exploit DB Packet Storm
227619 2.6 注意 The phpMyAdmin Project - phpMyAdmin の libraries/auth/cookie.auth.lib.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6100 2012-12-20 18:33 2007-11-20 Show GitHub Exploit DB Packet Storm
227620 9.3 危険 phpbbviet - phpBBViet の includes/functions_mod_user.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6088 2012-12-20 18:33 2007-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222541 5.5 MEDIUM
Local 		dexp z250_firmware The Dexp Z250 Android device with a build fingerprint of DEXP/Z250/Z250:8.1.0/O11019/1531130719:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versio… NVD-CWE-noinfo
CVE-2019-15358 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222542 5.5 MEDIUM
Local 		advandigital i6a_firmware The Advan i6A Android device with a build fingerprint of ADVAN/i6A/i6A:8.1.0/O11019/1523602705:userdebug/test-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versi… NVD-CWE-noinfo
CVE-2019-15357 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222543 5.5 MEDIUM
Local 		lavamobiles flair_z1_firmware The Lava Flair Z1 Android device with a build fingerprint of LAVA/Z1/Z1:8.1.0/O11019/1536680131:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (versio… NVD-CWE-noinfo
CVE-2019-15356 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222544 5.5 MEDIUM
Local 		tecno-mobile camon_iclick_firmware The Tecno Camon iClick Android device with a build fingerprint of TECNO/H633/TECNO-IN6:8.1.0/O11019/A-180409V96:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.… NVD-CWE-noinfo
CVE-2019-15355 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222545 5.5 MEDIUM
Local 		ulefone armor_5_firmware The Ulefone Armor 5 Android device with a build fingerprint of Ulefone/Ulefone_Armor_5/Ulefone_Armor_5:8.1.0/O11019/1528806701:user/release-keys contains a pre-installed app with a package name of co… NVD-CWE-noinfo
CVE-2019-15354 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222546 5.5 MEDIUM
Local 		coolpad n3c_firmware The Coolpad N3C Android device with a build fingerprint of Coolpad/N3C/N3C:8.1.0/O11019/1538236809:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app (ver… NVD-CWE-noinfo
CVE-2019-15353 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222547 5.5 MEDIUM
Local 		coolpad mega_5_firmware The Coolpad 1851 Android device with a build fingerprint of Coolpad/android/android:8.1.0/O11019/1534834761:userdebug/release-keys contains a pre-installed app with a package name of com.mediatek.wfo… NVD-CWE-noinfo
CVE-2019-15352 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222548 7.8 HIGH
Local 		tecno-mobile tecno\/h622\/tecno-id5b\ The Tecno Camon Android device with a build fingerprint of TECNO/H622/TECNO-ID5b:8.1.0/O11019/G-180829V31:user/release-keys contains a pre-installed platform app with a package name of com.lovelyfont… CWE-78
OS Command  		CVE-2019-15351 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222549 7.8 HIGH
Local 		tecno-mobile tecno\/h622\/tecno-id5b\ The Tecno Camon Android device with a build fingerprint of TECNO/H622/TECNO-ID5b:8.1.0/O11019/G-180829V31:user/release-keys contains a pre-installed platform app with a package name of com.lovelyfont… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-15350 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222550 7.8 HIGH
Local 		tecno-mobile tecno\/h612\/tecno-id5a\ The Tecno Camon Android device with a build fingerprint of TECNO/H612/TECNO-ID5a:8.1.0/O11019/F-180828V106:user/release-keys contains a pre-installed platform app with a package name of com.lovelyfon… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-15349 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm