Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":April 30, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227621 | 4.3 | 警告 | RSAセキュリティ | - | RSA EnVision のログオンページにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4900 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 227622 | 2.1 | 注意 | XWiki | - | XWiki Enterprise の Multiwiki プラグインにおける重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2007-4898 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 227623 | 4.3 | 警告 | toms-seiten.at | - | Toms Gaestebuch の admin/header.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4896 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 227624 | 5 | 警告 | sisfo kampus | - | Semarang 3 の dwoprn.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2007-4895 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 227625 | 7.5 | 危険 | WordPress.org | - | Wordpress および MU における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-4894 | 2012-12-20 18:33 | 2007-09-8 | Show | GitHub Exploit DB Packet Storm |
| 227626 | 4.3 | 警告 | WordPress.org | - | Wordpress および MU の wp-admin/admin-functions.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2007-4893 | 2012-12-20 18:33 | 2007-09-8 | Show | GitHub Exploit DB Packet Storm |
| 227627 | 7.5 | 危険 | swsoft | - | Windows 用の SWSoft Plesk における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-4892 | 2012-12-20 18:33 | 2007-09-14 | Show | GitHub Exploit DB Packet Storm |
| 227628 | 3.5 | 注意 | XWiki | - | XWiki の "You are not allowed ..." のエラーハンドラにおける任意のドキュメントを読み取られる脆弱性 |
CWE-DesignError
|
CVE-2007-4888 | 2012-12-20 18:33 | 2007-01-11 | Show | GitHub Exploit DB Packet Storm |
| 227629 | 4.3 | 警告 | techexcel inc. | - | TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-4882 | 2012-12-20 18:33 | 2007-09-13 | Show | GitHub Exploit DB Packet Storm |
| 227630 | 7.5 | 危険 | psi-labs | - | psisns の profile/myprofile.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-4881 | 2012-12-20 18:33 | 2007-09-13 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:April 30, 2026, 4:58 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 213011 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (outside the wNumCoef loop). |
CWE-125
Out-of-bounds Read |
CVE-2019-7576 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213012 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer overflow in MS_ADPCM_decode in audio/SDL_wave.c. |
CWE-787
Out-of-bounds Write |
CVE-2019-7575 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213013 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in IMA_ADPCM_decode in audio/SDL_wave.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-7574 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213014 | 8.8 |
HIGH
Network |
libsdl debian opensuse fedoraproject canonical |
simple_directmedia_layer debian_linux leap fedora ubuntu_linux |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop). |
CWE-125
Out-of-bounds Read |
CVE-2019-7573 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213015 | 8.8 |
HIGH
Network |
libsdl debian opensuse canonical fedoraproject |
simple_directmedia_layer debian_linux leap ubuntu_linux fedora |
SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c. |
CWE-125
Out-of-bounds Read |
CVE-2019-7572 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213016 | 6.5 |
MEDIUM
Network |
pbootcms | pbootcms | A CSRF vulnerability was found in PbootCMS v1.3.6 that can delete users via an admin.php/User/del/ucode/ URI. |
CWE-352
Origin Validation Error |
CVE-2019-7570 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213017 | 8.8 |
HIGH
Network |
wdoyo | doyo | An issue was discovered in DOYO (aka doyocms) 2.3(20140425 update). There is a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1. |
CWE-352
Origin Validation Error |
CVE-2019-7569 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213018 | 9.8 |
CRITICAL
Network |
baijiacms_project | baijiacms | An issue was discovered in baijiacms V4 that can result in time-based blind SQL injection to get data via the cate parameter in an index.php?act=index request. |
CWE-89
SQL Injection |
CVE-2019-7568 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213019 | 6.1 |
MEDIUM
Network |
bijiadao | waimai_super_cms | An issue was discovered in Waimai Super Cms 20150505. admin.php?m=Member&a=adminaddsave has XSS via the username or password parameter. |
CWE-79
Cross-site Scripting |
CVE-2019-7567 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |
| 213020 | 8.8 |
HIGH
Network |
cszcms | csz_cms | CSZ CMS 1.1.8 has CSRF via admin/users/new/add. |
CWE-352
Origin Validation Error |
CVE-2019-7566 | 2024-11-21 13:48 | 2019-02-7 | Show | GitHub Exploit DB Packet Storm |