Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227681 7.5 危険 xzeroscripts - XZero Community Classifieds の config.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6568 2012-12-20 18:34 2007-12-28 Show GitHub Exploit DB Packet Storm
227682 6.4 警告 xzeroscripts - XZero Community Classifieds の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6567 2012-12-20 18:34 2007-12-28 Show GitHub Exploit DB Packet Storm
227683 7.5 危険 xzeroscripts - XZero Community Classifieds の post.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6566 2012-12-20 18:34 2007-12-28 Show GitHub Exploit DB Packet Storm
227684 5 警告 tcpreen - TCPreen の FD_SET の使用におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6562 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227685 4.3 警告 totalplayer - TotalPlayer におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6558 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227686 7.5 危険 websihirbazi - websihirbazi における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6556 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227687 7.5 危険 pmos helpdesk - PMOS Help Desk の form.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6550 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227688 7.5 危険 runcms - RunCMS における脆弱性 CWE-DesignError
CVE-2007-6549 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227689 7.5 危険 runcms - RunCMS における任意の PHP コード挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-6548 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
227690 6.8 警告 runcms - RunCMS におけるパスワードを変更される脆弱性 CWE-DesignError
CVE-2007-6547 2012-12-20 18:34 2007-12-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223941 8.8 HIGH
Network 		netgear cg3700b_firmware The Voo branded NETGEAR CG3700b custom firmware V2.02.03 allows CSRF against all /goform/ URIs. An attacker can modify all settings including WEP/WPA/WPA2 keys, restore the router to factory settings… CWE-352
 Origin Validation Error 		CVE-2019-13395 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223942 9.8 CRITICAL
Network 		netgear cg3700b_firmware The Voo branded NETGEAR CG3700b custom firmware V2.02.03 uses HTTP Basic Authentication over cleartext HTTP. CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2019-13394 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223943 7.5 HIGH
Network 		netgear cg3700b_firmware The Voo branded NETGEAR CG3700b custom firmware V2.02.03 uses the same default 8 character passphrase for the administrative console and the WPA2 pre-shared key. Either an attack against HTTP Basic A… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2019-13393 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223944 8.8 HIGH
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in multiple parameters of the Document Boxes functionality of the web application… CWE-120
Classic Buffer Overflow 		CVE-2019-13206 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223945 7.5 HIGH
Network 		kyocera ecosys_m5526cdw_firmware All configuration parameters of certain Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were accessible by unauthenticated users. This information was only presented in the menus when… CWE-306
Missing Authentication for Critical Function 		CVE-2019-13205 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223946 9.8 CRITICAL
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by multiple buffer overflow vulnerabilities in the IPP service. This would allow an unauthenticated attacker to caus… CWE-120
Classic Buffer Overflow 		CVE-2019-13204 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223947 8.8 HIGH
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by an integer overflow vulnerability in the arg3 parameter of several functionalities of the web application that wo… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13203 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223948 4.3 MEDIUM
Network 		otrs otrs An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8. A customer user can use the search results to disclose information from their "company" tickets (with the same Custom… CWE-200
Information Exposure 		CVE-2019-13457 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223949 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local ne… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-13121 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223950 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests templat… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13011 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm