Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227751 4.3 警告 sonicbb - SonicBB における重要な情報を取得される脆弱性 - CVE-2007-1901 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
227752 6.5 警告 WordPress.org - WordPress の xmlrpc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1897 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
227753 5.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1896 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
227754 6.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1895 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
227755 4.3 警告 WordPress.org - WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1894 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
227756 4.9 警告 WordPress.org - WordPress の xmlrpc におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1893 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
227757 7.8 危険 VMware - VMware Workstation におけるゲスト OS がサービス運用妨害 (DoS) 状態となる脆弱性 - CVE-2007-1877 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
227758 7.2 危険 VMware - VMware Workstation における "仮想マシンに登録されたコンテキストが破損" する脆弱性 - CVE-2007-1876 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
227759 4.3 警告 toenda software development - toendaCMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1872 2012-12-20 18:19 2007-04-13 Show GitHub Exploit DB Packet Storm
227760 7.5 危険 webasyst llc - Shop-Script FREE の smarty/smarty_class.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1855 2012-12-20 18:19 2007-04-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212831 5.4 MEDIUM
Network 		mywebsql mywebsql An issue was discovered in MyWebSQL 3.7. The Add User function of the User Manager pages has a Stored Cross-site Scripting (XSS) vulnerability in the User Name Field. CWE-79
Cross-site Scripting 		CVE-2019-7544 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
212832 6.1 MEDIUM
Network 		kindsoft kindeditor In KindEditor 4.1.11, the php/demo.php content1 parameter has a reflected Cross-site Scripting (XSS) vulnerability. CWE-79
Cross-site Scripting 		CVE-2019-7543 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
212833 6.1 MEDIUM
Network 		parallax_scroll_project parallax_scroll In the Parallax Scroll (aka adamrob-parallax-scroll) plugin before 2.1 for WordPress, includes/adamrob-parralax-shortcode.php allows XSS via the title text. ("parallax" has a spelling change within t… CWE-79
Cross-site Scripting 		CVE-2019-7413 2024-11-21 13:48 2019-02-6 Show GitHub Exploit DB Packet Storm
212834 9.8 CRITICAL
Network 		ps_phpcaptcha_wp_project ps_phpcaptcha_wp The PS PHPCaptcha WP plugin before v1.2.0 for WordPress mishandles sanitization of input values. CWE-20
 Improper Input Validation  		CVE-2019-7412 2024-11-21 13:48 2019-02-6 Show GitHub Exploit DB Packet Storm
212835 4.9 MEDIUM
Network 		phpmywind phpmywind An issue was discovered in PHPMyWind 5.5. It allows remote attackers to delete arbitrary folders via an admin/database_backup.php?action=import&dopost=deldir&tbname=../ URI. CWE-22
Path Traversal 		CVE-2019-7403 2024-11-21 13:48 2019-02-6 Show GitHub Exploit DB Packet Storm
212836 6.1 MEDIUM
Network 		phpmywind phpmywind An issue was discovered in PHPMyWind 5.5. The GetQQ function in include/func.class.php allows XSS via the cfg_qqcode parameter. This can be exploited via CSRF. CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2019-7402 2024-11-21 13:48 2019-02-6 Show GitHub Exploit DB Packet Storm
212837 6.1 MEDIUM
Network 		rukovoditel rukovoditel Rukovoditel before 2.4.1 allows XSS. CWE-79
Cross-site Scripting 		CVE-2019-7400 2024-11-21 13:48 2019-02-5 Show GitHub Exploit DB Packet Storm
212838 7.5 HIGH
Network 		imagemagick
opensuse
debian
canonical 		imagemagick
leap
debian_linux
ubuntu_linux 		In ImageMagick before 7.0.8-25, a memory leak exists in WriteDIBImage in coders/dib.c. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-7398 2024-11-21 13:48 2019-02-5 Show GitHub Exploit DB Packet Storm
212839 7.5 HIGH
Network 		imagemagick
graphicsmagick
opensuse
debian
canonical 		imagemagick
graphicsmagick
leap
debian_linux
ubuntu_linux 		In ImageMagick before 7.0.8-25 and GraphicsMagick through 1.3.31, several memory leaks exist in WritePDFImage in coders/pdf.c. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-7397 2024-11-21 13:48 2019-02-5 Show GitHub Exploit DB Packet Storm
212840 7.5 HIGH
Network 		imagemagick
opensuse
debian
canonical 		imagemagick
leap
debian_linux
ubuntu_linux 		In ImageMagick before 7.0.8-25, a memory leak exists in ReadSIXELImage in coders/sixel.c. CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-7396 2024-11-21 13:48 2019-02-5 Show GitHub Exploit DB Packet Storm