Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227781 7.5 危険 torrenttrader - TorrentTrader Classic Edition の backend/admin-functions.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5311 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227782 7.5 危険 yannick tanguy - ELSEIF CMS における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5307 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227783 5 警告 yannick tanguy - ELSEIF CMS における重要な情報を取得される脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5306 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227784 7.5 危険 yannick tanguy - ELSEIF CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5305 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227785 4.3 警告 yannick tanguy - ELSEIF CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5304 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227786 4.3 警告 snewscms - SnewsCMS Rus の news_page.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5303 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227787 4.3 警告 splitside - Directory Image Gallery の photos.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5292 2012-12-20 18:33 2007-10-9 Show GitHub Exploit DB Packet Storm
227788 4.3 警告 zomplog - Zomplog におけるファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5278 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227789 6.8 警告 trionic - Trionic Cite CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5271 2012-12-20 18:33 2007-10-8 Show GitHub Exploit DB Packet Storm
227790 7.5 危険 phpfreelog - phpFreeLog の log.php における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5258 2012-12-20 18:33 2007-10-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222421 6.5 MEDIUM
Network 		cisco wireless_lan_controller_software A vulnerability in the web interface of Cisco Wireless LAN Controller Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service (DoS) condition on an affected… CWE-20
 Improper Input Validation  		CVE-2019-15276 2024-11-21 13:28 2019-11-26 Show GitHub Exploit DB Packet Storm
222422 8.8 HIGH
Network 		cisco rv016_multi-wan_vpn_firmware
rv042_dual_wan_vpn_firmware
rv042g_dual_gigabit_wan_vpn_firmware
rv082_dual_wan_vpn_firmware 		A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privilege… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-15271 2024-11-21 13:28 2019-11-26 Show GitHub Exploit DB Packet Storm
222423 7.8 HIGH
Local 		gog galaxy An exploitable local privilege escalation vulnerability exists in the GalaxyClientService installed by GOG Galaxy. Due to Improper Access Control, an attacker can send unauthenticated local TCP packe… CWE-306
Missing Authentication for Critical Function 		CVE-2019-15511 2024-11-21 13:28 2019-11-22 Show GitHub Exploit DB Packet Storm
222424 5.5 MEDIUM
Local 		mi a2_lite_firmware The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of co… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15468 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222425 3.3 LOW
Local 		mi mix_2s_firmware The Xiaomi Mi Mix 2S Android device with a build fingerprint of Xiaomi/polaris/polaris:8.0.0/OPR1.170623.032/V9.5.19.0.ODGMIFA:user/release-keys contains a pre-installed app with a package name of co… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15467 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222426 3.3 LOW
Local 		mi redmi_6_pro_firmware The Xiaomi Redmi 6 Pro Android device with a build fingerprint of xiaomi/sakura_india/sakura_india:8.1.0/OPM1.171019.019/V10.2.6.0.ODMMIXM:user/release-keys contains a pre-installed app with a packag… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15466 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222427 7.8 HIGH
Local 		panasonic eluga_i9_firmware The Panasonic ELUGA_I9 Android device with a build fingerprint of Panasonic/ELUGA_I9/ELUGA_I9:7.0/NRD90M/1501740649:user/release-keys contains a pre-installed app with a package name of com.ovvi.mode… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15429 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222428 3.3 LOW
Local 		mi note_2_firmware The Xiaomi Mi Note 2 Android device with a build fingerprint of Xiaomi/scorpio/scorpio:6.0.1/MXB48T/7.1.5:user/release-keys contains a pre-installed app with a package name of com.miui.powerkeeper ap… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15428 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222429 5.5 MEDIUM
Local 		mi a3_firmware The Xiaomi Mi A3 Android device with a build fingerprint of xiaomi/onc_eea/onc:9/PKQ1.181021.001/V10.2.8.0.PFLEUXM:user/release-keys contains a pre-installed app with a package name of com.qualcomm.q… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15475 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222430 3.3 LOW
Local 		mi mix_firmware The Xiaomi Mi Mix Android device with a build fingerprint of Xiaomi/lithium/lithium:6.0.1/MXB48T/7.1.5:user/release-keys contains a pre-installed app with a package name of com.miui.powerkeeper app (… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15427 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm