Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227881 7.5 危険 WordPress.org - Wordpress および MU における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4894 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227882 4.3 警告 WordPress.org - Wordpress および MU の wp-admin/admin-functions.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-4893 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227883 7.5 危険 swsoft - Windows 用の SWSoft Plesk における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4892 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
227884 3.5 注意 XWiki - XWiki の "You are not allowed ..." のエラーハンドラにおける任意のドキュメントを読み取られる脆弱性 CWE-DesignError
CVE-2007-4888 2012-12-20 18:33 2007-01-11 Show GitHub Exploit DB Packet Storm
227885 4.3 警告 techexcel inc. - TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4882 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
227886 7.5 危険 psi-labs - psisns の profile/myprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4881 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
227887 5 警告 Simplenews Project - SimpNews における任意の .inc ファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4873 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
227888 5 警告 Simplenews Project - SimpleNews における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-4872 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
227889 6.8 警告 Quirm - SAXON の example.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4863 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
227890 4.3 警告 Quirm - SAXON の admin/menu.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4862 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213551 6.7 MEDIUM
Local 		amd atillk64 An issue was discovered in atillk64.sys in AMD ATI Diagnostics Hardware Abstraction Sys/Overclocking Utility 5.11.9.0. The vulnerable driver exposes a wrmsr instruction and does not properly filter t… NVD-CWE-noinfo
CVE-2019-7246 2024-11-21 13:47 2020-05-19 Show GitHub Exploit DB Packet Storm
213552 7.5 HIGH
Network 		schneider-electric bmx_p34x_firmware
bmx_noe_0100_firmware
bmx_noe_0110_firmware
bmx_noc_0401_firmware
tsx_p57x_firmware
tsx_ety_x103_firmware
140_cpu6x_firmware
140_noe_771x1_firmware
140_noc_7… 		A CWE-798: Use of Hardcoded Credentials vulnerability exists in Modicon Controllers (All versions of the following CPUs and Communication Module product references listed in the Security Notification… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6859 2024-11-21 13:47 2020-04-23 Show GitHub Exploit DB Packet Storm
213553 7.5 HIGH
Network 		byobu
canonical 		byobu
ubuntu_linux 		Byobu Apport hook may disclose sensitive information since it automatically uploads the local user's .screenrc which may contain private hostnames, usernames and passwords. This issue affects: byobu CWE-552
 Files or Directories Accessible to External Parties 		CVE-2019-7306 2024-11-21 13:47 2020-04-17 Show GitHub Exploit DB Packet Storm
213554 9.8 CRITICAL
Network 		extplorer extplorer Information Exposure vulnerability in eXtplorer makes the /usr/ and /etc/extplorer/ system directories world-accessible over HTTP. Introduced in the Makefile patch file debian/patches/debian-changes-… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2019-7305 2024-11-21 13:47 2020-04-10 Show GitHub Exploit DB Packet Storm
213555 7.2 HIGH
Network 		techpowerup gpu-z An issue was discovered in GPU-Z.sys in TechPowerUp GPU-Z before 2.23.0. The vulnerable driver exposes a wrmsr instruction via an IOCTL and does not properly filter the Model Specific Register (MSR).… CWE-665
 Improper Initialization 		CVE-2019-7245 2024-11-21 13:47 2020-03-26 Show GitHub Exploit DB Packet Storm
213556 7.2 HIGH
Network 		aida64 aida64 An issue was discovered in kerneld.sys in AIDA64 before 5.99. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x80112084 and does not properly filter the Model Specific Register (MSR). Al… CWE-665
 Improper Initialization 		CVE-2019-7244 2024-11-21 13:47 2020-03-26 Show GitHub Exploit DB Packet Storm
213557 7.2 HIGH
Network 		moo0 system_monitor An issue was discovered in WinRing0x64.sys in Moo0 System Monitor 1.83. The vulnerable driver exposes a wrmsr instruction via IOCTL 0x9C402088 and does not properly filter the Model Specific Register… CWE-665
 Improper Initialization 		CVE-2019-7240 2024-11-21 13:47 2020-03-26 Show GitHub Exploit DB Packet Storm
213558 8.6 HIGH
Network 		avaya aura_conferencing A directory traversal vulnerability has been found in the Avaya Equinox Management(iView)versions R9.1.9.0 and earlier. Successful exploitation could potentially allow an unauthenticated attacker to … CWE-22
Path Traversal 		CVE-2019-7007 2024-11-21 13:47 2020-02-29 Show GitHub Exploit DB Packet Storm
213559 4.3 MEDIUM
Physics 		samsung knox This vulnerability allows local attackers to disclose sensitive information on affected installations of Samsung Knox 1.2.02.39 on Samsung Galaxy S9 build G9600ZHS3ARL1 Secure Folder. An attacker mus… CWE-287
Improper Authentication 		CVE-2019-6744 2024-11-21 13:47 2020-02-11 Show GitHub Exploit DB Packet Storm
213560 9.8 CRITICAL
Network 		adobe acrobat_dc
acrobat_reader_dc 		Adobe Acrobat and Reader versions 2019.010.20064 and earlier, 2019.010.20064 and earlier, 2017.011.30110 and earlier version, and 2015.006.30461 and earlier have a type confusion vulnerability. Succe… CWE-843
Type Confusion 		CVE-2019-7131 2024-11-21 13:47 2020-01-28 Show GitHub Exploit DB Packet Storm