Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227881 7.5 危険 WordPress.org - Wordpress および MU における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4894 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227882 4.3 警告 WordPress.org - Wordpress および MU の wp-admin/admin-functions.php におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-4893 2012-12-20 18:33 2007-09-8 Show GitHub Exploit DB Packet Storm
227883 7.5 危険 swsoft - Windows 用の SWSoft Plesk における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4892 2012-12-20 18:33 2007-09-14 Show GitHub Exploit DB Packet Storm
227884 3.5 注意 XWiki - XWiki の "You are not allowed ..." のエラーハンドラにおける任意のドキュメントを読み取られる脆弱性 CWE-DesignError
CVE-2007-4888 2012-12-20 18:33 2007-01-11 Show GitHub Exploit DB Packet Storm
227885 4.3 警告 techexcel inc. - TechExcel CustomerWise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4882 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
227886 7.5 危険 psi-labs - psisns の profile/myprofile.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4881 2012-12-20 18:33 2007-09-13 Show GitHub Exploit DB Packet Storm
227887 5 警告 Simplenews Project - SimpNews における任意の .inc ファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4873 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
227888 5 警告 Simplenews Project - SimpleNews における重要な情報を取得される脆弱性 CWE-DesignError
CVE-2007-4872 2012-12-20 18:33 2007-09-27 Show GitHub Exploit DB Packet Storm
227889 6.8 警告 Quirm - SAXON の example.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4863 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
227890 4.3 警告 Quirm - SAXON の admin/menu.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4862 2012-12-20 18:33 2007-10-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214021 8.8 HIGH
Network 		bitdefender safepay This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender SafePay 23.0.10.34. User interaction is required to exploit this vulnerability in that … CWE-78
OS Command  		CVE-2019-6738 2024-11-21 13:47 2019-06-4 Show GitHub Exploit DB Packet Storm
214022 8.8 HIGH
Network 		bitdefender safepay This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender SafePay 23.0.10.34. User interaction is required to exploit this vulnerability in that … NVD-CWE-noinfo
CVE-2019-6737 2024-11-21 13:47 2019-06-4 Show GitHub Exploit DB Packet Storm
214023 8.8 HIGH
Network 		bitdefender safepay This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Bitdefender SafePay 23.0.10.34. User interaction is required to exploit this vulnerability in that … CWE-78
OS Command  		CVE-2019-6736 2024-11-21 13:47 2019-06-4 Show GitHub Exploit DB Packet Storm
214024 9.8 CRITICAL
Network 		zyxel p-660hn-t1_firmware The rpWLANRedirect.asp ASP page is accessible without authentication on ZyXEL P-660HN-T1 V2 (2.00(AAKK.3)) devices. After accessing the page, the admin user's password can be obtained by viewing the … CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6725 2024-11-21 13:47 2019-06-1 Show GitHub Exploit DB Packet Storm
214025 6.5 MEDIUM
Network 		synacor zimbra_collaboration_suite Zimbra Collaboration Suite 8.7.x through 8.8.11 allows Blind SSRF in the Feed component. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6981 2024-11-21 13:47 2019-05-30 Show GitHub Exploit DB Packet Storm
214026 9.8 CRITICAL
Network 		synacor zimbra_collaboration_suite Synacor Zimbra Collaboration Suite 8.7.x through 8.8.11 allows insecure object deserialization in the IMAP component. CWE-502
 Deserialization of Untrusted Data 		CVE-2019-6980 2024-11-21 13:47 2019-05-30 Show GitHub Exploit DB Packet Storm
214027 9.1 CRITICAL
Network 		bosch bosch_video_management_system
access_professional_edition
building_integration_system
bosch_video_client
video_sdk
configuration_manager
dip_2000_firmware
dip_3000_firmware
di… 		A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Configuration Manager, Building Integration S… CWE-306
Missing Authentication for Critical Function 		CVE-2019-6958 2024-11-21 13:47 2019-05-30 Show GitHub Exploit DB Packet Storm
214028 9.8 CRITICAL
Network 		bosch video_recording_manager
bosch_video_management_system
access_professional_edition
building_integration_system
bosch_video_client
video_sdk
video_streaming_gateway
configuration_m… 		A recently discovered security vulnerability affects all Bosch Video Management System (BVMS) versions 9.0 and below, DIVAR IP 2000, 3000, 5000 and 7000, Video Recording Manager (VRM), Video Streamin… CWE-787
 Out-of-bounds Write 		CVE-2019-6957 2024-11-21 13:47 2019-05-30 Show GitHub Exploit DB Packet Storm
214029 6.1 MEDIUM
Network 		adobe experience_manager_forms Adobe Experience Manager Forms versions 6.2, 6.3 and 6.4 have a stored cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure. CWE-79
Cross-site Scripting 		CVE-2019-7129 2024-11-21 13:47 2019-05-30 Show GitHub Exploit DB Packet Storm
214030 9.8 CRITICAL
Network 		adobe digital_editions Adobe Digital Editions versions 4.5.10.185749 and below have a heap overflow vulnerability. Successful exploitation could lead to arbitrary code execution. CWE-787
 Out-of-bounds Write 		CVE-2019-7095 2024-11-21 13:47 2019-05-25 Show GitHub Exploit DB Packet Storm