Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227971 6.8 警告 VirtueMart - VirtueMart の ps_cart.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1096 2012-12-20 18:19 2007-02-26 Show GitHub Exploit DB Packet Storm
227972 7.5 危険 TYPO3 Association - TYPO3 用の class.t3lib_formmail.php における任意の電子メールヘッダを挿入される脆弱性 - CVE-2007-1081 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
227973 7.8 危険 turbosoft - TurboFTP におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-1080 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
227974 7.8 危険 rhinosoft - Rhino Software の Inc. FTP Voyager におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1079 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
227975 7.5 危険 phptraffica - phpTrafficA におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-1076 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
227976 7.8 危険 turbosoft - TurboFTP におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1075 2012-12-20 18:19 2007-02-22 Show GitHub Exploit DB Packet Storm
227977 10 危険 トレンドマイクロ - Windows 用などの Trend Micro ServerProtect におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1070 2012-12-20 18:19 2007-02-15 Show GitHub Exploit DB Packet Storm
227978 7.8 危険 VMware - VMware Workstation のメモリ管理におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1069 2012-12-20 18:19 2007-05-2 Show GitHub Exploit DB Packet Storm
227979 6.8 警告 ultimate fun book - Ultimate Fun Book の function.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1059 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
227980 7.2 危険 VMware - VMware Workstation における制限された操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1056 2012-12-20 18:19 2007-02-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213201 5.3 MEDIUM
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure. NVD-CWE-noinfo
CVE-2019-7277 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213202 9.8 CRITICAL
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console. NVD-CWE-noinfo
CVE-2019-7276 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213203 6.1 MEDIUM
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Open Redirect. CWE-601
Open Redirect 		CVE-2019-7275 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213204 8.8 HIGH
Network 		primasystems flexair Prima Systems FlexAir, Versions 2.3.38 and prior. An unauthenticated user can send unverified HTTP requests, which may allow the attacker to perform certain actions with administrative privileges if … CWE-352
 Origin Validation Error 		CVE-2019-7281 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213205 8.8 HIGH
Network 		primasystems flexair Prima Systems FlexAir, Versions 2.3.38 and prior. The session-ID is of an insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session and bypa… CWE-613
 Insufficient Session Expiration 		CVE-2019-7280 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213206 7.3 HIGH
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices have Hard-coded Credentials. CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7279 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
213207 8.8 HIGH
Adjacent 		abb cp620_firmware
cp620-web_firmware
cp630_firmware
cp630-web_firmware
cp635_firmware
cp635-b_firmware
cp635-web_firmware
pb610_firmware
cp651-web_firmware
cp661_firmware
c… 		The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI interface. These credentials allow the provisioning tool "Panel Builder 600" to … CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7225 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm
213208 7.3 HIGH
Adjacent 		abb pb610_panel_builder_600_firmware In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An … CWE-22
Path Traversal 		CVE-2019-7227 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm
213209 8.8 HIGH
Adjacent 		abb pb610_panel_builder_600_firmware The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. Specifically, /cgi/loginDefaultUser cre… CWE-287
Improper Authentication 		CVE-2019-7226 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm
213210 8.8 HIGH
Adjacent 		abb pb610_panel_builder_600_firmware The ABB IDAL HTTP server mishandles format strings in a username or cookie during the authentication process. Attempting to authenticate with the username %25s%25p%25x%25n will crash the server. Send… CWE-134
Use of Externally-Controlled Format String 		CVE-2019-7228 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm