Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228031 7.5 危険 web-app.org
web-app.net		 - web-app.net WebAPP などの Menu Manager Mod における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-3242 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228032 4.3 警告 WordPress.org - WordPress 用の cordobo-green-park テーマの blogroll.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3241 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228033 4.3 警告 WordPress.org - WordPress 用の Vistered-Little テーマの 404.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3240 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228034 4.3 警告 WordPress.org - WordPress 用の AndyBlue テーマの searchform.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3239 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228035 6 警告 WordPress.org - WordPress のデフォルトテーマの functions.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3238 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228036 6.8 警告 XOOPS - XOOPS 用の TinyContent モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3237 2012-12-20 18:19 2007-06-12 Show GitHub Exploit DB Packet Storm
228037 7.5 危険 XOOPS - XOOPS 用の Horoscope モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3236 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228038 5 警告 tec-it - TEC-IT TBarCode OCX ActiveX コントロール における任意のファイルを上書きされる脆弱性 - CVE-2007-3233 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228039 6.8 警告 simian systems inc - Idan Sofer PHP::HTML の phphtml.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3230 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
228040 6.8 警告 singapore - Singapore Gallery の index.php における重要な情報を取得される脆弱性 - CVE-2007-3229 2012-12-20 18:19 2007-06-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213431 7.8 HIGH
Local 		linux
opensuse
fedoraproject
debian
canonical
netapp
redhat 		linux_kernel
leap
fedora
debian_linux
ubuntu_linux
element_software_management_node
active_iq_performance_analytics_services
enterprise_linux_desktop
enterprise_linux_workstat… 		The KVM implementation in the Linux kernel through 4.20.5 has a Use-after-Free. CWE-416
 Use After Free 		CVE-2019-7221 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213432 7.5 HIGH
Network 		zohocorp manageengine_adselfservice_plus An issue was discovered in Zoho ManageEngine ADSelfService Plus 5.x through build 5704. It uses fixed ciphering keys to protect information, giving the capacity for an attacker to decipher any protec… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7161 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213433 7.5 HIGH
Network 		genivia gsoap Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server (based on gSOAP 2.8.x) is configured for an iterative queueing approach (aka no… NVD-CWE-noinfo
CVE-2019-6973 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213434 7.5 HIGH
Network 		moodle moodle Moodle 3.5.x before 3.5.4 allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6970 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213435 8.8 HIGH
Network 		airties air_5341_firmware AirTies Air5341 1.0.0.12 devices allow cgi-bin/login CSRF. CWE-352
 Origin Validation Error 		CVE-2019-6967 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213436 7.8 HIGH
Local 		qemu
opensuse
fedoraproject
canonical 		qemu
leap
fedora
ubuntu_linux 		In QEMU 3.0.0, tcp_emu in slirp/tcp_subr.c has a heap-based buffer overflow. CWE-787
 Out-of-bounds Write 		CVE-2019-6778 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213437 6.5 MEDIUM
Network 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader. User interaction is required to exploit this vulnerability in that the target… CWE-125
Out-of-bounds Read 		CVE-2019-6735 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213438 6.5 MEDIUM
Network 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the ta… CWE-416
 Use After Free 		CVE-2019-6734 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213439 6.5 MEDIUM
Network 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the ta… CWE-125
Out-of-bounds Read 		CVE-2019-6733 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm
213440 6.5 MEDIUM
Network 		foxitsoftware phantompdf
reader 		This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit PhantomPDF. User interaction is required to exploit this vulnerability in that the ta… CWE-125
Out-of-bounds Read 		CVE-2019-6732 2024-11-21 13:47 2019-03-22 Show GitHub Exploit DB Packet Storm