Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 4, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228221 | 7.5 | 危険 | Simple Invoices | - | Simple Invoices 2007 の index.php における SQL インジェクションの脆弱性 | - | CVE-2007-3430 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228222 | 7.5 | 危険 | ZoneO-soft | - | phpTrafficA における脆弱性 | - | CVE-2007-3428 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228223 | 7.5 | 危険 | ZoneO-soft | - | phpTrafficA の index.php における SQL インジェクションの脆弱性 | - | CVE-2007-3427 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228224 | 4.3 | 警告 | ZoneO-soft | - | phpTrafficA の index.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-3426 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228225 | 5 | 警告 | ZoneO-soft | - | phpTrafficA の index.php におけるディレクトリトラバーサルの脆弱性 | - | CVE-2007-3425 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228226 | 7.5 | 危険 | web-app.org | - | web-app.org WebAPP の cgi-bin/cgi-lib/instantmessage.pl における脆弱性 | - | CVE-2007-3424 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228227 | 7.5 | 危険 | web-app.org | - | web-app.org WebAPP の cgi-bin/cgi-lib/instantmessage.pl における脆弱性 | - | CVE-2007-3423 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228228 | 7.5 | 危険 | web-app.org | - | web-app.org WebAPP の cgi-bin/cgi-lib/subs.pl における脆弱性 | - | CVE-2007-3422 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228229 | 7.5 | 危険 | web-app.org | - | web-app.org WebAPP のログイン機能などにおける脆弱性 | - | CVE-2007-3421 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
| 228230 | 7.5 | 危険 | web-app.org | - | web-app.org WebAPP の cgi-bin/cgi-lib/subs.pl における脆弱性 | - | CVE-2007-3420 | 2012-12-20 18:19 | 2007-06-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 4, 2026, 4:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222591 | 5.3 |
MEDIUM
Network |
coinkite |
coldcard_mk1_firmware coldcard_mk2_firmware |
On Coldcard MK1 and MK2 devices, a side channel for the row-based OLED display was found. The power consumption of each row-based display cycle depends on the number of illuminated pixels, allowing a… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2019-14356 | 2024-11-21 13:26 | 2019-11-1 | Show | GitHub Exploit DB Packet Storm |
| 222592 | 9.8 |
CRITICAL
Network |
repetier-server | repetier-server | A directory traversal vulnerability was discovered in RepetierServer.exe in Repetier-Server 0.8 through 0.91 that allows for the creation of a user controlled XML file at an unintended location. When… |
CWE-22
Path Traversal |
CVE-2019-14450 | 2024-11-21 13:26 | 2019-10-29 | Show | GitHub Exploit DB Packet Storm |
| 222593 | 9.8 |
CRITICAL
Network |
repetier-server | repetier-server | RepetierServer.exe in Repetier-Server 0.8 through 0.91 does not properly validate the XML data structure provided when uploading a new printer configuration. When this is combined with CVE-2019-14450… |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2019-14451 | 2024-11-21 13:26 | 2019-10-26 | Show | GitHub Exploit DB Packet Storm |
| 222594 | 6.5 |
MEDIUM
Network |
xnat | xnat | WUSTL XNAT 1.7.5.3 allows XXE attacks via a POST request body. |
CWE-611
XXE |
CVE-2019-14276 | 2024-11-21 13:26 | 2019-10-23 | Show | GitHub Exploit DB Packet Storm |
| 222595 | 8.8 |
HIGH
Network |
sudo_project fedoraproject debian opensuse canonical netapp redhat |
sudo fedora debian_linux leap ubuntu_linux element_software_management_node enterprise_linux_desktop enterprise_linux_server enterprise_linux_server_aus enterprise_linux_wo… |
In Sudo before 1.8.28, an attacker with access to a Runas ALL sudoer account can bypass certain policy blacklists and session PAM modules, and can cause incorrect logging, by invoking sudo with a cra… |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2019-14287 | 2024-11-21 13:26 | 2019-10-18 | Show | GitHub Exploit DB Packet Storm |
| 222596 | 6.5 |
MEDIUM
Network |
eq-3 |
cux-daemon ccu2_firmware |
A Local File Inclusion (LFI) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to read sensitive files via a simple HTT… |
CWE-22
Path Traversal |
CVE-2019-14424 | 2024-11-21 13:26 | 2019-10-17 | Show | GitHub Exploit DB Packet Storm |
| 222597 | 8.8 |
HIGH
Network |
eq-3 |
cux-daemon ccu2_firmware |
A Remote Code Execution (RCE) issue in the addon CUx-Daemon 1.11a of the eQ-3 Homematic CCU-Firmware 2.35.16 until 2.45.6 allows remote authenticated attackers to execute system commands as root remo… |
CWE-78
OS Command |
CVE-2019-14423 | 2024-11-21 13:26 | 2019-10-17 | Show | GitHub Exploit DB Packet Storm |
| 222598 | 6.1 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite 7.10.1 and 7.10.2 allows XSS. |
CWE-79
Cross-site Scripting |
CVE-2019-14227 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |
| 222599 | 8.1 |
HIGH
Network |
open-xchange | open-xchange_appsuite | OX App Suite through 7.10.2 has Insecure Permissions. |
CWE-281
Improper Preservation of Permissions |
CVE-2019-14226 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |
| 222600 | 5.4 |
MEDIUM
Network |
open-xchange | open-xchange_appsuite | OX App Suite 7.10.1 and 7.10.2 allows SSRF. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-14225 | 2024-11-21 13:26 | 2019-10-15 | Show | GitHub Exploit DB Packet Storm |