Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 12:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228241	7.8	危険	Polycom	-	Polycom SoundPoint 上で稼動する IP 601 SIP phone with BootROM の HTTP サーバにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3368	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228242	10	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における情報を取得される脆弱性	-	CVE-2007-3357	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228243	7.8	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における重要な情報を取得される脆弱性	-	CVE-2007-3356	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228244	4.3	警告	scriptdevelopers.net	-	NetClassifieds Premium Edition におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3355	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228245	7.5	危険	scriptdevelopers.net	-	NetClassifieds Premium Edition における SQL インジェクションの脆弱性	-	CVE-2007-3354	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228246	4.3	警告	stephen ostermiller	-	Stephen Ostermiller Contact Form のプレビューフォームにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3352	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228247	7.8	危険	sj labs	-	SJPhone SIP ソフトフォンにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3351	2012-12-20 18:19	2007-06-22	Show	GitHub Exploit DB Packet Storm

228248	4.3	警告	シックス・アパート株式会社	-	MT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3342	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

228249	7.5	危険	phpecho cms	-	PHPEcho CMS の管理パネルにおける SQL インジェクションの脆弱性	-	CVE-2007-3335	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

228250	5	警告	PHPNUKE	-	PHP-Nuke 用の Satel Lite におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3332	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223351	5.3	MEDIUM Network	humhub	social_network_kit	HumHub Social Network Kit Enterprise v1.3.13 allows remote attackers to find the user accounts existing on any Social Network Kits (including self-hosted ones) by brute-forcing the username after the…	CWE-203 Information Exposure Through Discrepancy	CVE-2019-12743	2024-11-21 13:23	2019-07-30	Show	GitHub Exploit DB Packet Storm

223352	5.5	MEDIUM Local	sweetscape	010_editor	In SweetScape 010 Editor 9.0.1, an integer overflow during the initialization of variables could allow an attacker to cause a denial of service.	CWE-190 Integer Overflow or Wraparound	CVE-2019-12552	2024-11-21 13:23	2019-07-23	Show	GitHub Exploit DB Packet Storm

223353	5.5	MEDIUM Local	sweetscape	010_editor	In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary mem…	CWE-787 Out-of-bounds Write	CVE-2019-12551	2024-11-21 13:23	2019-07-23	Show	GitHub Exploit DB Packet Storm

223354	8.8	HIGH Network	wp-code-highlightjs_project	wp-code-highlightjs	An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hlj…	CWE-352 CWE-79 Origin Validation Error Cross-site Scripting	CVE-2019-12934	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

223355	9.8	CRITICAL Network	proftpd fedoraproject debian siemens	proftpd fedora debian_linux simatic_cp_1543-1_firmware	An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306.	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-12815	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

223356	9.8	CRITICAL Network	zeroshell	zeroshell	Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exp…	CWE-78 OS Command	CVE-2019-12725	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

223357	4.8	MEDIUM Network	jisiwei	i3_firmware	A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that …	CWE-330 Use of Insufficiently Random Values	CVE-2019-12821	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

223358	5.6	MEDIUM Network	jisiwei	i3_firmware	A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the s…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-12820	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

223359	7.5	HIGH Network	elcom	elcom_cms	Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx.	CWE-89 SQL Injection	CVE-2019-12946	2024-11-21 13:23	2019-07-19	Show	GitHub Exploit DB Packet Storm

223360	7.5	HIGH Network	rdbrck	shift	Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.	CWE-922 Insecure Storage of Sensitive Information	CVE-2019-12914	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm