Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228261	7.5	危険	Simple Machines	-	SMF における CAPTCHA テストを通過される脆弱性	-	CVE-2007-3308	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228262	7.5	危険	solar empire	-	Solar Empire の game_listing.php における SQL インジェクションの脆弱性	-	CVE-2007-3307	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228263	7.5	危険	ultrize	-	MiniBill の crontab/run_billing.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3306	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228264	7.5	危険	spey	-	Spey における SQL インジェクションの脆弱性	-	CVE-2007-3298	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228265	9.3	危険	迅雷	-	xunlei Web Thunderbolt の ThunderServer.webThunder.1 ActiveX コントロールにおける任意のファイルをダウンロードされる脆弱性	-	CVE-2007-3296	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228266	6.5	警告	yabb	-	YaBB におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3295	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228267	7.5	危険	XOOPS	-	XOOPS 用の WiwiMod モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3289	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228268	4.3	警告	skeltoac	-	WordPress 用の Automattic Stats プラグインにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3288	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

228269	6.8	警告	サン・マイクロシステムズ	-	Sun Solaris の GNOME XScreenSaver におけるコンソールへアクセスされる脆弱性	-	CVE-2007-3283	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228270	9	危険	PostgreSQL.org	-	PostgreSQL の dblink における全てのライブラリから関数をマッピングおよび実行される脆弱性	-	CVE-2007-3280	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224131	4.8	MEDIUM Network	jisiwei	i3_firmware	A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that …	CWE-330 Use of Insufficiently Random Values	CVE-2019-12821	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

224132	5.6	MEDIUM Network	jisiwei	i3_firmware	A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the s…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-12820	2024-11-21 13:23	2019-07-20	Show	GitHub Exploit DB Packet Storm

224133	7.5	HIGH Network	elcom	elcom_cms	Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx.	CWE-89 SQL Injection	CVE-2019-12946	2024-11-21 13:23	2019-07-19	Show	GitHub Exploit DB Packet Storm

224134	7.5	HIGH Network	rdbrck	shift	Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.	CWE-922 Insecure Storage of Sensitive Information	CVE-2019-12914	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm

224135	5.5	MEDIUM Local	rdbrck	shift	Redbrick Shift through 3.4.3 allows an attacker to extract emails of services (such as Gmail, Outlook, etc.) used in the application.	NVD-CWE-noinfo	CVE-2019-12913	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm

224136	5.5	MEDIUM Local	rdbrck	shift	Redbrick Shift through 3.4.3 allows an attacker to extract emails of services (such as Gmail, Outlook, etc.) used in the application.	CWE-426 Untrusted Search Path	CVE-2019-12912	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm

224137	7.5	HIGH Network	rdbrck	shift	Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.	CWE-922 Insecure Storage of Sensitive Information	CVE-2019-12911	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm

224138	7.3	HIGH Local	zohocorp	manageengine_desktop_central manageengine_adselfservice_plus manageengine_admanager_plus	Zoho ManageEngine ADManager Plus 6.6.5, ADSelfService Plus 5.7, and DesktopCentral 10.0.380 have Insecure Permissions, leading to Privilege Escalation from low level privileges to System.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12876	2024-11-21 13:23	2019-07-18	Show	GitHub Exploit DB Packet Storm

224139	8.8	HIGH Network	citrix	sd-wan netscaler_sd-wan	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 6 of 6).	CWE-78 OS Command	CVE-2019-12992	2024-11-21 13:23	2019-07-17	Show	GitHub Exploit DB Packet Storm

224140	8.8	HIGH Network	citrix	sd-wan netscaler_sd-wan	Citrix SD-WAN 10.2.x before 10.2.3 and NetScaler SD-WAN 10.0.x before 10.0.8 have Improper Input Validation (issue 5 of 6).	CWE-78 OS Command	CVE-2019-12991	2024-11-21 13:23	2019-07-17	Show	GitHub Exploit DB Packet Storm