Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228391	9.3	危険	Gilles Vollant	-	WinImage におけるバッファオーバーフローの脆弱性	-	CVE-2007-2758	2012-12-20 18:19	2007-05-18	Show	GitHub Exploit DB Packet Storm

228392	10	危険	precisionid barcode	-	PrecisionID_Barcode.dll の PrecisionID Barcode ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	-	CVE-2007-2755	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228393	5	警告	runawaysoft	-	RunawaySoft Haber ポータルにおけるデータベースをダウンロードされる脆弱性	-	CVE-2007-2753	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228394	6.4	警告	runawaysoft	-	RunawaySoft Haber ポータルの devami.asp における SQL インジェクションの脆弱性	-	CVE-2007-2752	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228395	7.5	危険	phpglossar	-	PHPGlossar における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2751	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228396	7.5	危険	simpnews	-	SimpNews の print.php における SQL インジェクションの脆弱性	-	CVE-2007-2750	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228397	5	警告	rdiffweb	-	rdiffWeb の rdw_helpers.py におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2747	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228398	3.5	注意	plain black	-	Plain Black WebGUI の lib/WebGUI/Asset/Wobject/DataForm.pm における重要な情報を取得される脆弱性	-	CVE-2007-2746	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228399	4.3	警告	vdesk	-	vDesk Webmail の printcal.pl におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-2745	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

228400	7.5	危険	precisionid barcode	-	PrecisionID_Barcode.dll の PrecisionID Barcode ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2744	2012-12-20 18:19	2007-05-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223701	8.8	HIGH Network	slickquiz_project	slickquiz	The slickquiz plugin through 1.3.7.1 for WordPress allows SQL Injection by Subscriber users, as demonstrated by a /wp-admin/admin.php?page=slickquiz-scores&id= or /wp-admin/admin.php?page=slickquiz-e…	CWE-89 SQL Injection	CVE-2019-12516	2024-11-21 13:23	2019-09-13	Show	GitHub Exploit DB Packet Storm

223702	6.1	MEDIUM Network	slickquiz_project	slickquiz	An XSS issue was discovered in the slickquiz plugin through 1.3.7.1 for WordPress. The save_quiz_score functionality available via the /wp-admin/admin-ajax.php endpoint allows unauthenticated users t…	CWE-79 Cross-site Scripting	CVE-2019-12517	2024-11-21 13:23	2019-09-13	Show	GitHub Exploit DB Packet Storm

223703	8.1	HIGH Network	ttlock	ttlock	TTLock devices do not properly restrict password-reset attempts, leading to incorrect access control and disclosure of sensitive information about valid account names.	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2019-12943	2024-11-21 13:23	2019-09-11	Show	GitHub Exploit DB Packet Storm

223704	6.5	MEDIUM Adjacent	ttlock	ttlock	TTLock devices do not properly block guest access in certain situations where the network connection to the cloud is unavailable.	CWE-862 Missing Authorization	CVE-2019-12942	2024-11-21 13:23	2019-09-11	Show	GitHub Exploit DB Packet Storm

223705	5.3	MEDIUM Network	mendix	mendix	In Mendix 7.23.5 and earlier, issue in XML import mappings allow DOCTYPE declarations in the XML input that is potentially unsafe.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-12996	2024-11-21 13:23	2019-09-11	Show	GitHub Exploit DB Packet Storm

223706	7.8	HIGH Local	cisco	jabber	A vulnerability in Cisco Jabber Client Framework (JCF) for Mac Software, installed as part of the Cisco Jabber for Mac client, could allow an authenticated, local attacker to execute arbitrary code o…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12645	2024-11-21 13:23	2019-09-5	Show	GitHub Exploit DB Packet Storm

223707	6.1	MEDIUM Network	cisco	identity_services_engine	A vulnerability in the web-based management interface of Cisco Identity Services Engine (ISE) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack a…	CWE-79 Cross-site Scripting	CVE-2019-12644	2024-11-21 13:23	2019-09-5	Show	GitHub Exploit DB Packet Storm

223708	4.3	MEDIUM Network	cisco	content_security_management_appliance	A vulnerability in the authorization module of Cisco Content Security Management Appliance (SMA) Software could allow an authenticated, remote attacker to gain out-of-scope access to email. The vulne…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-12635	2024-11-21 13:23	2019-09-5	Show	GitHub Exploit DB Packet Storm

223709	7.5	HIGH Network	cisco	unified_contact_center_express	A vulnerability in Cisco Unified Contact Center Express (Unified CCX) could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-12633	2024-11-21 13:23	2019-09-5	Show	GitHub Exploit DB Packet Storm

223710	7.5	HIGH Network	cisco	finesse	A vulnerability in Cisco Finesse could allow an unauthenticated, remote attacker to bypass access controls and conduct a server-side request forgery (SSRF) attack on an affected system. The vulnerabi…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-12632	2024-11-21 13:23	2019-09-5	Show	GitHub Exploit DB Packet Storm