Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228411	7.5	危険	PreProject.com	-	Pre Shopping Mall の detail.php における SQL インジェクションの脆弱性	-	CVE-2007-2674	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228412	7.5	危険	thinc4orce marketing group	-	PHP Coupon Script の index.php における SQL インジェクションの脆弱性	-	CVE-2007-2672	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228413	6.8	警告	webdesproxy	-	webdesproxy におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2668	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228414	7.5	危険	tomasz rekawek	-	Yaap の includes/common.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2664	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228415	7.8	危険	precisionid barcode	-	PrecisionID_DataMatrix.DLL の PrecisionID Barcode ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2657	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228416	4.4	警告	SUSE xfsdump	-	xfsdump の xfs_fsr における xfs ファイルシステム上で任意のファイルを上書きされる脆弱性	CWE-362 CWE-Other	CVE-2007-2654	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

228417	7.5	危険	voodoo circle	-	VooDoo cIRCle におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-2651	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228418	7.8	危険	t-com	-	T-com Speedport W 700v における遅延を回避される脆弱性	-	CVE-2007-2649	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228419	6.8	警告	yenc32	-	yEnc32 におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2007-2646	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

228420	5	警告	pinkcrow designs	-	PinkCrow Designs Gallery または maGAZIn の phpThumb.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2643	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223371	5.5	MEDIUM Local	glyphandcog	xpdfreader	In Xpdf 4.01.01, there is an out-of-bounds read vulnerability in the function SplashXPath::strokeAdjust() located at splash/SplashXPath.cc. It can, for example, be triggered by sending a crafted PDF …	CWE-125 Out-of-bounds Read	CVE-2019-13287	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223372	5.5	MEDIUM Local	glyphandcog fedoraproject	xpdfreader fedora	In Xpdf 4.01.01, there is a heap-based buffer over-read in the function JBIG2Stream::readTextRegionSeg() located at JBIG2Stream.cc. It can, for example, be triggered by sending a crafted PDF document…	CWE-125 Out-of-bounds Read	CVE-2019-13286	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223373	7.8	HIGH Local	glyphandcog fedoraproject	xpdfreader fedora	In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in SampledFunction::transform in Function.cc when using a large index for samples. It can, for example, be triggered by sending a cra…	CWE-125 Out-of-bounds Read	CVE-2019-13282	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223374	7.8	HIGH Local	glyphandcog fedoraproject	xpdfreader fedora	In Xpdf 4.01.01, a heap-based buffer overflow could be triggered in DCTStream::decodeImage() in Stream.cc when writing to frameBuf memory. It can, for example, be triggered by sending a crafted PDF d…	CWE-787 Out-of-bounds Write	CVE-2019-13281	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223375	9.8	CRITICAL Network	veronalabs	wp_statistics	An issue was discovered in the VeronaLabs wp-statistics plugin before 12.6.7 for WordPress. The v1/hit endpoint of the API, when the non-default "use cache plugin" setting is enabled, is vulnerable t…	CWE-89 SQL Injection	CVE-2019-13275	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223376	7.8	HIGH Local	glyphandcog fedoraproject	xpdfreader fedora	In Xpdf 4.01.01, a heap-based buffer over-read could be triggered in strncpy from FoFiType1::parse in fofi/FoFiType1.cc because it does not ensure the source string has a valid length before making a…	CWE-125 Out-of-bounds Read	CVE-2019-13283	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223377	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x00000000003283eb.	NVD-CWE-noinfo	CVE-2019-13262	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223378	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000328384.	NVD-CWE-noinfo	CVE-2019-13261	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223379	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x0000000000327a07.	NVD-CWE-noinfo	CVE-2019-13260	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm

223380	7.8	HIGH Local	xnview	xnview	XnView Classic 2.48 has a User Mode Write AV starting at xnview+0x000000000032e566.	NVD-CWE-noinfo	CVE-2019-13259	2024-11-21 13:24	2019-07-5	Show	GitHub Exploit DB Packet Storm