Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228421 7.8 危険 r2k - R2K Gallery の galeria.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2642 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
228422 7.5 危険 w1l3d4 - W1L3D4 Philboard の W1L3D4_bolum.asp における SQL インジェクションの脆弱性 - CVE-2007-2641 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
228423 10 危険 prosysinfo - TFTPdWin におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2639 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
228424 10 危険 positive software - H-Sphere SiteStudio におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2633 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
228425 7.5 危険 SquirrelMail Project - SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-2631 2012-12-20 18:19 2007-05-13 Show GitHub Exploit DB Packet Storm
228426 6.8 警告 WordPress.org - WordPress の sidebar.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2627 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
228427 7.5 危険 taskdriver - TaskDriver における SQL インジェクションの脆弱性 - CVE-2007-2622 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
228428 4.6 警告 シマンテック - Symantec pcAnywhere における資格情報を取得される脆弱性 - CVE-2007-2619 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
228429 2.1 注意 サン・マイクロシステムズ - Sun Solaris の SRS Net Connect Software Proxy Core パッケージにおける任意のファイルの最初の行を読まれる脆弱性 - CVE-2007-2617 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
228430 7.5 危険 phphtmllib - phpHtmlLib の examples/widget8.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2614 2012-12-20 18:19 2007-05-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223091 9.8 CRITICAL
Network 		jetstream jetselect Bond JetSelect (all versions) has an issue in the Java class (ENCtool.jar) and corresponding password generation algorithm (used to set initial passwords upon first installation). It XORs the plainte… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2019-13022 2024-11-21 13:24 2020-05-15 Show GitHub Exploit DB Packet Storm
223092 6.5 MEDIUM
Network 		jetstream jetselect The administrative passwords for all versions of Bond JetSelect are stored within an unprotected file on the filesystem, rather than encrypted within the MySQL database. This backup copy of the passw… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2019-13021 2024-11-21 13:24 2020-05-15 Show GitHub Exploit DB Packet Storm
223093 7.5 HIGH
Network 		cososys endpoint_protector CoSoSys Endpoint Protector 5.1.0.2 allows Host Header Injection. CWE-74
Injection 		CVE-2019-13285 2024-11-21 13:24 2020-05-4 Show GitHub Exploit DB Packet Storm
223094 6.1 MEDIUM
Network 		quantumcloud simple_link_directory An XSS vulnerability in qcopd-shortcode-generator.php in the Simple Link Directory plugin before 7.3.5 for WordPress allows remote attackers to inject arbitrary web script or HTML, because esc_html i… CWE-79
Cross-site Scripting 		CVE-2019-13463 2024-11-21 13:24 2020-03-21 Show GitHub Exploit DB Packet Storm
223095 6.1 MEDIUM
Network 		rainloop webmail RainLoop Webmail before 1.13.0 lacks XSS protection mechanisms such as xlink:href validation, the X-XSS-Protection header, and the Content-Security-Policy header. CWE-79
Cross-site Scripting 		CVE-2019-13389 2024-11-21 13:24 2020-03-21 Show GitHub Exploit DB Packet Storm
223096 9.8 CRITICAL
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the okhtmlfile and failhtmlfile parameters of several functionalities of the w… CWE-120
Classic Buffer Overflow 		CVE-2019-13202 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223097 9.8 CRITICAL
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) were affected by a buffer overflow vulnerability in the LPD service. This would allow an unauthenticated attacker to cause a Denia… CWE-120
Classic Buffer Overflow 		CVE-2019-13201 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223098 6.1 MEDIUM
Network 		kyocera ecosys_m5526cdw_firmware The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Reflected XSS. Successful exploitation of this vulnerability can lead to session hijacki… CWE-79
Cross-site Scripting 		CVE-2019-13200 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223099 6.5 MEDIUM
Network 		kyocera ecosys_m5526cdw_firmware Some Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) did not implement any mechanism to avoid CSRF. Successful exploitation of this vulnerability can lead to the takeover of a local a… CWE-352
 Origin Validation Error 		CVE-2019-13199 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm
223100 6.1 MEDIUM
Network 		kyocera ecosys_m5526cdw_firmware The web application of several Kyocera printers (such as the ECOSYS M5526cdw 2R7_2000.001.701) was affected by Stored XSS. Successful exploitation of this vulnerability can lead to session hijacking … CWE-79
Cross-site Scripting 		CVE-2019-13198 2024-11-21 13:24 2020-03-14 Show GitHub Exploit DB Packet Storm