Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228421	7.8	危険	r2k	-	R2K Gallery の galeria.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2642	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

228422	7.5	危険	w1l3d4	-	W1L3D4 Philboard の W1L3D4_bolum.asp における SQL インジェクションの脆弱性	-	CVE-2007-2641	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

228423	10	危険	prosysinfo	-	TFTPdWin におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2639	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

228424	10	危険	positive software	-	H-Sphere SiteStudio におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2633	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

228425	7.5	危険	SquirrelMail Project	-	SquirrelMail におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2631	2012-12-20 18:19	2007-05-13	Show	GitHub Exploit DB Packet Storm

228426	6.8	警告	WordPress.org	-	WordPress の sidebar.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2627	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

228427	7.5	危険	taskdriver	-	TaskDriver における SQL インジェクションの脆弱性	-	CVE-2007-2622	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

228428	4.6	警告	シマンテック	-	Symantec pcAnywhere における資格情報を取得される脆弱性	-	CVE-2007-2619	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

228429	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の SRS Net Connect Software Proxy Core パッケージにおける任意のファイルの最初の行を読まれる脆弱性	-	CVE-2007-2617	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

228430	7.5	危険	phphtmllib	-	phpHtmlLib の examples/widget8.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2614	2012-12-20 18:19	2007-05-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223141	7.5	HIGH Network	atlassian	saml_single_sign_on	An issue was discovered in the SAML Single Sign On (SSO) plugin for several Atlassian products affecting versions 3.1.0 through 3.2.2 for Jira and Confluence, versions 2.4.0 through 3.0.3 for Bitbuck…	NVD-CWE-noinfo	CVE-2019-13347	2024-11-21 13:24	2019-12-13	Show	GitHub Exploit DB Packet Storm

223142	6.5	MEDIUM Adjacent	freeradius redhat opensuse	freeradius enterprise_linux leap	In FreeRADIUS 3.0 through 3.0.19, on average 1 in every 2048 EAP-pwd handshakes fails because the password element cannot be found within 10 iterations of the hunting and pecking loop. This leaks inf…	CWE-203 Information Exposure Through Discrepancy	CVE-2019-13456	2024-11-21 13:24	2019-12-4	Show	GitHub Exploit DB Packet Storm

223143	7.5	HIGH Network	naver	vaccine	nsGreen.dll in Naver Vaccine 2.1.4 allows remote attackers to overwrite arbitary files via directory traversal sequences in a filename within nsz archive.	CWE-22 Path Traversal	CVE-2019-13157	2024-11-21 13:24	2019-11-22	Show	GitHub Exploit DB Packet Storm

223144	5.4	MEDIUM Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 has an XSS vulnerability (via the title field in the /common/ticket_associated_tickets.php service desk ticket functionality) that allows…	CWE-79 Cross-site Scripting	CVE-2019-13081	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223145	5.4	MEDIUM Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 has an XSS vulnerability (via an SVG image and HTML file) that allows an authenticated user to execute arbitrary JavaScript in an adminis…	CWE-79 Cross-site Scripting	CVE-2019-13080	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223146	8.8	HIGH Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. An authenticated user has the ability to execute arbitrary commands against the database. The affected co…	CWE-89 SQL Injection	CVE-2019-13079	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223147	8.8	HIGH Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. An authenticated user has the ability to execute arbitrary commands against the database. The affected co…	CWE-89 SQL Injection	CVE-2019-13078	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223148	6.1	MEDIUM Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 has an XSS vulnerability (via the sam_detail_titled.php SAM_TYPE parameter) that allows an attacker to create a malicious link in order t…	CWE-79 Cross-site Scripting	CVE-2019-13077	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223149	8.8	HIGH Network	quest	kace_systems_management_appliance	Quest KACE Systems Management Appliance Server Center 9.1.317 is vulnerable to SQL injection. An authenticated user has the ability to execute arbitrary commands against the database. The affected co…	CWE-89 SQL Injection	CVE-2019-13076	2024-11-21 13:24	2019-11-7	Show	GitHub Exploit DB Packet Storm

223150	6.1	MEDIUM Network	sahipro	sahi_pro	Sahi Pro 8.0.0 has a script manager arena located at _s_/dyn/pro/DBReports with many different areas that are vulnerable to reflected XSS, by updating a script's Script Name, Suite Name, Base URL, An…	CWE-79 Cross-site Scripting	CVE-2019-13066	2024-11-21 13:24	2019-10-30	Show	GitHub Exploit DB Packet Storm