Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228441 7.5 危険 XOOPS - XOOPS 用の wfquotes モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2571 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228442 7.5 危険 practical creative and code - Friendly における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2569 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228443 9.3 危険 vcdgear - VCDGear におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2568 2012-12-20 18:19 2007-05-16 Show GitHub Exploit DB Packet Storm
228444 9.3 危険 taltech - Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-2567 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228445 5 警告 taltech - Taltech Tal Bar Code ActiveX コントロールの SaveBarCode 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2566 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228446 10 危険 sienzo - Sienzo DMM ActiveX コントロール におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2564 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228447 9.3 危険 versalsoft - VersalSoft HTTP File Upload ActiveX コントロール の AddFile 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-2563 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228448 4.3 警告 podium cms - Podium CMS の Default.aspx におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-2555 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228449 5 警告 Wikka Development Team - WikkaWiki の RecentChanges 機能における非公開ページの名前などを取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-2552 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
228450 4.3 警告 Wikka Development Team - WikkaWiki の usersettings.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2551 2012-12-20 18:19 2007-05-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223941 5.3 MEDIUM
Network 		humhub social_network_kit HumHub Social Network Kit Enterprise v1.3.13 allows remote attackers to find the user accounts existing on any Social Network Kits (including self-hosted ones) by brute-forcing the username after the… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-12743 2024-11-21 13:23 2019-07-30 Show GitHub Exploit DB Packet Storm
223942 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, an integer overflow during the initialization of variables could allow an attacker to cause a denial of service. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-12552 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223943 5.5 MEDIUM
Local 		sweetscape 010_editor In SweetScape 010 Editor 9.0.1, improper validation of arguments in the internal implementation of the Memcpy function (provided by the scripting engine) allows an attacker to overwrite arbitrary mem… CWE-787
 Out-of-bounds Write 		CVE-2019-12551 2024-11-21 13:23 2019-07-23 Show GitHub Exploit DB Packet Storm
223944 8.8 HIGH
Network 		wp-code-highlightjs_project wp-code-highlightjs An issue was discovered in the wp-code-highlightjs plugin through 0.6.2 for WordPress. wp-admin/options-general.php?page=wp-code-highlight-js allows CSRF, as demonstrated by an XSS payload in the hlj… CWE-352
CWE-79
 Origin Validation Error
Cross-site Scripting 		CVE-2019-12934 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223945 9.8 CRITICAL
Network 		proftpd
fedoraproject
debian
siemens 		proftpd
fedora
debian_linux
simatic_cp_1543-1_firmware 		An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-12815 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223946 9.8 CRITICAL
Network 		zeroshell zeroshell Zeroshell 3.9.0 is prone to a remote command execution vulnerability. Specifically, this issue occurs because the web application mishandles a few HTTP parameters. An unauthenticated attacker can exp… CWE-78
OS Command  		CVE-2019-12725 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223947 4.8 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner, while adding a device to the account using a QR-code. The QR-code follows an easily predictable pattern that … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-12821 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223948 5.6 MEDIUM
Network 		jisiwei i3_firmware A vulnerability was found in the app 2.0 of the Shenzhen Jisiwei i3 robot vacuum cleaner. Actions performed on the app such as changing a password, and personal information it communicates with the s… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-12820 2024-11-21 13:23 2019-07-20 Show GitHub Exploit DB Packet Storm
223949 7.5 HIGH
Network 		elcom elcom_cms Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx. CWE-89
SQL Injection 		CVE-2019-12946 2024-11-21 13:23 2019-07-19 Show GitHub Exploit DB Packet Storm
223950 7.5 HIGH
Network 		rdbrck shift Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2019-12914 2024-11-21 13:23 2019-07-18 Show GitHub Exploit DB Packet Storm