Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228461	10	危険	yabb	-	YaBB における CRLF インジェクションの脆弱性	-	CVE-2007-3208	2012-12-20 18:19	2007-06-14	Show	GitHub Exploit DB Packet Storm

228462	7.5	危険	software602	-	602Pro LAN SUITE 2003 の SMTP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-3203	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

228463	7.1	危険	winpt	-	WinPT における間違ったユーザ ID 鍵をインストールされる脆弱性	-	CVE-2007-3201	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

228464	10	危険	phpmyinventory	-	phpMyInventory の Includes/global.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3270	2012-12-20 18:19	2007-06-19	Show	GitHub Exploit DB Packet Storm

228465	5	警告	vincent hor	-	Calendarix における重要な情報を取得される脆弱性	-	CVE-2007-3259	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228466	5	警告	vincent hor	-	Calendarix の calendar.php における重要な情報を取得される脆弱性	-	CVE-2007-3258	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

228467	4	警告	xythos	-	XEDM などにおけるマルウェアを配布するドキュメントと任意の Content-Type HTTP ヘッダを関連づけられる脆弱性	-	CVE-2007-3256	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

228468	6.5	警告	xythos	-	XEDM におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3255	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

228469	3.5	注意	xythos	-	XEDM におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3254	2012-12-20 18:19	2007-06-27	Show	GitHub Exploit DB Packet Storm

228470	7.8	危険	portalapp	-	PortalApp におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-3252	2012-12-20 18:19	2007-06-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
2181	6.2	MEDIUM Local	-	-	Prime95 29.4b7 contains a buffer overflow vulnerability in the PrimeNet connection dialog that allows local attackers to crash the application by supplying an excessively long string in the optional …	CWE-120 Classic Buffer Overflow	CVE-2018-25293	2026-04-28 03:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

2182	7.5	HIGH Network	-	-	CEWE Photoshow 6.3.4 contains a buffer overflow vulnerability in the login dialog that allows attackers to crash the application by submitting oversized input. Attackers can inject 4000 bytes of data…	CWE-120 Classic Buffer Overflow	CVE-2018-25294	2026-04-28 03:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

2183	6.2	MEDIUM Local	-	-	ObserverIP Scan Tool 1.4.0.1 contains a denial of service vulnerability that allows local attackers to crash the application by submitting an excessively long string in the IP input field. Attackers …	CWE-789 Memory Allocation with Excessive Size Value	CVE-2018-25295	2026-04-28 03:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

2184	5.5	MEDIUM Local	-	-	P10 Central Management Software 1.4.13 contains a buffer overflow vulnerability in the login password field that allows local attackers to crash the application by submitting an oversized input strin…	CWE-120 Classic Buffer Overflow	CVE-2018-25296	2026-04-28 03:53	2026-04-27	Show	GitHub Exploit DB Packet Storm

2185	9.8	CRITICAL Network	-	-	A security flaw has been discovered in Totolink A8000RU 7.1cu.643_b20200521. This issue affects the function setVpnPassCfg of the file /cgi-bin/cstecgi.cgi of the component CGI Handler. The manipulat…	CWE-77 CWE-78 Command Injection OS Command	CVE-2026-7037	2026-04-28 03:50	2026-04-26	Show	GitHub Exploit DB Packet Storm

2186	3.3	LOW Local	-	-	A weakness has been identified in tufantunc ssh-mcp up to 1.5.0. Impacted is an unknown function of the file src/index.ts of the component Command Line Handler. This manipulation causes insufficientl…	CWE-522 Insufficiently Protected Credentials	CVE-2026-7038	2026-04-28 03:50	2026-04-26	Show	GitHub Exploit DB Packet Storm

2187	5.3	MEDIUM Network	-	-	A vulnerability was found in 666ghj MiroFish up to 0.1.2. This affects the function get_simulation_posts of the file backend/app/api/simulation.py of the component Query Parameter Handler. Performing…	CWE-22 Path Traversal	CVE-2026-7059	2026-04-28 03:50	2026-04-27	Show	GitHub Exploit DB Packet Storm

2188	6.3	MEDIUM Network	-	-	A vulnerability was determined in baomidou dynamic-datasource 2.5.0. Affected by this vulnerability is the function DsSpelExpressionProcessor#doDetermineDatasource of the file dynamic-datasource-spri…	CWE-74 CWE-707 Injection Improper Enforcement of Message or Data Structure	CVE-2026-7045	2026-04-28 03:50	2026-04-27	Show	GitHub Exploit DB Packet Storm

2189	7.3	HIGH Network	-	-	A vulnerability was determined in KLiK SocialMediaWebsite up to 1.0.1. This vulnerability affects unknown code of the file /includes/get_message_ajax.php of the component Private Message Handler. Exe…	CWE-74 CWE-89 Injection SQL Injection	CVE-2026-7002	2026-04-28 03:46	2026-04-26	Show	GitHub Exploit DB Packet Storm

2190	5.3	MEDIUM Network	-	-	A security flaw has been discovered in go-kratos kratos up to 2.9.2. This impacts the function NewServer of the file transport/http/server.go of the component http.DefaultServeMux Fallback Handler. T…	CWE-441 Confused Deputy	CVE-2026-6993	2026-04-28 03:42	2026-04-26	Show	GitHub Exploit DB Packet Storm