Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228511	7.5	危険	searchactivity	-	Searchactivity の searchbot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2329	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228512	7.5	危険	phpmytgp	-	phpMYTGP の addvip.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2328	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228513	10	危険	SilverStripe	-	SilverStripe の検索機能における脆弱性	-	CVE-2007-2321	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

228514	7.5	危険	VWar	-	PHP-Nuke 用の VWar モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2312	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228515	7.5	危険	webkalk2	-	WebKalk2 の engine/engine.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2307	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228516	4.3	警告	VWar	-	PHP-Nuke 用の VWar モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2306	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228517	7.5	危険	qdblog	-	QDBlog の authenticate.php における SQL インジェクションの脆弱性	-	CVE-2007-2305	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228518	7.5	危険	qdblog	-	QDBlog におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2304	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228519	4.3	警告	surat kabar	-	Endy Kristanto Surat kabar / News Management Online におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2300	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228520	7.5	危険	wf-links	-	XOOPS 用の WF-Links モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2373	2012-12-20 18:19	2005-06-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222481	6.5	MEDIUM Network	newlib_project	newlib	In the __multadd function of the newlib libc library, prior to versions 3.3.0 (see newlib/libc/stdlib/mprec.c), Balloc is used to allocate a big integer, however no check is performed to verify if th…	CWE-476 NULL Pointer Dereference	CVE-2019-14873	2024-11-21 13:27	2020-03-20	Show	GitHub Exploit DB Packet Storm

222482	6.5	MEDIUM Network	newlib_project	newlib	The _dtoa_r function of the newlib libc library, prior to version 3.3.0, performs multiple memory allocations without checking their return value. This could result in NULL pointer dereference.	CWE-476 NULL Pointer Dereference	CVE-2019-14872	2024-11-21 13:27	2020-03-19	Show	GitHub Exploit DB Packet Storm

222483	6.5	MEDIUM Network	newlib_project	newlib	The REENT_CHECK macro (see newlib/libc/include/sys/reent.h) as used by REENT_CHECK_TM, REENT_CHECK_MISC, REENT_CHECK_MP and other newlib macros in versions prior to 3.3.0, does not check for memory a…	CWE-476 NULL Pointer Dereference	CVE-2019-14871	2024-11-21 13:27	2020-03-19	Show	GitHub Exploit DB Packet Storm

222484	6.1	MEDIUM Network	moodle	moodle	A vulnerability was found in Moodle 3.7 before 3.73, 3.6 before 3.6.7 and 3.5 before 3.5.9, where a reflected XSS possible from some fatal error messages.	CWE-79 Cross-site Scripting	CVE-2019-14884	2024-11-21 13:27	2020-03-18	Show	GitHub Exploit DB Packet Storm

222485	5.3	MEDIUM Network	moodle	moodle	A vulnerability was found in Moodle 3.6 before 3.6.7 and 3.7 before 3.7.3, where tokens used to fetch inline atachments in email notifications were not disabled when a user's account was no longer ac…	CWE-862 Missing Authorization	CVE-2019-14883	2024-11-21 13:27	2020-03-18	Show	GitHub Exploit DB Packet Storm

222486	6.1	MEDIUM Network	moodle	moodle	A vulnerability was found in Moodle 3.7 to 3.7.3, 3.6 to 3.6.7, 3.5 to 3.5.9 and earlier where an open redirect existed in the Lesson edit page.	CWE-601 Open Redirect	CVE-2019-14882	2024-11-21 13:27	2020-03-18	Show	GitHub Exploit DB Packet Storm

222487	6.1	MEDIUM Network	moodle	moodle	A vulnerability was found in moodle 3.7 before 3.7.3, where there is blind XSS reflected in some locations where user email is displayed.	CWE-79 Cross-site Scripting	CVE-2019-14881	2024-11-21 13:27	2020-03-18	Show	GitHub Exploit DB Packet Storm

222488	9.1	CRITICAL Network	redhat	jboss_enterprise_application_platform single_sign-on jboss_fuse jboss_data_grid wildfly openshift_application_runtimes	A flaw was found when an OpenSSL security provider is used with Wildfly, the 'enabled-protocols' value in the Wildfly configuration isn't honored. An attacker could target the traffic sent from Wildf…	NVD-CWE-Other	CVE-2019-14887	2024-11-21 13:27	2020-03-17	Show	GitHub Exploit DB Packet Storm

222489	6.7	MEDIUM Local	intel	field_programmable_gate_array_programmable_acceleration_card_n3000_firmware	Improper access control in PCIe function for the Intel® FPGA Programmable Acceleration Card N3000, all versions, may allow a privileged user to potentially enable escalation of privilege via local ac…	NVD-CWE-noinfo	CVE-2019-14626	2024-11-21 13:27	2020-03-13	Show	GitHub Exploit DB Packet Storm

222490	4.4	MEDIUM Local	intel	field_programmable_gate_array_programmable_acceleration_card_n3000_firmware	Improper access control in on-card storage for the Intel® FPGA Programmable Acceleration Card N3000, all versions, may allow a privileged user to potentially enable denial of service via local access.	NVD-CWE-Other	CVE-2019-14625	2024-11-21 13:27	2020-03-13	Show	GitHub Exploit DB Packet Storm