Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228581	6.8	警告	wabbit	-	Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2098	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228582	7.5	危険	tsdisplay4xoops	-	TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2091	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228583	6.8	警告	tumusika evolution	-	TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2090	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228584	7.5	危険	pl-php	-	pL-PHP の admin.php における認証を回避される脆弱性	-	CVE-2007-2007	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228585	7.5	危険	pl-php	-	pL-PHP の login.php における SQL インジェクションの脆弱性	-	CVE-2007-2006	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228586	7.5	危険	raphael limbach	-	Crea-Book の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-2000	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228587	4.3	警告	Youngzsoft	-	CmailServer WebMail の mail/signup.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1991	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228588	7.5	危険	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1990	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228589	4.3	警告	phpecho cms	-	PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1988	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

228590	7.5	危険	phpexplorator	-	phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1985	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222581	7.5	HIGH Network	atlassian	jira_service_desk	The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5, from 4…	CWE-22 Path Traversal	CVE-2019-15004	2024-11-21 13:27	2019-11-7	Show	GitHub Exploit DB Packet Storm

222582	5.3	MEDIUM Network	atlassian	jira_service_desk	The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before 3.9.17, from 3.10.0 before 3.16.10, from 4.0.0 before 4.2.6, from 4.3.0 before 4.3.5, from 4…	CWE-22 Path Traversal	CVE-2019-15003	2024-11-21 13:27	2019-11-7	Show	GitHub Exploit DB Packet Storm

222583	4.9	MEDIUM Network	samba opensuse fedoraproject	samba leap fedora	A flaw was found in samba 4.0.0 before samba 4.9.15 and samba 4.10.x before 4.10.10. An attacker can crash AD DC LDAP server via dirsync resulting in denial of service. Privilege escalation is not po…	CWE-476 NULL Pointer Dereference	CVE-2019-14847	2024-11-21 13:27	2019-11-6	Show	GitHub Exploit DB Packet Storm

222584	5.4	MEDIUM Network	samba opensuse fedoraproject	samba leap fedora	A flaw was found in Samba, all versions starting samba 4.5.0 before samba 4.9.15, samba 4.10.10, samba 4.11.2, in the way it handles a user password change or a new password for a samba user. The Sam…	CWE-521 Weak Password Requirements	CVE-2019-14833	2024-11-21 13:27	2019-11-6	Show	GitHub Exploit DB Packet Storm

222585	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote OS Command Injection vulnerability allows an atta…	CWE-78 OS Command	CVE-2019-14931	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222586	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Undocumented hard-coded user passwords for root, ineaadmin, mitsadmin, and …	CWE-798 Use of Hard-coded Credentials	CVE-2019-14930	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222587	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Stored cleartext passwords could allow an unauthenticated attacker to obtai…	CWE-522 Insufficiently Protected Credentials	CVE-2019-14929	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222588	5.4	MEDIUM Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A number of stored cross-site script (XSS) vulnerabilities allow an attacke…	CWE-79 Cross-site Scripting	CVE-2019-14928	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222589	7.5	HIGH Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote configuration download vulnerability allows an at…	CWE-306 CWE-425 Missing Authentication for Critical Function Direct Request ('Forced Browsing')	CVE-2019-14927	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222590	6.5	MEDIUM Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A world-readable /usr/smartrtu/init/settings.xml configuration file on the …	CWE-276 Incorrect Default Permissions	CVE-2019-14925	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm