Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228581	6.8	警告	wabbit	-	Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2098	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228582	7.5	危険	tsdisplay4xoops	-	TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2091	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228583	6.8	警告	tumusika evolution	-	TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2090	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

228584	7.5	危険	pl-php	-	pL-PHP の admin.php における認証を回避される脆弱性	-	CVE-2007-2007	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228585	7.5	危険	pl-php	-	pL-PHP の login.php における SQL インジェクションの脆弱性	-	CVE-2007-2006	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228586	7.5	危険	raphael limbach	-	Crea-Book の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-2000	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228587	4.3	警告	Youngzsoft	-	CmailServer WebMail の mail/signup.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1991	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228588	7.5	危険	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1990	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

228589	4.3	警告	phpecho cms	-	PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1988	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

228590	7.5	危険	phpexplorator	-	phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1985	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222841	7.5	HIGH Network	foxitsoftware	phantompdf	An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Memory Corruption due to the use of an invalid pointer copy, resulting from a destructed string object.	CWE-787 Out-of-bounds Write	CVE-2019-14210	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222842	9.8	CRITICAL Network	foxitsoftware	phantompdf	An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to Heap Corruption due to data desynchrony when adding AcroForm.	CWE-787 Out-of-bounds Write	CVE-2019-14209	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222843	7.5	HIGH Network	foxitsoftware	phantompdf	An issue was discovered in Foxit PhantomPDF before 8.3.10. The application could be exposed to a NULL pointer dereference and crash when getting a PDF object from a document, or parsing a certain por…	CWE-476 NULL Pointer Dereference	CVE-2019-14208	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222844	7.5	HIGH Network	foxitsoftware	phantompdf	An issue was discovered in Foxit PhantomPDF before 8.3.11. The application could crash when calling the clone function due to an endless loop resulting from confusing relationships between a child an…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-14207	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222845	7.5	HIGH Network	nevma	adaptive_images	An Arbitrary File Deletion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to delete arbitrary files via the $REQUEST['adaptive-images-settings']…	CWE-22 Path Traversal	CVE-2019-14206	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222846	7.5	HIGH Network	nevma	adaptive_images	A Local File Inclusion vulnerability in the Nevma Adaptive Images plugin before 0.6.67 for WordPress allows remote attackers to retrieve arbitrary files via the $REQUEST['adaptive-images-settings']['…	CWE-22 Path Traversal	CVE-2019-14205	2024-11-21 13:26	2019-07-22	Show	GitHub Exploit DB Packet Storm

222847	9.6	CRITICAL Network	google	chrome	Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform OS-level privilege escalation via a malicious file. (Chromium security sever…	CWE-269 Improper Privilege Management	CVE-2019-13690	2024-11-21 13:25	2023-08-26	Show	GitHub Exploit DB Packet Storm

222848	7.8	HIGH Local	google	chrome	Inappropriate implementation in OS in Google Chrome on ChromeOS prior to 75.0.3770.80 allowed a remote attacker to perform arbitrary read/write via a malicious file. (Chromium security severity: Crit…	CWE-59 Link Following	CVE-2019-13689	2024-11-21 13:25	2023-08-26	Show	GitHub Exploit DB Packet Storm

222849	7.4	HIGH Network	google	chrome	Use after free in FileAPI in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to potentially perform a sandbox escape via a crafted HTML page. (Chrome security severity: High)	CWE-416 Use After Free	CVE-2019-13768	2024-11-21 13:25	2023-01-3	Show	GitHub Exploit DB Packet Storm

222850	6.5	MEDIUM Adjacent	sierrawireless	mgos	Sierra Wireless MGOS before 3.15.2 and 4.x before 4.3 allows attackers to read log files via a Direct Request (aka Forced Browsing).	NVD-CWE-noinfo	CVE-2019-13988	2024-11-21 13:25	2022-12-27	Show	GitHub Exploit DB Packet Storm