Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 3, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228581 | 6.8 | 警告 | wabbit | - | Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-2098 | 2012-12-20 18:19 | 2007-04-18 | Show | GitHub Exploit DB Packet Storm |
| 228582 | 7.5 | 危険 | tsdisplay4xoops | - | TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2007-2091 | 2012-12-20 18:19 | 2007-04-18 | Show | GitHub Exploit DB Packet Storm |
| 228583 | 6.8 | 警告 | tumusika evolution | - | TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-2090 | 2012-12-20 18:19 | 2007-04-18 | Show | GitHub Exploit DB Packet Storm |
| 228584 | 7.5 | 危険 | pl-php | - | pL-PHP の admin.php における認証を回避される脆弱性 | - | CVE-2007-2007 | 2012-12-20 18:19 | 2007-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228585 | 7.5 | 危険 | pl-php | - | pL-PHP の login.php における SQL インジェクションの脆弱性 | - | CVE-2007-2006 | 2012-12-20 18:19 | 2007-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228586 | 7.5 | 危険 | raphael limbach | - | Crea-Book の admin/admin.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2007-2000 | 2012-12-20 18:19 | 2007-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228587 | 4.3 | 警告 | Youngzsoft | - | CmailServer WebMail の mail/signup.asp におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-1991 | 2012-12-20 18:19 | 2007-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228588 | 7.5 | 危険 | sam crew | - | Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-1990 | 2012-12-20 18:19 | 2007-04-12 | Show | GitHub Exploit DB Packet Storm |
| 228589 | 4.3 | 警告 | phpecho cms | - | PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性 | - | CVE-2007-1988 | 2012-12-20 18:19 | 2007-04-11 | Show | GitHub Exploit DB Packet Storm |
| 228590 | 7.5 | 危険 | phpexplorator | - | phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-1985 | 2012-12-20 18:19 | 2007-04-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 4, 2026, 4:06 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222961 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Insufficient policy enforcement in developer tools in Google Chrome prior to 79.0.3945.79 allowed a local attacker to obtain potentially sensitive information from process memory via a crafted HTML p… |
CWE-862
Missing Authorization |
CVE-2019-13748 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222962 | 8.8 |
HIGH
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Uninitialized data in rendering in Google Chrome on Android prior to 79.0.3945.79 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. |
CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource |
CVE-2019-13747 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222963 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Insufficient policy enforcement in Omnibox in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. |
NVD-CWE-noinfo
|
CVE-2019-13746 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222964 | 6.5 |
MEDIUM
Network |
google debian suse opensuse fedoraproject redhat |
chrome debian_linux package_hub backports_sle fedora enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation |
Insufficient policy enforcement in audio in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
NVD-CWE-noinfo
|
CVE-2019-13745 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222965 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Insufficient policy enforcement in cookies in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to leak cross-origin data via a crafted HTML page. |
CWE-200
Information Exposure |
CVE-2019-13744 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222966 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Incorrect security UI in external protocol handling in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to spoof security UI via a crafted HTML page. |
NVD-CWE-noinfo
|
CVE-2019-13743 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222967 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Incorrect security UI in Omnibox in Google Chrome on iOS prior to 79.0.3945.79 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-13742 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222968 | 8.8 |
HIGH
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Insufficient validation of untrusted input in Blink in Google Chrome prior to 79.0.3945.79 allowed a local attacker to bypass same origin policy via crafted clipboard content. |
CWE-79
Cross-site Scripting |
CVE-2019-13741 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222969 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Incorrect security UI in sharing in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to perform domain spoofing via a crafted HTML page. |
CWE-346
Origin Validation Error |
CVE-2019-13740 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |
| 222970 | 6.5 |
MEDIUM
Network |
google debian fedoraproject redhat |
chrome debian_linux fedora enterprise_linux_server enterprise_linux_for_scientific_computing enterprise_linux_workstation enterprise_linux_desktop |
Insufficient policy enforcement in Omnibox in Google Chrome prior to 79.0.3945.79 allowed a remote attacker to perform domain spoofing via IDN homographs via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-13739 | 2024-11-21 13:25 | 2019-12-11 | Show | GitHub Exploit DB Packet Storm |