Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228621 7.5 危険 ryan haudenschilt - PHP の Ryan Haudenschilt Battle.net Clan Script における SQL インジェクションの脆弱性 - CVE-2007-1909 2012-12-20 18:19 2007-04-10 Show GitHub Exploit DB Packet Storm
228622 4.3 警告 pineapple technologies - Pineapple Technologies QuizShock の auth.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-1905 2012-12-20 18:19 2007-04-10 Show GitHub Exploit DB Packet Storm
228623 2.6 注意 sonicbb - SonicBB の search.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1903 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
228624 6.8 警告 sonicbb - SonicBB における SQL インジェクションの脆弱性 - CVE-2007-1902 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
228625 4.3 警告 sonicbb - SonicBB における重要な情報を取得される脆弱性 - CVE-2007-1901 2012-12-20 18:19 2007-05-14 Show GitHub Exploit DB Packet Storm
228626 6.5 警告 WordPress.org - WordPress の xmlrpc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-1897 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
228627 5.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1896 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
228628 6.8 警告 sky gunning - Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1895 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
228629 4.3 警告 WordPress.org - WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1894 2012-12-20 18:19 2007-03-9 Show GitHub Exploit DB Packet Storm
228630 4.9 警告 WordPress.org - WordPress の xmlrpc におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-1893 2012-12-20 18:19 2007-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213741 7.5 HIGH
Network 		schneider-electric modicon_m580_firmware
modicon_m340_firmware
modicon_premium_firmware
modicon_quantum_firmware 		A CWE-248: Uncaught Exception vulnerability exists Modicon M580 (firmware version prior to V2.90), Modicon M340 (firmware version prior to V3.10), Modicon Premium (all versions), and Modicon Quantum … CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-6828 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213742 7.8 HIGH
Local 		schneider-electric somachine_hvac A CWE-426: Untrusted Search Path vulnerability exists in SoMachine HVAC v2.4.1 and earlier versions, which could cause arbitrary code execution on the system running SoMachine HVAC when a malicious D… CWE-426
 Untrusted Search Path 		CVE-2019-6826 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213743 7.5 HIGH
Network 		schneider-electric modicon_m340_firmware
bmxnor0200h_firmware 		A CWE-754: Improper Check for Unusual or Exceptional Conditions vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions) and Modicon M340 controller (all firmware vers… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2019-6813 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213744 7.5 HIGH
Network 		schneider-electric modicon_quantum_140noe77101_firmware
modicon_quantum_140noe77111_firmware 		An Improper Check for Unusual or Exceptional Conditions (CWE-754) vulnerability exists in Modicon Quantum 140 NOE771x1 version 6.9 and earlier, which could cause denial of service when the module rec… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2019-6811 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213745 8.8 HIGH
Network 		schneider-electric bmxnor0200h_firmware CWE-284: Improper Access Control vulnerability exists in BMXNOR0200H Ethernet / Serial RTU module (all firmware versions), which could cause the execution of commands by unauthorized users when using… NVD-CWE-Other
CVE-2019-6810 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213746 7.5 HIGH
Network 		schneider-electric modicon_m580_firmware
modicon_m340_firmware
modicon_premium_firmware
modicon_quantum_firmware 		A CWE-248: Uncaught Exception vulnerability exists in Modicon M580 (firmware versions prior to V2.90), Modicon M340 (firmware versions prior to V3.10), Modicon Premium (all versions), Modicon Quantum… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-6809 2024-11-21 13:47 2019-09-18 Show GitHub Exploit DB Packet Storm
213747 3.7 LOW
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.x (starting in 8.9), 9.x, 10.x, and 11.x before 11.5.9, 11.6.x before 11.6.7, and 11.7.x before 11.7.2. It has Incorrect Access Co… NVD-CWE-noinfo
CVE-2019-7176 2024-11-21 13:47 2019-09-10 Show GitHub Exploit DB Packet Storm
213748 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control (issue 3 of 3). When a project with v… CWE-281
 Improper Preservation of Permissions 		CVE-2019-6791 2024-11-21 13:47 2019-09-10 Show GitHub Exploit DB Packet Storm
213749 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 10.x (starting in 10.7) and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. Sys… CWE-269
 Improper Privilege Management 		CVE-2019-6997 2024-11-21 13:47 2019-09-10 Show GitHub Exploit DB Packet Storm
213750 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 10.x (starting in 10.6) and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. The merge request… CWE-269
 Improper Privilege Management 		CVE-2019-6996 2024-11-21 13:47 2019-09-10 Show GitHub Exploit DB Packet Storm