Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 3, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228681 7.5 危険 typolight - TYPOlight webCMS における脆弱性 CWE-noinfo
情報不足 		CVE-2007-1632 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228682 9.3 危険 studiewijzer - Studiewijzer における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1628 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228683 9.3 危険 PHPNUKE - PHP-NUKE 用の iFrame モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-1626 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228684 4.3 警告 realguestbook - realGuestbook の save_entry.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1625 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228685 7.5 危険 realguestbook - realGuestbook における SQL インジェクションの脆弱性 - CVE-2007-1624 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228686 4.3 警告 realguestbook - realGuestbook におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1623 2012-12-20 18:19 2007-03-23 Show GitHub Exploit DB Packet Storm
228687 4.3 警告 WordPress.org - WordPress の wp-admin/vars.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-1622 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
228688 7.5 危険 scriptmagix - ScriptMagix Photo Rating の viewcomments.php における SQL インジェクションの脆弱性 - CVE-2007-1619 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
228689 7.5 危険 scriptmagix - ScriptMagix FAQ Builder の index.php における SQL インジェクションの脆弱性 - CVE-2007-1618 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
228690 7.5 危険 scriptmagix - ScriptMagix Recipes の index.php における SQL インジェクションの脆弱性 - CVE-2007-1617 2012-12-20 18:19 2007-03-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 3, 2026, 4:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213561 5.9 MEDIUM
Network 		redhat pagure Pagure 5.2 leaks API keys by e-mailing them to users. Few e-mail servers validate TLS certificates, so it is easy for man-in-the-middle attackers to read these e-mails and gain access to Pagure on be… CWE-200
Information Exposure 		CVE-2019-7628 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213562 9.8 CRITICAL
Network 		nginx unit NGINX Unit before 1.7.1 might allow an attacker to cause a heap-based buffer overflow in the router process with a specially crafted request. This may result in a denial of service (router process cr… CWE-787
 Out-of-bounds Write 		CVE-2019-7401 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213563 9.8 CRITICAL
Network 		bo-blog bw Bo-blog Wind through 1.6.0-r allows SQL Injection via the admin.php/comments/batchdel/ comID parameter because this parameter is mishandled in the mode/admin.mode.php delBlockedBatch function. CWE-89
SQL Injection 		CVE-2019-7587 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213564 9.8 CRITICAL
Network 		bijiadao waimai_super_cms An issue was discovered in Waimai Super Cms 20150505. web/Lib/Action/PublicAction.class.php allows time-based SQL Injection via the param array parameter to the /index.php?m=public&a=checkemail URI. CWE-89
SQL Injection 		CVE-2019-7585 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213565 8.8 HIGH
Network 		libming libming The readBytes function in util/read.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-7582 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213566 8.8 HIGH
Network 		libming libming The parseSWF_ACTIONRECORD function in util/parser.c in libming through 0.4.8 allows remote attackers to have unspecified impact via a crafted swf file that triggers a memory allocation failure, a dif… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-7581 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213567 8.8 HIGH
Network 		thinkcmf thinkcmf ThinkCMF 5.0.190111 allows remote attackers to execute arbitrary PHP code via the portal/admin_category/addpost.html alias parameter because the mishandling of a single quote character allows data/co… CWE-94
Code Injection 		CVE-2019-7580 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213568 5.3 MEDIUM
Network 		gurock testrail index.php in Gurock TestRail 5.3.0.3603 returns potentially sensitive information for an invalid request, as demonstrated by full path disclosure and the identification of PHP as the backend technolo… CWE-200
Information Exposure 		CVE-2019-7535 2024-11-21 13:48 2019-02-8 Show GitHub Exploit DB Packet Storm
213569 8.1 HIGH
Network 		libsdl
opensuse
debian
fedoraproject
canonical 		simple_directmedia_layer
leap
debian_linux
fedora
ubuntu_linux 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitIMA_ADPCM in audio/SDL_wave.c. CWE-125
Out-of-bounds Read 		CVE-2019-7578 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
213570 8.8 HIGH
Network 		libsdl
opensuse
debian
fedoraproject
canonical 		simple_directmedia_layer
leap
debian_linux
fedora
ubuntu_linux 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in SDL_LoadWAV_RW in audio/SDL_wave.c. CWE-125
Out-of-bounds Read 		CVE-2019-7577 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm