Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228841 4.3 警告 WordPress.org - WordPress 用の Blix テーマなどに関する特定の index.php インストールスクリプトにおけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4014 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228842 6.8 警告 virtual hosting control system - VHCS におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-3988 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228843 5 警告 securecomputing - Secure Computing SecurityReporter の file.cgi における認証を回避される脆弱性 - CVE-2007-3986 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228844 5 警告 securecomputing - SecurityReporter の file.cgi におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3985 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228845 7.5 危険 zenturi - sasatl.dll の NixonMyPrograms クラスにおけるバッファオーバーフローの脆弱性 - CVE-2007-3984 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228846 7.5 危険 wsnlinks - WSN Links Basic Edition の index.php における SQL インジェクションの脆弱性 - CVE-2007-3981 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228847 10 危険 rcms pro - RCMS Pro RGameScript Pro の page.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3980 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228848 6.8 警告 ufmod - uFMOD における脆弱性 - CVE-2007-3965 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228849 9.3 危険 usebb - UseBB におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3963 2012-12-20 18:33 2007-07-25 Show GitHub Exploit DB Packet Storm
228850 7.8 危険 TeamSpeak Systems GmbH - Windows 用の TeamSpeak WebServer におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3956 2012-12-20 18:33 2007-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214201 6.1 MEDIUM
Network 		cmseasy cmseasy In CmsEasy 7.0, there is XSS via the ckplayer.php url parameter. CWE-79
Cross-site Scripting 		CVE-2019-8432 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214202 9.8 CRITICAL
Network 		zoneminder zoneminder ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php filter[Query][terms][0][cnj] parameter. CWE-89
SQL Injection 		CVE-2019-8429 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214203 9.8 CRITICAL
Network 		zoneminder zoneminder ZoneMinder before 1.32.3 has SQL Injection via the skins/classic/views/control.php groupSql parameter, as demonstrated by a newGroup[MonitorIds][] value. CWE-89
SQL Injection 		CVE-2019-8428 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214204 9.8 CRITICAL
Network 		zoneminder zoneminder daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters. CWE-78
OS Command  		CVE-2019-8427 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214205 6.1 MEDIUM
Network 		zoneminder zoneminder skins/classic/views/controlcap.php in ZoneMinder before 1.32.3 has XSS via the newControl array, as demonstrated by the newControl[MinTiltRange] parameter. CWE-79
Cross-site Scripting 		CVE-2019-8426 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214206 6.1 MEDIUM
Network 		zoneminder zoneminder includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages. CWE-79
Cross-site Scripting 		CVE-2019-8425 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214207 9.8 CRITICAL
Network 		zoneminder zoneminder ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php sort parameter. CWE-89
SQL Injection 		CVE-2019-8424 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214208 9.8 CRITICAL
Network 		zoneminder zoneminder ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter. CWE-89
SQL Injection 		CVE-2019-8423 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214209 7.2 HIGH
Network 		pbootcms pbootcms A SQL Injection vulnerability exists in PbootCMS v1.3.2 via the description parameter in apps\admin\controller\content\ContentController.php. CWE-89
SQL Injection 		CVE-2019-8422 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm
214210 7.2 HIGH
Network 		bagesoft bagecms upload/protected/modules/admini/views/post/index.php in BageCMS through 3.1.4 allows SQL Injection via the title or titleAlias parameter. CWE-89
SQL Injection 		CVE-2019-8421 2024-11-21 13:49 2019-02-18 Show GitHub Exploit DB Packet Storm