Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228921	7.5	危険	vbzoom	-	VBZooM の reply.php における SQL インジェクションの脆弱性	-	CVE-2007-3588	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

228922	7.5	危険	postnuke software foundation	-	PNphpBB2 の viewforum.php における SQL インジェクションの脆弱性	-	CVE-2007-3584	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

228923	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3580	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228924	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3579	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228925	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3578	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

228926	4.3	警告	PHPIDS	-	PHP iCalendar の print.php における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3577	2012-12-20 18:19	2007-07-2	Show	GitHub Exploit DB Packet Storm

228927	9.3	危険	yoggie	-	Yoggie Pico and Pico Pro 上の Web インターフェースにおける任意のコマンドを実行される脆弱性	-	CVE-2007-3572	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

228928	4.3	警告	softlink europe	-	Oliver Library Management System におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3569	2012-12-20 18:19	2007-07-5	Show	GitHub Exploit DB Packet Storm

228929	4.3	警告	webixir	-	Efendy Blog の ara.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3561	2012-12-20 18:19	2007-07-4	Show	GitHub Exploit DB Packet Storm

228930	3.5	注意	PHP-Fusion	-	PHP-Fusion の infusions/shoutbox_panel/shoutbox_panel.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3559	2012-12-20 18:19	2007-07-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222291	4.3	MEDIUM Network	foxitsoftware	phantompdf	This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in t…	CWE-416 Use After Free	CVE-2019-17143	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222292	8.8	HIGH Network	foxitsoftware	phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the …	CWE-416 Use After Free	CVE-2019-17142	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222293	8.8	HIGH Network	foxitsoftware	phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the …	CWE-416 Use After Free	CVE-2019-17141	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222294	8.8	HIGH Network	foxitsoftware	phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.6.0.25114. User interaction is required to exploit this vulnerability in that the …	CWE-416 Use After Free	CVE-2019-17140	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222295	8.8	HIGH Network	foxitsoftware	foxit_reader phantompdf	This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the …	CWE-787 Out-of-bounds Write	CVE-2019-17139	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222296	4.3	MEDIUM Network	foxitsoftware	foxit_studio_photo	This vulnerability allows remote attackers to disclose sensitive information on affected installations of Foxit Studio Photo 3.6.6.909. User interaction is required to exploit this vulnerability in t…	CWE-125 Out-of-bounds Read	CVE-2019-17138	2024-11-21 13:31	2019-10-26	Show	GitHub Exploit DB Packet Storm

222297	7.8	HIGH Local	avg avast	anti-virus antivirus	An issue was discovered in Avast antivirus before 19.8 and AVG antivirus before 19.8. A DLL Preloading vulnerability allows an attacker to implant %WINDIR%\system32\wbemcomn.dll, which is loaded into…	CWE-427 Uncontrolled Search Path Element	CVE-2019-17093	2024-11-21 13:31	2019-10-24	Show	GitHub Exploit DB Packet Storm

222298	6.1	MEDIUM Network	fusionpbx	fusionpbx	In FusionPBX up to 4.5.7, the file app\extensions\extension_imports.php uses an unsanitized "query_string" variable coming from the URL, which is reflected in HTML, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-16977	2024-11-21 13:31	2019-10-24	Show	GitHub Exploit DB Packet Storm

222299	6.1	MEDIUM Network	fusionpbx	fusionpbx	In FusionPBX up to 4.5.7, the file app\contacts\contact_notes.php uses an unsanitized "id" variable coming from the URL, which is reflected in HTML, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-16975	2024-11-21 13:31	2019-10-24	Show	GitHub Exploit DB Packet Storm

222300	6.1	MEDIUM Network	fusionpbx	fusionpbx	In FusionPBX up to 4.5.7, the file app\destinations\destination_imports.php uses an unsanitized "query_string" variable coming from the URL, which is reflected on 2 occasions in HTML, leading to XSS.	CWE-79 Cross-site Scripting	CVE-2019-16976	2024-11-21 13:31	2019-10-24	Show	GitHub Exploit DB Packet Storm