Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228921 5 警告 webSPELL - WebSPELL の picture.php における任意のファイルを読まれる脆弱性 - CVE-2007-2368 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
228922 10 危険 wserve http server - whttp の wserve_console.exe におけるバッファオーバーフローの脆弱性 - CVE-2007-2367 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
228923 4.9 警告 シマンテック - Symantec Norton Ghost などの製品における資格情報を取得される脆弱性 - CVE-2007-2361 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
228924 6.8 警告 シマンテック - Symantec Norton Ghost などの製品における資格情報を取得される脆弱性 - CVE-2007-2360 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
228925 7.2 危険 シマンテック - Symantec Norton Ghost などの製品で使用される Ghost Service Manager におけるバッファオーバーフローの脆弱性 - CVE-2007-2359 2012-12-20 18:19 2007-04-26 Show GitHub Exploit DB Packet Storm
228926 6.8 警告 sinecms - SineCms の mods/Core/result.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2357 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
228927 7.8 危険 Progress Software Corporation - Progress Webspeed Messenger における重要な情報を取得される脆弱性 - CVE-2007-2354 2012-12-20 18:19 2007-04-30 Show GitHub Exploit DB Packet Storm
228928 7.5 危険 php-generics - PHP-Generics における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2346 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
228929 7.5 危険 phpbandmanager - phpBandManager の suite/index.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2341 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
228930 6.8 警告 phporacleview - phporacleview の inc/include_all.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2340 2012-12-20 18:19 2007-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222651 6.1 MEDIUM
Network 		status_board_project status_board Status Board 1.1.81 has reflected XSS via logic.ts. CWE-79
Cross-site Scripting 		CVE-2019-15478 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222652 7.8 HIGH
Local 		cdemu libmirage filters/filter-cso/filter-stream.c in the CSO filter in libMirage 3.2.2 in CDemu does not validate the part size, triggering a heap-based buffer overflow that can lead to root access by a local Linux… CWE-787
 Out-of-bounds Write 		CVE-2019-15540 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222653 7.5 HIGH
Network 		linux
canonical
netapp
opensuse
debian
fedoraproject 		linux_kernel
ubuntu_linux
data_availability_services
solidfire
hci_management_node
aff_a700s_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_f… 		An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsi… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-15538 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222654 7.3 HIGH
Local 		webtoffee import_export_wordpress_users The webtoffee "WordPress Users & WooCommerce Customers Import Export" plugin 1.3.0 for WordPress allows CSV injection in the user_url, display_name, first_name, and last_name columns in an exported C… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2019-15092 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222655 9.8 CRITICAL
Network 		cesnet proxystatistics The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL Injection in lib/Auth/Process/DatabaseCommand.php. CWE-89
SQL Injection 		CVE-2019-15537 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222656 9.8 CRITICAL
Network 		youracclaim acclaim The Acclaim block plugin before 2019-06-26 for Moodle allows SQL Injection via delete_records. CWE-89
SQL Injection 		CVE-2019-15536 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222657 9.8 CRITICAL
Network 		hostosm tasking_manager Tasking Manager before 3.4.0 allows SQL Injection via custom SQL. CWE-89
SQL Injection 		CVE-2019-15535 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222658 6.5 MEDIUM
Network 		gnu
debian
fedoraproject 		libextractor
debian_linux
fedora 		GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c. CWE-125
Out-of-bounds Read 		CVE-2019-15531 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222659 8.8 HIGH
Network 		dlink dir-823g_firmware An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field… CWE-78
OS Command  		CVE-2019-15530 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222660 8.8 HIGH
Network 		dlink dir-823g_firmware An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to L… CWE-78
OS Command  		CVE-2019-15529 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm