Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228941 7.5 危険 wf-links - XOOPS 用の WF-Links モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2373 2012-12-20 18:19 2005-06-22 Show GitHub Exploit DB Packet Storm
228942 9.3 危険 シマンテック - Windows 用の Symantec Storage Foundation における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2279 2012-12-20 18:19 2007-06-1 Show GitHub Exploit DB Packet Storm
228943 7.5 危険 Plogger Project - Plogger におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2007-2277 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228944 9.4 危険 rajneel lal totaram - Rajneel Lal TotaRam USP FOSS におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2271 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228945 5 警告 swsoft - Windows 用の SWsoft Plesk の top.php3 におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2269 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228946 5 警告 swsoft - Windows 用の SWsoft Plesk におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2268 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228947 6.8 警告 サン・マイクロシステムズ - Sun Cluster および Solaris Cluster におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2267 2012-12-20 18:19 2007-04-24 Show GitHub Exploit DB Packet Storm
228948 10 危険 Progress Software Corporation - Progress Webspeed Messenger における任意のファイルを実行される脆弱性 CWE-DesignError
CVE-2007-2266 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228949 6.8 警告 phpee - YA Book におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2265 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
228950 7.5 危険 sinato - Sinato jmuffin の html/php/detail.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2262 2012-12-20 18:19 2007-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222651 6.1 MEDIUM
Network 		status_board_project status_board Status Board 1.1.81 has reflected XSS via logic.ts. CWE-79
Cross-site Scripting 		CVE-2019-15478 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222652 7.8 HIGH
Local 		cdemu libmirage filters/filter-cso/filter-stream.c in the CSO filter in libMirage 3.2.2 in CDemu does not validate the part size, triggering a heap-based buffer overflow that can lead to root access by a local Linux… CWE-787
 Out-of-bounds Write 		CVE-2019-15540 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222653 7.5 HIGH
Network 		linux
canonical
netapp
opensuse
debian
fedoraproject 		linux_kernel
ubuntu_linux
data_availability_services
solidfire
hci_management_node
aff_a700s_firmware
h300s_firmware
h500s_firmware
h700s_firmware
h300e_firmware
h500e_f… 		An issue was discovered in xfs_setattr_nonsize in fs/xfs/xfs_iops.c in the Linux kernel through 5.2.9. XFS partially wedges when a chgrp fails on account of being out of disk quota. xfs_setattr_nonsi… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-15538 2024-11-21 13:28 2019-08-26 Show GitHub Exploit DB Packet Storm
222654 7.3 HIGH
Local 		webtoffee import_export_wordpress_users The webtoffee "WordPress Users & WooCommerce Customers Import Export" plugin 1.3.0 for WordPress allows CSV injection in the user_url, display_name, first_name, and last_name columns in an exported C… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2019-15092 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222655 9.8 CRITICAL
Network 		cesnet proxystatistics The proxystatistics module before 3.1.0 for SimpleSAMLphp allows SQL Injection in lib/Auth/Process/DatabaseCommand.php. CWE-89
SQL Injection 		CVE-2019-15537 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222656 9.8 CRITICAL
Network 		youracclaim acclaim The Acclaim block plugin before 2019-06-26 for Moodle allows SQL Injection via delete_records. CWE-89
SQL Injection 		CVE-2019-15536 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222657 9.8 CRITICAL
Network 		hostosm tasking_manager Tasking Manager before 3.4.0 allows SQL Injection via custom SQL. CWE-89
SQL Injection 		CVE-2019-15535 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222658 6.5 MEDIUM
Network 		gnu
debian
fedoraproject 		libextractor
debian_linux
fedora 		GNU Libextractor through 1.9 has a heap-based buffer over-read in the function EXTRACTOR_dvi_extract_method in plugins/dvi_extractor.c. CWE-125
Out-of-bounds Read 		CVE-2019-15531 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222659 8.8 HIGH
Network 		dlink dir-823g_firmware An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the LoginPassword field… CWE-78
OS Command  		CVE-2019-15530 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm
222660 8.8 HIGH
Network 		dlink dir-823g_firmware An issue was discovered on D-Link DIR-823G devices with firmware V1.0.2B05. There is a command injection in HNAP1 (exploitable with Authentication) via shell metacharacters in the Username field to L… CWE-78
OS Command  		CVE-2019-15529 2024-11-21 13:28 2019-08-24 Show GitHub Exploit DB Packet Storm