Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228961 7.5 危険 xero portal - Xero Portal における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0561 2012-12-20 18:19 2007-01-30 Show GitHub Exploit DB Packet Storm
228962 7.5 危険 rp world - RPW の config.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0559 2012-12-20 18:19 2007-01-30 Show GitHub Exploit DB Packet Storm
228963 7.2 危険 rmake - rMake における権限を取得される脆弱性 - CVE-2007-0557 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228964 6.8 警告 phproxy - PHProxy の index.inc.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0553 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228965 7.8 危険 toxiclab - Toxiclab Shoutbox におけるパスワードを含むデータベースをダウンロードされる脆弱性 - CVE-2007-0546 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228966 9.4 危険 zixforum - ZixForum におけるデータベースをダウンロードされる脆弱性 - CVE-2007-0543 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228967 5 警告 WordPress.org - WordPress における任意のファイルの存在を特定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-0541 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228968 5 警告 WordPress.org - WordPress におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0540 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228969 7.8 危険 WordPress.org - WordPress の wp_remote_fopen 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0539 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
228970 5 警告 Telligent - Telligent Community Server におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0538 2012-12-20 18:19 2007-01-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223461 3.3 LOW
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the … CWE-416
 Use After Free 		CVE-2019-13511 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223462 7.8 HIGH
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the applica… CWE-416
 Use After Free 		CVE-2019-13510 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223463 9.8 CRITICAL
Network 		givewp givewp A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2019-13578 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223464 9.8 CRITICAL
Network 		adenion blog2social The Adenion Blog2Social plugin through 5.5.0 for WordPress allows SQL Injection. CWE-89
SQL Injection 		CVE-2019-13572 2024-11-21 13:25 2019-08-2 Show GitHub Exploit DB Packet Storm
223465 8.8 HIGH
Network 		cimg cimg CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image. CWE-787
 Out-of-bounds Write 		CVE-2019-13568 2024-11-21 13:25 2019-08-1 Show GitHub Exploit DB Packet Storm
223466 9.1 CRITICAL
Network 		wpfastestcache wp_fastest_cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. CWE-22
Path Traversal 		CVE-2019-13635 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223467 6.5 MEDIUM
Network 		imgix imgix Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250x64250 pixels, which is mishandled… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13655 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223468 9.8 CRITICAL
Network 		vsourz advanced_cf7_db A SQL injection vulnerability exists in the Vsourz Digital Advanced CF7 DB plugin through 1.6.1 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute a… CWE-89
SQL Injection 		CVE-2019-13571 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223469 7.4 HIGH
Network 		oneidentity cloud_access_manager One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-13498 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223470 6.1 MEDIUM
Network 		wikindx_project wikindx A cross-site scripting (XSS) vulnerability in getPagingStart() in core/lists/PAGING.php in WIKINDX before 5.8.2 allows remote attackers to inject arbitrary web script or HTML via the PagingStart para… CWE-79
Cross-site Scripting 		CVE-2019-13588 2024-11-21 13:25 2019-07-27 Show GitHub Exploit DB Packet Storm