Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229041	4.3	警告	Zope Foundation	-	Zope におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0240	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

229042	7.5	危険	WordPress.org	-	WordPress の wp-trackback.php における任意の SQL コマンドを実行される脆弱性	-	CVE-2007-0233	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

229043	6.8	警告	シックス・アパート株式会社	-	MT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0231	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

229044	6.8	警告	spine	-	SPINE におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-0101	2012-12-20 18:19	2007-01-8	Show	GitHub Exploit DB Packet Storm

229045	6.8	警告	verliadmin	-	VerliAdmin の language.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0098	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229046	5	警告	The phpMyAdmin Project	-	phpMyAdmin における重要な情報を取得される脆弱性	-	CVE-2007-0095	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229047	7.5	危険	sven moderow	-	Sven Moderow GuestBook におけるパスワードを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0094	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

229048	7.5	危険	uniforum	-	uniForum の wbsearch.aspx における SQL インジェクションの脆弱性	-	CVE-2007-0226	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

229049	6.8	警告	virtual programming	-	VP-ASP Shopping Cart の shopcustadmin.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0225	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

229050	7.5	危険	virtual programming	-	VP-ASP Shopping Cart の shopgiftregsearch.asp における SQL インジェクションの脆弱性	-	CVE-2007-0224	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222941	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Stored cleartext passwords could allow an unauthenticated attacker to obtai…	CWE-522 Insufficiently Protected Credentials	CVE-2019-14929	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222942	5.4	MEDIUM Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A number of stored cross-site script (XSS) vulnerabilities allow an attacke…	CWE-79 Cross-site Scripting	CVE-2019-14928	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222943	7.5	HIGH Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. An unauthenticated remote configuration download vulnerability allows an at…	CWE-306 CWE-425 Missing Authentication for Critical Function Direct Request ('Forced Browsing')	CVE-2019-14927	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222944	6.5	MEDIUM Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. A world-readable /usr/smartrtu/init/settings.xml configuration file on the …	CWE-276 Incorrect Default Permissions	CVE-2019-14925	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222945	9.8	CRITICAL Network	mitsubishielectric inea	smartrtu_firmware me-rtu_firmware	An issue was discovered on Mitsubishi Electric Europe B.V. ME-RTU devices through 2.02 and INEA ME-RTU devices through 3.0. Hard-coded SSH keys allow an attacker to gain unauthorised access or disclo…	CWE-798 Use of Hard-coded Credentials	CVE-2019-14926	2024-11-21 13:27	2019-10-28	Show	GitHub Exploit DB Packet Storm

222946	9.8	CRITICAL Network	hinet	gpon_firmware	An “invalid command” handler issue was discovered in HiNet GPON firmware < I040GWR190731. It allows an attacker to execute arbitrary command through port 6998. CVSS 3.0 Base score 10.0. CVSS vector: …	NVD-CWE-noinfo	CVE-2019-15066	2024-11-21 13:27	2019-10-18	Show	GitHub Exploit DB Packet Storm

222947	7.5	HIGH Network	hinet	gpon_firmware	A service which is hosted on port 6998 in HiNet GPON firmware < I040GWR190731 allows an attacker to execute a specific command to read arbitrary files. CVSS 3.0 Base score 9.3. CVSS vector: (CVSS:3.0…	NVD-CWE-noinfo	CVE-2019-15065	2024-11-21 13:27	2019-10-18	Show	GitHub Exploit DB Packet Storm

222948	9.8	CRITICAL Network	hinet	gpon_firmware	HiNet GPON firmware version < I040GWR190731 allows an attacker login to device without any authentication.	CWE-306 Missing Authentication for Critical Function	CVE-2019-15064	2024-11-21 13:27	2019-10-18	Show	GitHub Exploit DB Packet Storm

222949	7.5	HIGH Network	redhat	keycloak	A flaw was found in the Keycloak REST API before version 8.0.0 where it would permit user access from a realm the user was not configured. An authenticated attacker with knowledge of a user id could …	CWE-863 Incorrect Authorization	CVE-2019-14832	2024-11-21 13:27	2019-10-16	Show	GitHub Exploit DB Packet Storm

222950	7.8	HIGH Local	ubisoft	uplay	Ubisoft Uplay 92.0.0.6280 has Insecure Permissions.	CWE-276 Incorrect Default Permissions	CVE-2019-14737	2024-11-21 13:27	2019-10-15	Show	GitHub Exploit DB Packet Storm