Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229041	5	警告	SAP	-	SAP RFC Library の TRUSTED_SYSTEM_SECURITY 関数におけるシステムおよびドメイン上のユーザーとグループの存在を確認される脆弱性	-	CVE-2007-1913	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

229042	7.5	危険	ryan haudenschilt	-	PHP の Ryan Haudenschilt Battle.net Clan Script における SQL インジェクションの脆弱性	-	CVE-2007-1909	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

229043	4.3	警告	pineapple technologies	-	Pineapple Technologies QuizShock の auth.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1905	2012-12-20 18:19	2007-04-10	Show	GitHub Exploit DB Packet Storm

229044	2.6	注意	sonicbb	-	SonicBB の search.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1903	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229045	6.8	警告	sonicbb	-	SonicBB における SQL インジェクションの脆弱性	-	CVE-2007-1902	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229046	4.3	警告	sonicbb	-	SonicBB における重要な情報を取得される脆弱性	-	CVE-2007-1901	2012-12-20 18:19	2007-05-14	Show	GitHub Exploit DB Packet Storm

229047	6.5	警告	WordPress.org	-	WordPress の xmlrpc における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-1897	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

229048	5.8	警告	sky gunning	-	Sky GUNNING MySpeach の chat.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1896	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

229049	6.8	警告	sky gunning	-	Sky GUNNING MySpeach の chat.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1895	2012-12-20 18:19	2007-04-9	Show	GitHub Exploit DB Packet Storm

229050	4.3	警告	WordPress.org	-	WordPress の wp-includes/general-template.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1894	2012-12-20 18:19	2007-03-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223571	9.1	CRITICAL Network	qualcomm	apq8009_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware…	Multiple Read overflows issue due to improper length check while decoding 3G attach accept/ SMS/ pdn connection reject/ esm data transport/ bearer modify context reject in Snapdragon Auto, Snapdragon…	CWE-125 Out-of-bounds Read	CVE-2019-14011	2024-11-21 13:25	2020-04-16	Show	GitHub Exploit DB Packet Storm

223572	7.8	HIGH Local	qualcomm	apq8009_firmware apq8098_firmware mdm9150_firmware mdm9607_firmware mdm9650_firmware msm8905_firmware msm8909_firmware msm8998_firmware sda660_firmware sda845_firmware s…	Out of bound memory access while processing TZ command handler due to improper input validation on response length received from user in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-14009	2024-11-21 13:25	2020-04-16	Show	GitHub Exploit DB Packet Storm

223573	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware mdm9150_firmware mdm9205_firmware mdm9206_firmware mdm9607_firmware<…	Due to the use of non-time-constant comparison functions there is issue in timing side channels which can be used as a potential side channel for SUI corruption in Snapdragon Auto, Snapdragon Compute…	CWE-203 Information Exposure Through Discrepancy	CVE-2019-14007	2024-11-21 13:25	2020-04-16	Show	GitHub Exploit DB Packet Storm

223574	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096au_firmware mdm9206_firmware mdm9207c_firmware mdm9607_firmware mdm9650_firmware msm8905_firmware msm8909w_firmwar…	Wrong public key usage from existing oem_keystore for hash generation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon W…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-14001	2024-11-21 13:25	2020-04-16	Show	GitHub Exploit DB Packet Storm

223575	8.8	HIGH Adjacent	cypress	wiced_studio	An issue was discovered in Cypress (formerly Broadcom) WICED Studio 6.2 CYW20735B1 and CYW20819A1. As a Bluetooth Low Energy (BLE) packet is received, it is copied into a Heap (ThreadX Block) buffer.…	CWE-787 Out-of-bounds Write	CVE-2019-13916	2024-11-21 13:25	2020-04-14	Show	GitHub Exploit DB Packet Storm

223576	7.8	HIGH Local	ge	mark_vie_controll_system	GE Mark VIe Controller is shipped with pre-configured hard-coded credentials that may allow root-user access to the controller. A limited application of the affected product may ship without setup an…	CWE-798 Use of Hard-coded Credentials	CVE-2019-13559	2024-11-21 13:25	2020-04-8	Show	GitHub Exploit DB Packet Storm

223577	8.8	HIGH Network	ge	mark_vie_control_system	GE Mark VIe Controller has an unsecured Telnet protocol that may allow a user to create an authenticated session using generic default credentials. GE recommends that users disable the Telnet service.	NVD-CWE-Other	CVE-2019-13554	2024-11-21 13:25	2020-04-8	Show	GitHub Exploit DB Packet Storm

223578	5.4	MEDIUM Network	zyxel	xgs2210-52hp_firmware	In firmware version 4.50 of Zyxel XGS2210-52HP, multiple stored cross-site scripting (XSS) issues allows remote authenticated users to inject arbitrary web script via an rpSys.html Name or Location f…	CWE-79 Cross-site Scripting	CVE-2019-13495	2024-11-21 13:25	2020-04-1	Show	GitHub Exploit DB Packet Storm

223579	7.8	HIGH Local	qualcomm	sm8150_firmware	Possible out of bound memory access while playing a crafted clip in media player in Snapdragon Auto, Snapdragon Compute, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdra…	CWE-125 Out-of-bounds Read	CVE-2019-14048	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

223580	9.8	CRITICAL Network	qualcomm	apq8096au_firmware qcs605_firmware sdm439_firmware sm8150_firmware sxr1130_firmware	Possible buffer overflow while processing clientlog and serverlog due to lack of validation of data received in logs in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in APQ8096AU, QCS60…	CWE-120 Classic Buffer Overflow	CVE-2019-14045	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed