Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, 2:21 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 229161 | 10 | 危険 | tinyirc | - | TinyIdentD におけるスタックベースのバッファオーバーフローの脆弱性 | - | CVE-2007-2711 | 2012-12-20 18:19 | 2007-05-16 | Show | GitHub Exploit DB Packet Storm |
| 229162 | 6.8 | 警告 | simple php scripts gallery | - | sphp の Ivan Peevski gallery における任意の PHP コードを実行される脆弱性 | - | CVE-2007-2679 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229163 | 7.5 | 危険 | phpchess | - | phpChess Community Edition における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-2677 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229164 | 7.5 | 危険 | PreProject.com | - | Pre Classifieds Listings の search.php における SQL インジェクションの脆弱性 | - | CVE-2007-2675 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229165 | 7.5 | 危険 | PreProject.com | - | Pre Shopping Mall の detail.php における SQL インジェクションの脆弱性 | - | CVE-2007-2674 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229166 | 7.5 | 危険 | thinc4orce marketing group | - | PHP Coupon Script の index.php における SQL インジェクションの脆弱性 | - | CVE-2007-2672 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229167 | 6.8 | 警告 | webdesproxy | - | webdesproxy におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2007-2668 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229168 | 7.5 | 危険 | tomasz rekawek | - | Yaap の includes/common.php における PHP リモートファイルインクルージョンの脆弱性 | - | CVE-2007-2664 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229169 | 7.8 | 危険 | precisionid barcode | - | PrecisionID_DataMatrix.DLL の PrecisionID Barcode ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 | - | CVE-2007-2657 | 2012-12-20 18:19 | 2007-05-14 | Show | GitHub Exploit DB Packet Storm |
| 229170 | 4.4 | 警告 | SUSE xfsdump |
- | xfsdump の xfs_fsr における xfs ファイルシステム上で任意のファイルを上書きされる脆弱性 |
CWE-362 CWE-Other |
CVE-2007-2654 | 2012-12-20 18:19 | 2007-05-11 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 222981 | 8.1 |
HIGH
Network |
pw3270_project | pw3270 | There is Missing SSL Certificate Validation in the pw3270 terminal emulator before version 5.1. |
CWE-295
Improper Certificate Validation |
CVE-2019-15525 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222982 | 5.3 |
MEDIUM
Network |
comelz | quark | comelz Quark before 2019-03-26 allows directory traversal to locations outside of the project directory. |
CWE-22
Path Traversal |
CVE-2019-15520 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222983 | 9.8 |
CRITICAL
Network |
power-response_project | power-response | Power-Response before 2019-02-02 allows directory traversal (up to the application's main directory) via a plugin. |
CWE-22
Path Traversal |
CVE-2019-15519 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222984 | 5.3 |
MEDIUM
Network |
swoole | swoole | Swoole before 4.2.13 allows directory traversal in swPort_http_static_handler. |
CWE-22
Path Traversal |
CVE-2019-15518 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222985 | 5.5 |
MEDIUM
Local |
jc21 | nginx_proxy_manager | jc21 Nginx Proxy Manager before 2.0.13 allows %2e%2e%2f directory traversal. |
CWE-22
Path Traversal |
CVE-2019-15517 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222986 | 7.5 |
HIGH
Network |
cuberite | cuberite | Cuberite before 2019-06-11 allows webadmin directory traversal via ....// because the protection mechanism simply removes one ../ substring. |
CWE-22
Path Traversal |
CVE-2019-15516 | 2024-11-21 13:28 | 2019-08-24 | Show | GitHub Exploit DB Packet Storm |
| 222987 | 5.3 |
MEDIUM
Network |
telegram | telegram | The Privacy > Phone Number feature in the Telegram app 5.10 for Android and iOS provides an incorrect indication that the access level is Nobody, because attackers can find these numbers via the Grou… |
NVD-CWE-noinfo
|
CVE-2019-15514 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 222988 | 9.8 |
CRITICAL
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 allows SSRF, aka RVID 5-445b21. |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2019-15494 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 222989 | 7.5 |
HIGH
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 allows deletion of files, aka RVID 4-445b21. |
NVD-CWE-noinfo
|
CVE-2019-15493 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |
| 222990 | 6.1 |
MEDIUM
Network |
it-novum | openitcockpit | openITCOCKPIT before 3.7.1 has reflected XSS, aka RVID 3-445b21. |
CWE-79
Cross-site Scripting |
CVE-2019-15492 | 2024-11-21 13:28 | 2019-08-23 | Show | GitHub Exploit DB Packet Storm |