Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229391 4.3 警告 PluXml - Pluxml の admin/auth.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3542 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229392 4.3 警告 rainworx - rwAuction Pro の search.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3540 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229393 7.5 危険 qt-cute - QuickTicket およびの QuickTalk フォーラムにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3539 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229394 7.5 危険 qt-cute - QuickTalk guestbook の qtg_msg_view.php における SQL インジェクションの脆弱性 - CVE-2007-3538 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229395 7.2 危険 php director - PHPDirector における権限を取得される脆弱性 - CVE-2007-3530 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229396 7.8 危険 php director - PHPDirector の videos.php における重要な情報を取得される脆弱性 - CVE-2007-3529 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229397 7.5 危険 Vastal I-Tech & Co. - Buddy Zone における SQL インジェクションの脆弱性 - CVE-2007-3526 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229398 7.8 危険 ripe website manager - Ripe Website Manager における設定情報を取得される脆弱性 - CVE-2007-3525 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229399 6.8 警告 ripe website manager - Ripe Website Manager における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3524 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
229400 6.8 警告 sphpell - sPHPell における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3522 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222941 9.1 CRITICAL
Network 		suricata-ids suricata An issue was discovered in Suricata 4.1.4. By sending multiple fragmented IPv4 packets, the function Defrag4Reassemble in defrag.c tries to access a memory region that is not allocated, because of a … CWE-125
Out-of-bounds Read 		CVE-2019-16410 2024-11-21 13:30 2019-09-25 Show GitHub Exploit DB Packet Storm
222942 9.4 CRITICAL
Network 		ipswitch moveit_transfer MOVEit.DMZ.WebApi.dll in Progress MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before 11.1.1 allows an unauthenticated attacker to gain unauthorized access to the database. … CWE-89
SQL Injection 		CVE-2019-16383 2024-11-21 13:30 2019-09-25 Show GitHub Exploit DB Packet Storm
222943 9.8 CRITICAL
Network 		makandra consul The makandra consul gem through 1.0.2 for Ruby has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-16377 2024-11-21 13:30 2019-09-24 Show GitHub Exploit DB Packet Storm
222944 4.3 MEDIUM
Adjacent 		vandyvape swell_kit_mod_firmware An issue was discovered on Swell Kit Mod devices that use the Vandy Vape platform. An attacker may be able to trigger an unintended temperature in the victim's mouth and throat via Bluetooth Low Ener… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-16518 2024-11-21 13:30 2019-09-24 Show GitHub Exploit DB Packet Storm
222945 9.8 CRITICAL
Network 		phpipam phpipam phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter.php table parameter when action=add is used. CWE-89
SQL Injection 		CVE-2019-16695 2024-11-21 13:30 2019-09-23 Show GitHub Exploit DB Packet Storm
222946 9.8 CRITICAL
Network 		phpipam phpipam phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/edit-result.php table parameter when action=add is used. CWE-89
SQL Injection 		CVE-2019-16694 2024-11-21 13:30 2019-09-23 Show GitHub Exploit DB Packet Storm
222947 9.8 CRITICAL
Network 		phpipam phpipam phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/order.php table parameter when action=add is used. CWE-89
SQL Injection 		CVE-2019-16693 2024-11-21 13:30 2019-09-23 Show GitHub Exploit DB Packet Storm
222948 9.8 CRITICAL
Network 		phpipam phpipam phpIPAM 1.4 allows SQL injection via the app/admin/custom-fields/filter-result.php table parameter when action=add is used. CWE-89
SQL Injection 		CVE-2019-16692 2024-11-21 13:30 2019-09-23 Show GitHub Exploit DB Packet Storm
222949 4.7 MEDIUM
Network 		traveloka traveloka The Traveloka application 3.14.0 for Android exports com.traveloka.android.activity.common.WebViewActivity, leading to the opening of arbitrary URLs, which can inject deceptive content into the UI. (… CWE-79
Cross-site Scripting 		CVE-2019-16681 2024-11-21 13:30 2019-09-22 Show GitHub Exploit DB Packet Storm
222950 4.3 MEDIUM
Network 		gnome
redhat
debian
canonical 		file-roller
enterprise_linux
debian_linux
ubuntu_linux 		An issue was discovered in GNOME file-roller before 3.29.91. It allows a single ./../ path traversal via a filename contained in a TAR archive, possibly overwriting a file during extraction. CWE-22
Path Traversal 		CVE-2019-16680 2024-11-21 13:30 2019-09-22 Show GitHub Exploit DB Packet Storm