Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229461	4.3	警告	stphp	-	STphp EasyNews におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3330	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

229462	6.8	警告	xvid	-	Xvid の src/bitstream/mbcoding.c における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2007-3329	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

229463	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player のプラグインにおけるフォーマットストリングの脆弱性	-	CVE-2007-3316	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

229464	6.8	警告	yourfreescreamer	-	YourFreeScreamer における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3315	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

229465	7.5	危険	XOOPS	-	Xoops 用の Articles モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3311	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

229466	4.3	警告	tdizin	-	TDizin の arama.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3310	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

229467	7.5	危険	Simple Machines	-	SMF におけるメッセージの作成時に任意の PHP コードを実行され脆弱性	-	CVE-2007-3309	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

229468	7.5	危険	Simple Machines	-	SMF における CAPTCHA テストを通過される脆弱性	-	CVE-2007-3308	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

229469	7.5	危険	solar empire	-	Solar Empire の game_listing.php における SQL インジェクションの脆弱性	-	CVE-2007-3307	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

229470	7.5	危険	ultrize	-	MiniBill の crontab/run_billing.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3306	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223031	6.5	MEDIUM Adjacent	w1.fi debian canonical	hostapd wpa_supplicant debian_linux ubuntu_linux	hostapd before 2.10 and wpa_supplicant before 2.10 allow an incorrect indication of disconnection in certain situations because source address validation is mishandled. This is a denial of service th…	CWE-346 Origin Validation Error	CVE-2019-16275	2024-11-21 13:30	2019-09-13	Show	GitHub Exploit DB Packet Storm

223032	6.1	MEDIUM Network	afterlogic	aurora	Afterlogic Aurora through 8.3.9-build-a3 has XSS that can be leveraged for session hijacking by retrieving the session cookie from the administrator login.	CWE-79 Cross-site Scripting	CVE-2019-16238	2024-11-21 13:30	2019-09-13	Show	GitHub Exploit DB Packet Storm

223033	9.1	CRITICAL Network	tripplite	pdumh15at_firmware	Tripp Lite PDUMH15AT 12.04.0053 devices allow unauthenticated POST requests to the /Forms/ directory, as demonstrated by changing the manager or admin password, or shutting off power to an outlet. NO…	CWE-287 Improper Authentication	CVE-2019-16261	2024-11-21 13:30	2019-09-13	Show	GitHub Exploit DB Packet Storm

223034	9.8	CRITICAL Network	motorola	motorola_firmware	Some Motorola devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or ex…	NVD-CWE-noinfo	CVE-2019-16257	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223035	9.8	CRITICAL Network	samsung	samsung_firmware	Some Samsung devices include the SIMalliance Toolbox Browser (aka S@T Browser) on the UICC, which might allow remote attackers to retrieve location and IMEI information, or retrieve other data or exe…	NVD-CWE-noinfo	CVE-2019-16256	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223036	7.5	HIGH Network	oceanwp	ocean_extra	includes/wizard/wizard.php in the Ocean Extra plugin through 1.5.8 for WordPress allows unauthenticated options changes and injection of a Cascading Style Sheets (CSS) token sequence.	CWE-287 Improper Authentication	CVE-2019-16250	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223037	5.3	MEDIUM Network	opencv	opencv	OpenCV 4.1.1 has an out-of-bounds read in hal_baseline::v_load in core/hal/intrin_sse.hpp when called from computeSSDMeanNorm in modules/video/src/dis_flow.cpp.	CWE-125 Out-of-bounds Read	CVE-2019-16249	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223038	5.5	MEDIUM Local	telegram	telegram	The "delete for" feature in Telegram before 5.11 on Android does not delete shared media files from the Telegram Images directory. In other words, there is a potentially misleading UI indication that…	NVD-CWE-noinfo	CVE-2019-16248	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223039	7.8	HIGH Local	deltaww	dcisoft	Delta DCISoft 1.21 has a User Mode Write AV starting at CommLib!CCommLib::SetSerializeData+0x000000000000001b.	NVD-CWE-noinfo	CVE-2019-16247	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

223040	7.5	HIGH Network	dino canonical fedoraproject debian	dino ubuntu_linux fedora debian_linux	Dino before 2019-09-10 does not properly check the source of an MAM message in module/xep/0313_message_archive_management.vala.	CWE-346 Origin Validation Error	CVE-2019-16237	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm