Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229781	5	警告	zeuscms	-	ZeusCMS における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6623	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

229782	7.5	危険	zeuscms	-	ZeusCMS の security.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6622	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

229783	4.3	警告	simpleforum	-	SimpleForum の simpleforum.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6616	2012-12-20 18:34	2008-01-3	Show	GitHub Exploit DB Packet Storm

229784	5.8	警告	skyfex	-	SkyFex Client の SkyFexClient.ocx におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6605	2012-12-20 18:34	2007-12-31	Show	GitHub Exploit DB Packet Storm

229785	5	警告	xcms	-	XCMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6604	2012-12-20 18:34	2007-12-31	Show	GitHub Exploit DB Packet Storm

229786	4.3	警告	phpcredo	-	PHCDownload におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6588	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

229787	7.5	危険	Plogger Project	-	Plogger の plog-rss.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6587	2012-12-20 18:34	2007-11-3	Show	GitHub Exploit DB Packet Storm

229788	6.4	警告	socialengine	-	Social Engine におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6581	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

229789	7.5	危険	wallpaper	-	Wallpaper Site における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6580	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

229790	10	危険	Xfce	-	Xfce の Widget Library におけるメモリ二重解放の脆弱性	CWE-119 バッファエラー	CVE-2007-6532	2012-12-20 18:34	2008-01-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222941	4.6	MEDIUM Physics	huawei	alp-al00b_firmware alp-l09_firmware alp-l29_firmware anne-al00_firmware bla-al00b_firmware bla-l09c_firmware bla-l29c_firmware berkeley-al20_firmware berkeley-l09_firmware …	Huawei smart phones have a Factory Reset Protection (FRP) bypass security vulnerability. When re-configuring the mobile phone using the factory reset protection (FRP) function, an attacker login the …	NVD-CWE-noinfo	CVE-2019-19412	2024-11-21 13:34	2020-06-9	Show	GitHub Exploit DB Packet Storm

222942	6.1	MEDIUM Network	wowza	streaming_engine	A Reflected XSS was found in the server selection box inside the login page at: enginemanager/loginfailed.html in Wowza Streaming Engine <= 4.x.x. This issue was resolved in Wowza Streaming Engine 4.…	CWE-79 Cross-site Scripting	CVE-2019-19456	2024-11-21 13:34	2020-05-19	Show	GitHub Exploit DB Packet Storm

222943	7.5	HIGH Network	wowza	streaming_engine	An arbitrary file download was found in the "Download Log" functionality of Wowza Streaming Engine <= 4.x.x. This issue was resolved in Wowza Streaming Engine 4.8.0.	NVD-CWE-noinfo	CVE-2019-19454	2024-11-21 13:34	2020-05-19	Show	GitHub Exploit DB Packet Storm

222944	7.8	HIGH Local	tobesoft	xplatform	A use-after-free vulnerability in the TOBESOFT XPLATFORM versions 9.1 to 9.2.2 may lead to code execution on a system running it.	CWE-416 Use After Free	CVE-2019-19162	2024-11-21 13:34	2020-05-12	Show	GitHub Exploit DB Packet Storm

222945	8.8	HIGH Network	raonwiz	dext5	dext5.ocx ActiveX Control in Dext5 Upload 5.0.0.112 and earlier versions contains a vulnerability that could allow remote files to be executed by setting the arguments to the activex method. A remote…	NVD-CWE-noinfo	CVE-2019-19164	2024-11-21 13:34	2020-05-8	Show	GitHub Exploit DB Packet Storm

222946	9.8	CRITICAL Network	raonwiz	dext5	Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download arbitrary file by setting the arguments to the activex method. This can be leve…	NVD-CWE-noinfo	CVE-2019-19169	2024-11-21 13:34	2020-05-6	Show	GitHub Exploit DB Packet Storm

222947	9.8	CRITICAL Network	raonwiz	dext5	Dext5.ocx ActiveX 5.0.0.116 and eariler versions contain a vulnerability, which could allow remote attacker to download and execute remote arbitrary file by setting the arguments to the activex metho…	NVD-CWE-noinfo	CVE-2019-19168	2024-11-21 13:34	2020-05-6	Show	GitHub Exploit DB Packet Storm

222948	9.8	CRITICAL Network	tobesoft	nexacro	Tobesoft Nexacro v2019.9.25.1 and earlier version have an arbitrary code execution vulnerability by using method supported by Nexacro14 ActiveX Control. It allows attacker to cause remote code execut…	NVD-CWE-noinfo	CVE-2019-19167	2024-11-21 13:34	2020-05-6	Show	GitHub Exploit DB Packet Storm

222949	7.8	HIGH Local	tobesoft	xplatform	Tobesoft XPlatform v9.1, 9.2.0, 9.2.1 and 9.2.2 have a vulnerability that can load unauthorized DLL files. It allows attacker to cause remote code execution.	NVD-CWE-noinfo	CVE-2019-19166	2024-11-21 13:34	2020-05-6	Show	GitHub Exploit DB Packet Storm

222950	8.8	HIGH Network	intelbras	action_rf_1200_firmware	Intelbras RF1200 1.1.3 devices allow CSRF to bypass the login.html form, as demonstrated by launching a scrapy process.	CWE-352 Origin Validation Error	CVE-2019-19517	2024-11-21 13:34	2020-05-6	Show	GitHub Exploit DB Packet Storm