Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230171	6.8	警告	phproxy	-	PHProxy の index.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0553	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230172	7.8	危険	toxiclab	-	Toxiclab Shoutbox におけるパスワードを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0546	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230173	9.4	危険	zixforum	-	ZixForum におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-0543	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230174	5	警告	WordPress.org	-	WordPress における任意のファイルの存在を特定される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-0541	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230175	5	警告	WordPress.org	-	WordPress におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0540	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230176	7.8	危険	WordPress.org	-	WordPress の wp_remote_fopen 関数におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0539	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230177	5	警告	Telligent	-	Telligent Community Server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0538	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

230178	7.2	危険	rPath, Inc	-	rPath Linux 用の rMake における権限を取得される脆弱性	-	CVE-2007-0536	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

230179	7.5	危険	vote pro	-	Vote! Pro における任意の PHP コードを実行される脆弱性	-	CVE-2007-0535	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

230180	5	警告	tuan do	-	Tuan Do Uploader における管理者パスワードハッシュを取得される脆弱性	-	CVE-2007-0532	2012-12-20 18:19	2007-01-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213571	8.8	HIGH Network	phoenixcontact	rad-80211-xd\/hp-bus_firmware rad-80211-xd_firmware	An issue was discovered on PHOENIX CONTACT RAD-80211-XD and RAD-80211-XD/HP-BUS devices. Command injection can occur in the WebHMI component.	CWE-77 Command Injection	CVE-2019-9743	2024-11-21 13:52	2019-03-27	Show	GitHub Exploit DB Packet Storm

213572	6.1	MEDIUM Network	wikindx_project	wikindx	A cross-site scripting (XSS) vulnerability in ressource view in core/modules/resource/RESOURCEVIEW.php in Wikindx prior to version 5.7.0 allows remote attackers to inject arbitrary web script or HTML…	CWE-79 Cross-site Scripting	CVE-2019-9961	2024-11-21 13:52	2019-03-27	Show	GitHub Exploit DB Packet Storm

213573	7.4	HIGH Network	hashicorp	consul	HashiCorp Consul 1.4.3 lacks server hostname verification for agent-to-agent TLS communication. In other words, the product behaves as if verify_server_hostname were set to false, even when it is act…	CWE-346 Origin Validation Error	CVE-2019-9764	2024-11-21 13:52	2019-03-26	Show	GitHub Exploit DB Packet Storm

213574	6.1	MEDIUM Network	warfareplugins	social_warfare social_warfare_pro	The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php?swp_debug=load_options swp_url parameter, as exploited in the wild in March 2019. This affects Soci…	CWE-79 Cross-site Scripting	CVE-2019-9978	2024-11-21 13:52	2019-03-25	Show	GitHub Exploit DB Packet Storm

213575	8.8	HIGH Network	tesla	model_3_firmware	The renderer process in the entertainment system on Tesla Model 3 vehicles mishandles JIT compilation, which allows attackers to trigger firmware code execution, and display a crafted message to vehi…	NVD-CWE-noinfo	CVE-2019-9977	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

213576	6.5	MEDIUM Network	signal	signal-desktop private_messenger	Open Whisper Signal (aka Signal-Desktop) through 1.23.1 and the Signal Private Messenger application through 4.35.3 for Android are vulnerable to an IDN homograph attack when displaying messages cont…	NVD-CWE-noinfo	CVE-2019-9970	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

213577	7.8	HIGH Local	xnview	xnview_classic	XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to xnview+0x385399.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-9969	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

213578	7.8	HIGH Local	xnview	xnview_classic	XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to ntdll!RtlQueueWorkItem.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-9968	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

213579	7.8	HIGH Local	xnview	xnview_classic	XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to ntdll!RtlPrefixUnicode…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-9967	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm

213580	7.8	HIGH Local	xnview	xnview_classic	XnView Classic 2.48 on Windows allows remote attackers to cause a denial of service (application crash) or possibly have unspecified other impact via a crafted file, related to xnview+0x38536c.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-9966	2024-11-21 13:52	2019-03-24	Show	GitHub Exploit DB Packet Storm