Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230261 4.3 警告 sniggabo - Sniggabo CMS の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1072 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230262 7.5 危険 phpmdj - phpMDJ の profil.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1071 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230263 7.5 危険 proarcadescript - ProArcadeScript の games/game.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1069 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230264 5 警告 the-ghost - AWCM におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1066 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230265 6.8 警告 PHP工房 - Phpkobo Free Real Estate Contact Form におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1063 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230266 6.8 警告 PHP工房 - Phpkobo Free Real Estate Contact Form の codelib/sys/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1062 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230267 6.8 警告 PHP工房 - Phpkobo Short URL におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1061 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230268 6.8 警告 PHP工房 - Phpkobo Short URL の staff/app/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1060 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230269 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1059 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
230270 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1058 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224361 6.5 MEDIUM
Network 		rdkcentral rdkb_ccsppandm Incorrect access control in actionHandlerUtility.php in the RDK RDKB-20181217-1 WebUI module allows a logged in user to control DDNS, QoS, RIP, and other privileged configurations (intended only for … CWE-862
 Missing Authorization 		CVE-2019-6961 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
224362 7.5 HIGH
Network 		tp-link tl-wr1043nd_firmware An issue was discovered on TP-Link TL-WR1043ND V2 devices. The credentials can be easily decoded and cracked by brute-force, WordList, or Rainbow Table attacks. Specifically, credentials in the "Auth… CWE-326
Inadequate Encryption Strength 		CVE-2019-6972 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
224363 9.8 CRITICAL
Network 		tp-link tl-wr1043nd_firmware An issue was discovered on TP-Link TL-WR1043ND V2 devices. An attacker can send a cookie in an HTTP authentication packet to the router management web interface, and fully control the router without … NVD-CWE-noinfo
CVE-2019-6971 2024-11-21 13:47 2019-06-20 Show GitHub Exploit DB Packet Storm
224364 7.5 HIGH
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.1 and earlier allows Information Exposure. NVD-CWE-noinfo
CVE-2019-7159 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
224365 6.1 MEDIUM
Network 		i-doit i-doit An XSS issue was discovered in i-doit Open 1.12 via the src/tools/php/qr/qr.php url parameter. CWE-79
Cross-site Scripting 		CVE-2019-6965 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
224366 9.8 CRITICAL
Network 		open-xchange open-xchange_appsuite OX App Suite 7.10.0 and earlier has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-7158 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
224367 7.5 HIGH
Network 		genieaccess wip3bvaf_firmware Genie Access WIP3BVAF WISH IP 3MP IR Auto Focus Bullet Camera devices through 3.x are vulnerable to directory traversal via the web interface, as demonstrated by reading /etc/shadow. NOTE: this produ… CWE-22
Path Traversal 		CVE-2019-7315 2024-11-21 13:47 2019-06-18 Show GitHub Exploit DB Packet Storm
224368 8.8 HIGH
Network 		tp-link tl-wr940n_firmware
tl-wr941nd_firmware 		TP-Link TL-WR940N is vulnerable to a stack-based buffer overflow, caused by improper bounds checking by the ipAddrDispose function. By sending specially crafted ICMP echo request packets, a remote au… CWE-787
 Out-of-bounds Write 		CVE-2019-6989 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm
224369 6.5 MEDIUM
Network 		progress sitefinity Progress Sitefinity 10.1.6536 does not invalidate session cookies upon logouts. It instead tries to overwrite the cookie in the browser, but it remains valid on the server side. This means the cookie… CWE-613
 Insufficient Session Expiration 		CVE-2019-7215 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm
224370 7.8 HIGH
Local 		linksys wrt1900acs_firmware An issue was discovered on Linksys WRT1900ACS 1.0.3.187766 devices. A lack of encryption in how the user login cookie (admin-auth) is stored on a victim's computer results in the admin password being… CWE-311
Missing Encryption of Sensitive Data 		CVE-2019-7311 2024-11-21 13:47 2019-06-7 Show GitHub Exploit DB Packet Storm