Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245451	7.5	危険	CMS Made Simple	-	CMS Made Simple の TinyMCE モジュールの content_css.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6656	2012-06-26 15:54	2008-01-2	Show	GitHub Exploit DB Packet Storm

245452	5	警告	Bitweaver	-	Bitweaver R2 CMS の wiki/edit.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6651	2012-06-26 15:54	2008-01-4	Show	GitHub Exploit DB Packet Storm

245453	7.5	危険	Bitweaver	-	Bitweaver R2 CMS の fisheye/upload.php における任意のファイルをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6650	2012-06-26 15:54	2008-01-4	Show	GitHub Exploit DB Packet Storm

245454	5.8	警告	bitflu	-	Bitflu の StorageFarabDb モジュールにおける任意のファイルに対してデータを作成する脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6636	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245455	5	警告	feng	-	Netembryo の Url_init 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6630	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245456	5	警告	feng	-	LScube Feng におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6629	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245457	5	警告	feng	-	LScube Feng におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2007-6628	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245458	7.5	危険	feng	-	LScube Feng の RTSP_remove_msg 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2007-6627	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245459	7.5	危険	feng	-	LScube Feng の RTSP_valid_response_msg 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6626	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

245460	7.5	危険	Atlassian	-	Atlassian JIRA Enterprise Edition の Setup Wizard におけるデフォルト言語を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6619	2012-06-26 15:54	2008-01-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218671	5.5	MEDIUM Local	iobit	smart_defrag	SmartDefragDriver.sys (2.0) in IObit Smart Defrag 6 never frees an executable kernel pool that is allocated with user defined bytes and size when IOCTL 0x9C401CC4 is called. This kernel pointer can b…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-6492	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218672	8.8	HIGH Network	chinamobileltd	gpn2.4p21-c-cn_firmware	ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have CSRF via the cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity URI, allowing an Attacker to change the Wi…	CWE-352 Origin Validation Error	CVE-2019-6282	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218673	8.8	HIGH Network	chinamobileltd	gpn2.4p21-c-cn_firmware	ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have an Incorrect Access Control vulnerability via the cgi-bin/webproc?getpage=html/index.html subpage=wlsecurity URI, …	NVD-CWE-noinfo	CVE-2019-6279	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218674	8.8	HIGH Network	gl-inet	gl-ar300m-lite_firmware	Command injection vulnerability in firmware_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to execute arbitrary code.	CWE-77 Command Injection	CVE-2019-6275	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218675	5.5	MEDIUM Local	systemd_project opensuse netapp debian fedoraproject canonical redhat mcafee	systemd leap active_iq_performance_analytics_services debian_linux fedora ubuntu_linux enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterpr…	An issue was discovered in sd-bus in systemd 239. bus_process_object() in libsystemd/sd-bus/bus-objects.c allocates a variable-length stack buffer for temporarily storing the object path of incoming …	CWE-787 Out-of-bounds Write	CVE-2019-6454	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218676	9.8	CRITICAL Network	coship	rt3050_firmware rt3052_firmware rt7620_firmware wm3300_firmware	An issue was discovered on Shenzhen Coship RT3050 4.0.0.40, RT3052 4.0.0.48, RT7620 10.0.0.49, WM3300 5.0.0.54, and WM3300 5.0.0.55 devices. The password reset functionality of the router doesn't hav…	CWE-287 Improper Authentication	CVE-2019-6441	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218677	8.8	HIGH Network	gl-inet	gl-ar300m-lite_firmware	Directory traversal vulnerability in storage_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to have unspecified impact via directory traversal sequences.	CWE-22 Path Traversal	CVE-2019-6274	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218678	6.5	MEDIUM Network	gl-inet	gl-ar300m-lite_firmware	download_file in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to download arbitrary files.	CWE-22 Path Traversal	CVE-2019-6273	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218679	8.8	HIGH Network	gl-inet	gl-ar300m-lite_firmware	Command injection vulnerability in login_cgi in GL.iNet GL-AR300M-Lite devices with firmware 2.27 allows remote attackers to execute arbitrary code.	CWE-77 Command Injection	CVE-2019-6272	2024-11-21 13:46	2019-03-22	Show	GitHub Exploit DB Packet Storm

218680	6.7	MEDIUM Local	lenovo	dynamic_power_reduction	An unquoted search path vulnerability was identified in Lenovo Dynamic Power Reduction Utility prior to version 2.2.2.0 that could allow a malicious user with local access to execute code with admini…	CWE-428 Unquoted Search Path or Element	CVE-2019-6149	2024-11-21 13:46	2019-03-18	Show	GitHub Exploit DB Packet Storm