Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
246461 5 警告 aastra telecom - Aastra 9112i SIP Phone におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3441 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246462 7.8 危険 マイクロソフト
AOL		 - AIM におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3437 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246463 6.8 警告 e107.org - e107 の signup.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3429 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246464 4.3 警告 access2asp - access2asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3414 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246465 4.3 警告 bitego - bosDataGrid におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3413 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246466 4.3 警告 clicktech - ClickGallery Server の edit_image.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3412 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246467 7.5 危険 dia - Dia における詳細不明な脆弱性 - CVE-2007-3408 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246468 7.5 危険 dreamlog - dreamLog の upload.php における uploads/images/ 配下の任意の PHP コードをアップロードされる脆弱性 - CVE-2007-3403 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246469 7.5 危険 b1g - B1G b1gBB の footer.inc.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-3401 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
246470 7.5 危険 endonesia - eNdonesia における SQL インジェクションの脆弱性 - CVE-2007-3394 2012-06-26 15:46 2007-06-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219451 6.5 MEDIUM
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices have an Unauthenticated SMS Sending Service. CWE-269
 Improper Privilege Management 		CVE-2019-7278 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219452 5.3 MEDIUM
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Unauthenticated Internal Network Information Disclosure. NVD-CWE-noinfo
CVE-2019-7277 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219453 9.8 CRITICAL
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Remote Root Code Execution via a Backdoor Console. NVD-CWE-noinfo
CVE-2019-7276 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219454 6.1 MEDIUM
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices allow Open Redirect. CWE-601
Open Redirect 		CVE-2019-7275 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219455 8.8 HIGH
Network 		primasystems flexair Prima Systems FlexAir, Versions 2.3.38 and prior. An unauthenticated user can send unverified HTTP requests, which may allow the attacker to perform certain actions with administrative privileges if … CWE-352
 Origin Validation Error 		CVE-2019-7281 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219456 8.8 HIGH
Network 		primasystems flexair Prima Systems FlexAir, Versions 2.3.38 and prior. The session-ID is of an insufficient length and can be exploited by brute force, which may allow a remote attacker to obtain a valid session and bypa… CWE-613
 Insufficient Session Expiration 		CVE-2019-7280 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219457 7.3 HIGH
Network 		optergy proton
enterprise 		Optergy Proton/Enterprise devices have Hard-coded Credentials. CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7279 2024-11-21 13:47 2019-07-2 Show GitHub Exploit DB Packet Storm
219458 8.8 HIGH
Adjacent 		abb cp620_firmware
cp620-web_firmware
cp630_firmware
cp630-web_firmware
cp635_firmware
cp635-b_firmware
cp635-web_firmware
pb610_firmware
cp651-web_firmware
cp661_firmware
c… 		The ABB HMI components implement hidden administrative accounts that are used during the provisioning phase of the HMI interface. These credentials allow the provisioning tool "Panel Builder 600" to … CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7225 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm
219459 7.3 HIGH
Adjacent 		abb pb610_panel_builder_600_firmware In the ABB IDAL FTP server, an authenticated attacker can traverse to arbitrary directories on the hard disk with "CWD ../" and then use the FTP server functionality to download and upload files. An … CWE-22
Path Traversal 		CVE-2019-7227 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm
219460 8.8 HIGH
Adjacent 		abb pb610_panel_builder_600_firmware The ABB IDAL HTTP server CGI interface contains a URL that allows an unauthenticated attacker to bypass authentication and gain access to privileged functions. Specifically, /cgi/loginDefaultUser cre… CWE-287
Improper Authentication 		CVE-2019-7226 2024-11-21 13:47 2019-06-28 Show GitHub Exploit DB Packet Storm