month report
April 2007
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
April 2007 closed with 632 published CVEs. 114 criticals, oracle led volume, mostly via database server. Top weakness class — CWE-94 (13 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
632
— MoM— YoY
Severity mix
114 / 264
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.5%
3 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6906.0
n=3
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in April 2007
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Most discussed CVEs — April 2007
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #6xoops12 CVE
- #14sap6 CVE
- #15web-app.net6 CVE
- #17kaspersky lab5 CVE
- #19phorum5 CVE
- #21web-app.org5 CVE
- #22afflib4 CVE
- #23mybb4 CVE
- #24nortel4 CVE
- #26asterisk3 CVE
Top vendors
Ranked by distinct CVE count this period.
- 29 CVE16 critCVSS 8.4database server (13) · application server (7) · e-business suite (6)
- 24 CVE5 critCVSS 7.3PoC 4windows xp (10) · windows 2000 (10) · windows 2003 server (8)
- 19 CVE5 critCVSS 7.4mac os x (15) · mac os x server (8) · quicktime (2)
- 15 CVE3 critCVSS 6.8wireless lan controller software (4) · wireless control system (4) · unified callmanager (3)
- 14 CVECVSS 6.6PoC 5php (14)
- 12 CVECVSS 7.5NEWPoC 12core module (1) · friendfinder module (1) · happy linux xfsection module (1)
- 8 CVE3 critCVSS 7.4websphere application server (3) · lotus notes (1) · tivoli business service manager (1)
- 7 CVE3 critCVSS 7.3PoC 1debian linux (7)
- 7 CVE4 critCVSS 8.4PoC 1gentoo linux (7)
- 6 CVECVSS 5.2http server (3) · tomcat (2) · axis (1)
- 6 CVE3 critCVSS 7.7ubuntu linux (6)
- 6 CVE2 critCVSS 6.4hp-ux (2) · mercury quality center (2) · power manager remote agent (1)
- 6 CVECVSS 5.2enterprise linux (3) · red hat enterprise linux (3) · enterprise linux desktop (2)
- 6 CVE2 critCVSS 7.5NEWrfc library (6)
- 6 CVECVSS 5.1NEWwebapp (6)
- 5 CVE2 critCVSS 8.6PoC 2golive (2) · illustrator (2) · photoshop (2)
- 5 CVE3 critCVSS 8.5NEWkaspersky anti-virus (5) · kaspersky internet security (5)
- 5 CVE2 critCVSS 6.9firefox (4) · mozilla (1) · seamonkey (1)
- 5 CVECVSS 6.2NEWPoC 1phorum (5)
- 5 CVE1 critCVSS 5.9norton save and recovery (3) · norton ghost (3) · livestate recovery (3)
- 5 CVECVSS 5.0NEWwebapp (5)
- 4 CVE2 critCVSS 8.8NEWafflib (4)
- 4 CVECVSS 7.0NEWPoC 1mybb (3) · mybb hot editor plugin (1)
- 4 CVE3 critCVSS 9.0NEWvpn router 5000 (3) · contivity (2) · vpn router 1100 (1)
- 4 CVECVSS 4.6debian gnu/linux (4)
- 3 CVECVSS 7.7NEWasterisk (3)
- 3 CVECVSS 7.5clamav (3)
- 3 CVECVSS 5.6NEWPoC 1drake cms (3)
- 3 CVE2 critCVSS 8.9rsa security sitekey (3)
- 3 CVECVSS 7.0NEWPoC 3inoutmailinglistmanager (3)
- 3 CVE2 critCVSS 9.3NEWPoC 3irfanview (3)
- 3 CVECVSS 6.8NEWPoC 2jambook (1) · joomla (1) · taskhopper component (1)
- 3 CVECVSS 4.9linux kernel (3)
- 3 CVECVSS 7.0NEWgallery (1) · search (1) · weblog (1)
- 3 CVECVSS 6.8NEWPoC 2jambook (1) · mambo calendar (1) · taskhopper component (1)
- 3 CVE3 critCVSS 9.3NEWkerberos 5 (3)
- 3 CVECVSS 7.0PoC 2mybulletinboard (3)
- 3 CVE1 critCVSS 6.9suse linux enterprise (2) · opensuse (1)
- 3 CVE2 critCVSS 8.6NEWPoC 1winamp (3)
- 3 CVECVSS 7.5NEWcourts online (1) · oboshop (1) · onebyone cms (1)
- 3 CVECVSS 5.8openbsd (2) · openssh (1)
- 3 CVECVSS 7.5NEWPoC 3pl-php (3)
- 3 CVECVSS 6.2punbb (3)
- 3 CVECVSS 6.2NEWPoC 1myblog (3)
- 3 CVE2 critCVSS 8.8NEWchatness (3)
- 3 CVECVSS 6.7java web console (1) · sunos (1) · solaris (1)
- 3 CVECVSS 5.2NEWNuclei 3PoC 1wordpress (3)
- 3 CVE1 critCVSS 7.1NEWlibxfont (2) · x11 (1)
- 2 CVE2 critCVSS 9.3NEWPoC 2acdsee (1) · acdsee photo manager (1) · photo editor (1)
- 2 CVECVSS 7.5NEWPoC 1actionpoll (2)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | oracle | 29 | 16 | · | · | database server (13) · application server (7) · e-business suite (6) | — | ||
| 2 | microsoft | 24 | 5 | · | · | PoC 4 | windows xp (10) · windows 2000 (10) · windows 2003 server (8) | — | |
| 3 | apple | 19 | 5 | · | · | mac os x (15) · mac os x server (8) · quicktime (2) | — | ||
| 4 | cisco | 15 | 3 | · | · | wireless lan controller software (4) · wireless control system (4) · unified callmanager (3) | — | ||
| 5 | php | 14 | · | · | · | PoC 5 | php (14) | — | |
| 6 | xoops | 12 | · | · | · | NEWPoC 12 | core module (1) · friendfinder module (1) · happy linux xfsection module (1) | — | |
| 7 | ibm | 8 | 3 | · | · | websphere application server (3) · lotus notes (1) · tivoli business service manager (1) | — | ||
| 8 | debian | 7 | 3 | · | · | PoC 1 | debian linux (7) | — | |
| 9 | gentoo foundation inc. | 7 | 4 | · | · | PoC 1 | gentoo linux (7) | — | |
| 10 | apache | 6 | · | · | · | http server (3) · tomcat (2) · axis (1) | — | ||
| 11 | canonical | 6 | 3 | · | · | ubuntu linux (6) | — | ||
| 12 | hp | 6 | 2 | · | · | hp-ux (2) · mercury quality center (2) · power manager remote agent (1) | — | ||
| 13 | redhat | 6 | · | · | · | enterprise linux (3) · red hat enterprise linux (3) · enterprise linux desktop (2) | — | ||
| 14 | sap | 6 | 2 | · | · | NEW | rfc library (6) | — | |
| 15 | web-app.net | 6 | · | · | · | NEW | webapp (6) | — | |
| 16 | adobe | 5 | 2 | · | · | PoC 2 | golive (2) · illustrator (2) · photoshop (2) | — | |
| 17 | kaspersky lab | 5 | 3 | · | · | NEW | kaspersky anti-virus (5) · kaspersky internet security (5) | — | |
| 18 | mozilla | 5 | 2 | · | · | firefox (4) · mozilla (1) · seamonkey (1) | — | ||
| 19 | phorum | 5 | · | · | · | NEWPoC 1 | phorum (5) | — | |
| 20 | symantec | 5 | 1 | · | · | norton save and recovery (3) · norton ghost (3) · livestate recovery (3) | — | ||
| 21 | web-app.org | 5 | · | · | · | NEW | webapp (5) | — | |
| 22 | afflib | 4 | 2 | · | · | NEW | afflib (4) | — | |
| 23 | mybb | 4 | · | · | · | NEWPoC 1 | mybb (3) · mybb hot editor plugin (1) | — | |
| 24 | nortel | 4 | 3 | · | · | NEW | vpn router 5000 (3) · contivity (2) · vpn router 1100 (1) | — | |
| 25 | сообщество свободного программного обеспечения | 4 | · | · | · | debian gnu/linux (4) | — | ||
| 26 | asterisk | 3 | · | · | · | NEW | asterisk (3) | — | |
| 27 | clam anti-virus | 3 | · | · | · | clamav (3) | — | ||
| 28 | drake team | 3 | · | · | · | NEWPoC 1 | drake cms (3) | — | |
| 29 | emc | 3 | 2 | · | · | rsa security sitekey (3) | — | ||
| 30 | inoutmailinglistmanager | 3 | · | · | · | NEWPoC 3 | inoutmailinglistmanager (3) | — | |
| 31 | irfanview | 3 | 2 | · | · | NEWPoC 3 | irfanview (3) | — | |
| 32 | joomla | 3 | · | · | · | NEWPoC 2 | jambook (1) · joomla (1) · taskhopper component (1) | — | |
| 33 | linux | 3 | · | · | · | linux kernel (3) | — | ||
| 34 | maian | 3 | · | · | · | NEW | gallery (1) · search (1) · weblog (1) | — | |
| 35 | mambo | 3 | · | · | · | NEWPoC 2 | jambook (1) · mambo calendar (1) · taskhopper component (1) | — | |
| 36 | mit | 3 | 3 | · | · | NEW | kerberos 5 (3) | — | |
| 37 | mybulletinboard | 3 | · | · | · | PoC 2 | mybulletinboard (3) | — | |
| 38 | novell inc. | 3 | 1 | · | · | suse linux enterprise (2) · opensuse (1) | — | ||
| 39 | nullsoft | 3 | 2 | · | · | NEWPoC 1 | winamp (3) | — | |
| 40 | onelook | 3 | · | · | · | NEW | courts online (1) · oboshop (1) · onebyone cms (1) | — | |
| 41 | openbsd | 3 | · | · | · | openbsd (2) · openssh (1) | — | ||
| 42 | pl-php | 3 | · | · | · | NEWPoC 3 | pl-php (3) | — | |
| 43 | punbb | 3 | · | · | · | punbb (3) | — | ||
| 44 | sam crew | 3 | · | · | · | NEWPoC 1 | myblog (3) | — | |
| 45 | stephen craton | 3 | 2 | · | · | NEW | chatness (3) | — | |
| 46 | sun | 3 | · | · | · | java web console (1) · sunos (1) · solaris (1) | — | ||
| 47 | wordpress | 3 | · | · | 3 | NEWNuclei 3PoC 1 | wordpress (3) | — | |
| 48 | x.org | 3 | 1 | · | · | NEW | libxfont (2) · x11 (1) | — | |
| 49 | acd systems | 2 | 2 | · | · | NEWPoC 2 | acdsee (1) · acdsee photo manager (1) · photo editor (1) | — | |
| 50 | actionpoll | 2 | · | · | · | NEWPoC 1 | actionpoll (2) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins173 CVE9 crit110 vendorsCVSS 7.5myblog (5) · content management system (4) · drake cms (3)
- Operating Systems63 CVE27 crit25 vendorsCVSS 7.3ubuntu linux (8) · debian linux (7) · gentoo linux (7)
- Enterprise Software44 CVE13 crit23 vendorsCVSS 9.3websphere application server (3) · hp-ux (2) · ldap account manager (2)
- 25 crit21 vendorsCVSS 9.0wireless control system (4) · wireless lan controller software (4) · unified callmanager (3)
- Consumer Software40 CVE21 crit24 vendorsCVSS 8.8golive (2) · illustrator (2) · paint shop pro (2)
- OSS Libraries37 CVE3 crit17 vendorsCVSS 7.8php (14) · afflib (4) · article component (1)
- Databases32 CVE19 crit3 vendorsCVSS 8.3database server (13) · application server (7) · e-business suite (6)
- Security Products31 CVE12 crit17 vendorsCVSS 8.7kaspersky anti-virus (5) · kaspersky internet security (5) · backupexec system recovery (3)
- Mobile Apps21 CVE8 crit3 vendorsCVSS 7.4mac os x (15) · mac os x server (8) · quicktime (2)
- Communications20 CVE10 crit13 vendorsCVSS 8.4cmailserver (2) · phpmynewsletter (2) · atmail webmail (1)
- Cloud & SaaS15 CVE5 crit6 vendorsCVSS 7.6webapp (6) · extremail (2) · video share enterprise (2)
- DevTools & CI4 CVE1 crit3 vendorsCVSS 7.5apache distribution (2) · installanywhere (1)
- ICS / OT / IoT2 CVE1 vendorsCVSS 6.8scaradcontroller (2)
- Hardware Firmware1 CVE1 crit1 vendorsCVSS 10.0voice mail systems (1)
- Unclassified79 CVE4 crit65 vendorsCVSS 7.1inoutmailinglistmanager (3) · actionpoll (2) · aimstats (2)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 173 | 9 | · | 110 | 131 | 7.5 | myblog (5) · content management system (4) · drake cms (3) |
| Operating Systems▸ 3 | 63 | 27 | · | 25 | 46 | 7.3 | ubuntu linux (8) · debian linux (7) · gentoo linux (7) |
| Enterprise Software▸ 4 | 44 | 13 | · | 23 | 46 | 9.3 | websphere application server (3) · hp-ux (2) · ldap account manager (2) |
| Networking Infrastructure▸ 4 | 44 | 25 | · | 21 | 42 | 9.0 | wireless control system (4) · wireless lan controller software (4) · unified callmanager (3) |
| Consumer Software▸ 5 | 40 | 21 | · | 24 | 35 | 8.8 | golive (2) · illustrator (2) · paint shop pro (2) |
| OSS Libraries▸ 3 | 37 | 3 | · | 17 | 17 | 7.8 | php (14) · afflib (4) · article component (1) |
| Databases▸ 2 | 32 | 19 | · | 3 | 9 | 8.3 | database server (13) · application server (7) · e-business suite (6) |
| Security Products▸ 5 | 31 | 12 | · | 17 | 31 | 8.7 | kaspersky anti-virus (5) · kaspersky internet security (5) · backupexec system recovery (3) |
| Mobile Apps▸ 3 | 21 | 8 | · | 3 | 7 | 7.4 | mac os x (15) · mac os x server (8) · quicktime (2) |
| Communications▸ 3 | 20 | 10 | · | 13 | 19 | 8.4 | cmailserver (2) · phpmynewsletter (2) · atmail webmail (1) |
| Cloud & SaaS▸ 2 | 15 | 5 | · | 6 | 10 | 7.6 | webapp (6) · extremail (2) · video share enterprise (2) |
| DevTools & CI▸ 2 | 4 | 1 | · | 3 | 3 | 7.5 | apache distribution (2) · installanywhere (1) |
| ICS / OT / IoT▸ 1 | 2 | · | · | 1 | 1 | 6.8 | scaradcontroller (2) |
| Hardware Firmware▸ 1 | 1 | 1 | · | 1 | 1 | 10.0 | voice mail systems (1) |
| Unclassified | 79 | 4 | · | 65 | 66 | 7.1 | inoutmailinglistmanager (3) · actionpoll (2) · aimstats (2) |
Weakness × Sector
Which weaknesses hit which solution categories in April 2007
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
94Code Injection119Memory Buffer Bounds399CWE-39989SQL Injection20Improper Input Validation287Improper Authentication79XSS189CWE-189264CWE-264200Information ExposureWeb & CMS Plugins74154111Operating Systems52224OSS Libraries11132Networking Infrastructure131211Consumer Software13311Enterprise Software21Security Products11Communications1Databases122Cloud & SaaS11