month report
July 2007
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
July 2007 closed with 594 published CVEs. 75 criticals, microsoft led volume, mostly via internet explorer. Top weakness class — CWE-119 (22 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
594
— MoM— YoY
Severity mix
75 / 195
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.8%
5 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6814.9
n=5
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in July 2007
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
119Memory Buffer Bounds89SQL Injection264CWE-26479XSS20Improper Input Validation22Path Traversal399CWE-39994Code Injection200Information Exposure287Improper Authenticationmicrosoft33111oraclemozilla311apple11alstrasoftez711gentoo foundation inc.11sun12ibm3sapvtigerсообщество свободного программного обеспечения11
Most discussed CVEs — July 2007
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #6ez10 CVE
- #11sap9 CVE
- #12vtiger9 CVE
- #15squirrelmail7 CVE
- #16symantec7 CVE
- #18citrix6 CVE
- #19drupal6 CVE
- #21asp indir5 CVE
- #22codewidgets5 CVE
- #26lighttpd5 CVE
Top vendors
Ranked by distinct CVE count this period.
- 26 CVE8 critCVSS 7.6PoC 1internet explorer (10) · .net framework (3) · excel (3)
- 19 CVECVSS 6.5database server (7) · application server (6) · collaboration suite (5)
- 15 CVE6 critCVSS 6.7PoC 2firefox (13) · thunderbird (3) · seamonkey (2)
- 13 CVE8 critCVSS 8.5PoC 1quicktime (6) · safari (3) · cups (2)
- 11 CVECVSS 5.2PoC 3video share enterprise (3) · affiliate network pro (2) · askme pro (2)
- 10 CVE1 critCVSS 4.9NEWez publish (10)
- 10 CVE2 critCVSS 6.7PoC 1jre (4) · jdk (3) · sdk (2)
- 10 CVECVSS 6.3PoC 1debian gnu/linux (10)
- 9 CVE2 critCVSS 7.3PoC 2gentoo linux (9)
- 9 CVE2 critCVSS 7.1PoC 1aix (4) · proventia network ips gx5008 (2) · proventia network ips gx5108 (2)
- 9 CVE1 critCVSS 7.1NEWPoC 5enjoysap (4) · internet communication manager (1) · internet graphics server (1)
- 9 CVECVSS 5.2NEWvtiger crm (9)
- 7 CVE2 critCVSS 7.8unified communications manager (4) · unified callmanager (2) · wireless lan controller software (2)
- 7 CVECVSS 4.1linux kernel (7)
- 7 CVE1 critCVSS 6.3NEWPoC 1gpg plugin (7) · squirrelmail (2)
- 7 CVECVSS 6.4NEWclient security (3) · norton antivirus (3) · norton ghost (2)
- 6 CVE4 critCVSS 7.0unicenter network and systems management (2) · brightstor arcserve backup (2) · brightstor enterprise backup (2)
- 6 CVE1 critCVSS 7.0NEWaccess gateway (5) · endpoint analysis client (1) · metaframe presentation server (1)
- 6 CVECVSS 5.3NEWdrupal (2) · logintoboggan module (2) · forward module (1)
- 6 CVE2 critCVSS 5.3PoC 1freebsd (3) · libarchive (3)
- 5 CVECVSS 5.6NEWalisveris sitesi script (2) · dora emlak (2) · cvmatik (1)
- 5 CVECVSS 7.2NEWPoC 2online event registration template (2) · threaded discussion forum application (1) · pay roll - time sheet (1)
- 5 CVE1 critCVSS 8.2cosminexus application server (2) · ucosminexus application server (2) · cosminexus developer (1)
- 5 CVECVSS 5.6PoC 1openvms (2) · instant support (1) · cluster object manager (1)
- 5 CVE1 critCVSS 7.3imail server (3) · ipswitch collaboration suite (3) · imserver (1)
- 5 CVECVSS 5.8NEWlighttpd (5)
- 5 CVECVSS 6.2NEWPoC 4php (5)
- 4 CVECVSS 4.7NEWcontentserver (4)
- 4 CVECVSS 4.3derby (3) · tomcat (1)
- 4 CVE1 critCVSS 6.1NEWasterisk (4) · asterisk appliance developer kit (4) · asterisknow (4)
- 4 CVE3 critCVSS 8.3brightstor arcserve backup (2) · etrust intrusion detection (2) · protection suites (2)
- 4 CVECVSS 4.1NEWcodeigniter (4)
- 4 CVECVSS 7.6NEWprotectionpilot (4) · common management agent (3) · e-business server (3)
- 4 CVE1 critCVSS 7.3NEWPoC 2vulnerability scanner (3) · nessus (1)
- 4 CVECVSS 4.3NEWphpids (4)
- 4 CVECVSS 7.3NEWPoC 3quicktalk forum (2) · quickticket (2) · quicktalk guestbook (1)
- 4 CVECVSS 6.0NEWtor (4)
- 4 CVECVSS 5.2NEWNuclei 4wordpress (3) · wordpress mu (2) · blixed (1)
- 3 CVECVSS 6.7PoC 1tippingpoint ips tos (2) · 3cnj220 (1)
- 3 CVE1 critCVSS 6.0flash player (2) · adobe air (1)
- 3 CVE1 critCVSS 7.7NEWPoC 1av tutorial script (2) · av arcade (1)
- 3 CVECVSS 5.4NEWPoC 3bwired (3)
- 3 CVE1 critCVSS 7.8PoC 1ubuntu linux (3)
- 3 CVE1 critCVSS 6.8NEWclavister coreplus (3)
- 3 CVECVSS 5.0NEWPoC 2activereports (2) · activebar (1)
- 3 CVE1 critCVSS 7.9PoC 1debian linux (2) · gfax (1)
- 3 CVE1 critCVSS 8.1NEWinstagate ex2 utm (3)
- 3 CVECVSS 6.7NEWc library (3)
- 3 CVECVSS 4.5NEWencase (3)
- 3 CVECVSS 5.9NEWunobtrusive ajax star rating bar (3)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | microsoft | 26 | 8 | · | · | PoC 1 | internet explorer (10) · .net framework (3) · excel (3) | — | |
| 2 | oracle | 19 | · | · | · | database server (7) · application server (6) · collaboration suite (5) | — | ||
| 3 | mozilla | 15 | 6 | · | · | PoC 2 | firefox (13) · thunderbird (3) · seamonkey (2) | — | |
| 4 | apple | 13 | 8 | · | · | PoC 1 | quicktime (6) · safari (3) · cups (2) | — | |
| 5 | alstrasoft | 11 | · | · | · | PoC 3 | video share enterprise (3) · affiliate network pro (2) · askme pro (2) | — | |
| 6 | ez | 10 | 1 | · | · | NEW | ez publish (10) | — | |
| 7 | sun | 10 | 2 | · | · | PoC 1 | jre (4) · jdk (3) · sdk (2) | — | |
| 8 | сообщество свободного программного обеспечения | 10 | · | · | · | PoC 1 | debian gnu/linux (10) | — | |
| 9 | gentoo foundation inc. | 9 | 2 | · | · | PoC 2 | gentoo linux (9) | — | |
| 10 | ibm | 9 | 2 | · | · | PoC 1 | aix (4) · proventia network ips gx5008 (2) · proventia network ips gx5108 (2) | — | |
| 11 | sap | 9 | 1 | · | · | NEWPoC 5 | enjoysap (4) · internet communication manager (1) · internet graphics server (1) | — | |
| 12 | vtiger | 9 | · | · | · | NEW | vtiger crm (9) | — | |
| 13 | cisco | 7 | 2 | · | · | unified communications manager (4) · unified callmanager (2) · wireless lan controller software (2) | — | ||
| 14 | linux | 7 | · | · | · | linux kernel (7) | — | ||
| 15 | squirrelmail | 7 | 1 | · | · | NEWPoC 1 | gpg plugin (7) · squirrelmail (2) | — | |
| 16 | symantec | 7 | · | · | · | NEW | client security (3) · norton antivirus (3) · norton ghost (2) | — | |
| 17 | broadcom | 6 | 4 | · | · | unicenter network and systems management (2) · brightstor arcserve backup (2) · brightstor enterprise backup (2) | — | ||
| 18 | citrix | 6 | 1 | · | · | NEW | access gateway (5) · endpoint analysis client (1) · metaframe presentation server (1) | — | |
| 19 | drupal | 6 | · | · | · | NEW | drupal (2) · logintoboggan module (2) · forward module (1) | — | |
| 20 | freebsd | 6 | 2 | · | · | PoC 1 | freebsd (3) · libarchive (3) | — | |
| 21 | asp indir | 5 | · | · | · | NEW | alisveris sitesi script (2) · dora emlak (2) · cvmatik (1) | — | |
| 22 | codewidgets | 5 | · | · | · | NEWPoC 2 | online event registration template (2) · threaded discussion forum application (1) · pay roll - time sheet (1) | — | |
| 23 | hitachi | 5 | 1 | · | · | cosminexus application server (2) · ucosminexus application server (2) · cosminexus developer (1) | — | ||
| 24 | hp | 5 | · | · | · | PoC 1 | openvms (2) · instant support (1) · cluster object manager (1) | — | |
| 25 | ipswitch | 5 | 1 | · | · | imail server (3) · ipswitch collaboration suite (3) · imserver (1) | — | ||
| 26 | lighttpd | 5 | · | · | · | NEW | lighttpd (5) | — | |
| 27 | php | 5 | · | · | · | NEWPoC 4 | php (5) | — | |
| 28 | activeweb | 4 | · | · | · | NEW | contentserver (4) | — | |
| 29 | apache | 4 | · | · | · | derby (3) · tomcat (1) | — | ||
| 30 | asterisk | 4 | 1 | · | · | NEW | asterisk (4) · asterisk appliance developer kit (4) · asterisknow (4) | — | |
| 31 | ca | 4 | 3 | · | · | brightstor arcserve backup (2) · etrust intrusion detection (2) · protection suites (2) | — | ||
| 32 | codeigniter | 4 | · | · | · | NEW | codeigniter (4) | — | |
| 33 | mcafee | 4 | · | · | · | NEW | protectionpilot (4) · common management agent (3) · e-business server (3) | — | |
| 34 | nessus | 4 | 1 | · | · | NEWPoC 2 | vulnerability scanner (3) · nessus (1) | — | |
| 35 | phpids | 4 | · | · | · | NEW | phpids (4) | — | |
| 36 | qt-cute | 4 | · | · | · | NEWPoC 3 | quicktalk forum (2) · quickticket (2) · quicktalk guestbook (1) | — | |
| 37 | tor | 4 | · | · | · | NEW | tor (4) | — | |
| 38 | wordpress | 4 | · | · | 4 | NEWNuclei 4 | wordpress (3) · wordpress mu (2) · blixed (1) | — | |
| 39 | 3com | 3 | · | · | · | PoC 1 | tippingpoint ips tos (2) · 3cnj220 (1) | — | |
| 40 | adobe | 3 | 1 | · | · | flash player (2) · adobe air (1) | — | ||
| 41 | av scripts | 3 | 1 | · | · | NEWPoC 1 | av tutorial script (2) · av arcade (1) | — | |
| 42 | bwired | 3 | · | · | · | NEWPoC 3 | bwired (3) | — | |
| 43 | canonical | 3 | 1 | · | · | PoC 1 | ubuntu linux (3) | — | |
| 44 | clavister | 3 | 1 | · | · | NEW | clavister coreplus (3) | — | |
| 45 | datadynamics | 3 | · | · | · | NEWPoC 2 | activereports (2) · activebar (1) | — | |
| 46 | debian | 3 | 1 | · | · | PoC 1 | debian linux (2) · gfax (1) | — | |
| 47 | esoft | 3 | 1 | · | · | NEW | instagate ex2 utm (3) | — | |
| 48 | fsp | 3 | · | · | · | NEW | c library (3) | — | |
| 49 | guidance software | 3 | · | · | · | NEW | encase (3) | — | |
| 50 | masuga design | 3 | · | · | · | NEW | unobtrusive ajax star rating bar (3) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins123 CVE8 crit76 vendorsCVSS 7.2ez publish (10) · contentserver (4) · derby (3)
- Operating Systems79 CVE24 crit18 vendorsCVSS 7.5debian gnu/linux (10) · gentoo linux (9) · linux kernel (7)
- Enterprise Software72 CVE34 crit24 vendorsCVSS 7.6aix (4) · imail server (3) · ipswitch collaboration suite (3)
- Security Products52 CVE6 crit22 vendorsCVSS 6.9protectionpilot (4) · client security (3) · common management agent (3)
- Consumer Software39 CVE13 crit20 vendorsCVSS 7.8firefox (13) · thunderbird (3) · navigator (2)
- Communications32 CVE8 crit18 vendorsCVSS 7.7gpg plugin (7) · b1gbb (2) · squirrelmail (2)
- OSS Libraries27 CVE3 crit16 vendorsCVSS 6.8php (5) · c library (3) · libvorbis (2)
- 6 crit11 vendorsCVSS 8.6unified communications manager (4) · tippingpoint ips tos (2) · unified callmanager (2)
- Cloud & SaaS26 CVE27 crit6 vendorsCVSS 7.0access gateway (5) · brightstor arcserve backup (2) · brightstor enterprise backup (2)
- Databases25 CVE5 vendorsCVSS 7.5database server (7) · application server (6) · collaboration suite (5)
- Mobile Apps14 CVE11 crit2 vendorsCVSS 8.5quicktime (6) · safari (3) · cups (2)
- Hardware Firmware6 CVE4 vendorsCVSS 6.3core 2 duo e4000 (1) · core 2 duo e6000 (1) · core 2 extreme x6800 (1)
- AI / ML1 CVE1 vendorsCVSS 7.5aigaion (1)
- ICS / OT / IoT1 CVE1 vendorsCVSS 7.8ezfactory download cgi (1)
- Unclassified75 CVE6 crit56 vendorsCVSS 6.5bwired (3) · unobtrusive ajax star rating bar (3) · alisveris sitesi script (2)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 123 | 8 | · | 76 | 91 | 7.2 | ez publish (10) · contentserver (4) · derby (3) |
| Operating Systems▸ 3 | 79 | 24 | · | 18 | 49 | 7.5 | debian gnu/linux (10) · gentoo linux (9) · linux kernel (7) |
| Enterprise Software▸ 6 | 72 | 34 | · | 24 | 76 | 7.6 | aix (4) · imail server (3) · ipswitch collaboration suite (3) |
| Security Products▸ 5 | 52 | 6 | · | 22 | 35 | 6.9 | protectionpilot (4) · client security (3) · common management agent (3) |
| Consumer Software▸ 5 | 39 | 13 | · | 20 | 24 | 7.8 | firefox (13) · thunderbird (3) · navigator (2) |
| Communications▸ 4 | 32 | 8 | · | 18 | 23 | 7.7 | gpg plugin (7) · b1gbb (2) · squirrelmail (2) |
| OSS Libraries▸ 3 | 27 | 3 | · | 16 | 17 | 6.8 | php (5) · c library (3) · libvorbis (2) |
| Networking Infrastructure▸ 5 | 27 | 6 | · | 11 | 17 | 8.6 | unified communications manager (4) · tippingpoint ips tos (2) · unified callmanager (2) |
| Cloud & SaaS▸ 2 | 26 | 27 | · | 6 | 53 | 7.0 | access gateway (5) · brightstor arcserve backup (2) · brightstor enterprise backup (2) |
| Databases▸ 2 | 25 | · | · | 5 | 16 | 7.5 | database server (7) · application server (6) · collaboration suite (5) |
| Mobile Apps▸ 2 | 14 | 11 | · | 2 | 8 | 8.5 | quicktime (6) · safari (3) · cups (2) |
| Hardware Firmware▸ 1 | 6 | · | · | 4 | 8 | 6.3 | core 2 duo e4000 (1) · core 2 duo e6000 (1) · core 2 extreme x6800 (1) |
| AI / ML▸ 1 | 1 | · | · | 1 | 1 | 7.5 | aigaion (1) |
| ICS / OT / IoT▸ 1 | 1 | · | · | 1 | 1 | 7.8 | ezfactory download cgi (1) |
| Unclassified | 75 | 6 | · | 56 | 63 | 6.5 | bwired (3) · unobtrusive ajax star rating bar (3) · alisveris sitesi script (2) |
Weakness × Sector
Which weaknesses hit which solution categories in July 2007
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
119Memory Buffer Bounds89SQL Injection264CWE-26479XSS20Improper Input Validation22Path Traversal399CWE-39994Code Injection200Information Exposure287Improper AuthenticationWeb & CMS Plugins98214122Enterprise Software211Operating Systems71111Security Products111211Consumer Software24121OSS Libraries611422Communications511Networking Infrastructure12Databases111Cloud & SaaS11