month report
September 2007
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
September 2007 closed with 453 published CVEs. 59 criticals, php led volume, mostly via php. Top weakness class — CWE-119 (76 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
453
— MoM— YoY
Severity mix
59 / 135
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
1.3%
6 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6741.4
n=6
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
5323
n=1
Most discussed CVEs — September 2007
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #1php20 CVE
- #8joomla10 CVE
- #12vmware7 CVE
- #14firebirdsql6 CVE
- #18auracms4 CVE
- #19boesch-it4 CVE
- #20claroline4 CVE
- #21dibbler4 CVE
- #23imagemagick4 CVE
- #25wordpress4 CVE
Top vendors
Ranked by distinct CVE count this period.
- 20 CVECVSS 6.3NEWPoC 3php (20) · mysql extension (1)
- 14 CVE3 critCVSS 5.9Nuclei 1PoC 1safari (8) · iphone (3) · iphone os (3)
- 14 CVE1 critCVSS 6.9aix (9) · tivoli storage manager client (2) · websphere application server (2)
- 13 CVECVSS 5.7PoC 1debian gnu/linux (13)
- 11 CVE2 critCVSS 6.9PoC 6visual studio (2) · internet explorer (2) · windows 2003 server (2)
- 11 CVE1 critCVSS 4.8red hat enterprise linux (6) · enterprise linux (5) · linux (2)
- 10 CVE3 critCVSS 7.6ubuntu linux (10)
- 10 CVECVSS 6.5NEWPoC 6joomla (6) · flash fun component (1) · akobook (1)
- 8 CVE3 critCVSS 7.8PoC 2solaris (5) · sunos (3) · jre (1)
- 7 CVE2 critCVSS 6.8content switching modules (2) · content switching module with ssl (2) · video surveillance ip gateway encoder decoder (2)
- 7 CVECVSS 4.9PoC 1linux kernel (7)
- 7 CVE4 critCVSS 8.4NEWace (7) · server (6) · player (6)
- 6 CVE1 critCVSS 6.9debian linux (4) · debian-goodies (1) · reprepro (1)
- 6 CVECVSS 5.3NEWfirebird (6)
- 6 CVECVSS 6.0gentoo linux (6)
- 5 CVE1 critCVSS 5.3PoC 1207w network camera (4) · 207w camera (1)
- 4 CVE1 critCVSS 6.2tomcat (1) · http server (1) · openoffice (1)
- 4 CVECVSS 7.3NEWPoC 4auracms (4)
- 4 CVECVSS 4.7NEWsimpgb (2) · simpnews (2)
- 4 CVECVSS 4.1NEWPoC 1claroline (4)
- 4 CVECVSS 5.6NEWdibbler (4)
- 4 CVE1 critCVSS 6.3ucosminexus service platform (3) · ucosminexus application server enterprise (3) · ucosminexus application server standard (3)
- 4 CVE1 critCVSS 7.0NEWimagemagick (4)
- 4 CVE2 critCVSS 7.8PoC 1firefox (3) · seamonkey (2) · bugzilla (1)
- 4 CVECVSS 5.1NEWNuclei 4PoC 1wordpress (4)
- 4 CVECVSS 4.3NEWxwiki (4)
- 3 CVECVSS 6.4NEWpicasa (3)
- 3 CVE2 critCVSS 7.8all-in-on printer (1) · hp-ux (1) · photo and imaging gallery (1)
- 3 CVECVSS 5.9NEWinvision power board (3)
- 3 CVECVSS 7.5NEWPoC 3izicontents (3)
- 3 CVECVSS 4.3NEWPoC 1jspwiki (3)
- 3 CVECVSS 7.2NEWPoC 3kwsphp (3)
- 3 CVE2 critCVSS 9.5NEWkerberos 5 (3)
- 3 CVECVSS 4.5NEWurchin (3)
- 3 CVE2 critCVSS 7.9NEWPoC 1winimage (3)
- 2 CVECVSS 6.3NEWPoC 2flip (2)
- 2 CVE1 critCVSS 7.9NEWacrobat (1) · acrobat reader (1) · connect enterprise server (1)
- 2 CVECVSS 5.9simple php blog (2)
- 2 CVECVSS 6.0NEWinstant messenger (2) · aim lite (1) · aim pro (1)
- 2 CVECVSS 5.9NEWabyss web server (2)
- 2 CVE2 critCVSS 9.7NEWPoC 1ask toolbar (2)
- 2 CVE1 critCVSS 8.4NEWPoC 1storm (2)
- 2 CVECVSS 7.2NEWPoC 2chupix cms (2)
- 2 CVECVSS 5.0NEWPoC 1coppermine photo gallery (2)
- 2 CVECVSS 6.3NEWalien arena 2007 (2)
- 2 CVE1 critCVSS 7.5NEWPoC 2jetaudio (1) · jetcast server (1)
- 2 CVE1 critCVSS 5.6NEWremotedocs r-viewer (2)
- 2 CVECVSS 5.5NEWPoC 1dfd cart (2)
- 2 CVECVSS 5.9NEWPoC 2ebcrypt (2)
- 2 CVECVSS 7.5NEWPoC 2focus sis (2)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | php | 20 | · | · | · | NEWPoC 3 | php (20) · mysql extension (1) | — | |
| 2 | apple | 14 | 3 | · | 1 | Nuclei 1PoC 1 | safari (8) · iphone (3) · iphone os (3) | — | |
| 3 | ibm | 14 | 1 | · | · | aix (9) · tivoli storage manager client (2) · websphere application server (2) | — | ||
| 4 | сообщество свободного программного обеспечения | 13 | · | · | · | PoC 1 | debian gnu/linux (13) | — | |
| 5 | microsoft | 11 | 2 | · | · | PoC 6 | visual studio (2) · internet explorer (2) · windows 2003 server (2) | — | |
| 6 | redhat | 11 | 1 | · | · | red hat enterprise linux (6) · enterprise linux (5) · linux (2) | — | ||
| 7 | canonical | 10 | 3 | · | · | ubuntu linux (10) | — | ||
| 8 | joomla | 10 | · | · | · | NEWPoC 6 | joomla (6) · flash fun component (1) · akobook (1) | — | |
| 9 | sun | 8 | 3 | · | · | PoC 2 | solaris (5) · sunos (3) · jre (1) | — | |
| 10 | cisco | 7 | 2 | · | · | content switching modules (2) · content switching module with ssl (2) · video surveillance ip gateway encoder decoder (2) | — | ||
| 11 | linux | 7 | · | · | · | PoC 1 | linux kernel (7) | — | |
| 12 | vmware | 7 | 4 | · | · | NEW | ace (7) · server (6) · player (6) | — | |
| 13 | debian | 6 | 1 | · | · | debian linux (4) · debian-goodies (1) · reprepro (1) | — | ||
| 14 | firebirdsql | 6 | · | · | · | NEW | firebird (6) | — | |
| 15 | gentoo foundation inc. | 6 | · | · | · | gentoo linux (6) | — | ||
| 16 | axis | 5 | 1 | · | · | PoC 1 | 207w network camera (4) · 207w camera (1) | — | |
| 17 | apache | 4 | 1 | · | · | tomcat (1) · http server (1) · openoffice (1) | — | ||
| 18 | auracms | 4 | · | · | · | NEWPoC 4 | auracms (4) | — | |
| 19 | boesch-it | 4 | · | · | · | NEW | simpgb (2) · simpnews (2) | — | |
| 20 | claroline | 4 | · | · | · | NEWPoC 1 | claroline (4) | — | |
| 21 | dibbler | 4 | · | · | · | NEW | dibbler (4) | — | |
| 22 | hitachi | 4 | 1 | · | · | ucosminexus service platform (3) · ucosminexus application server enterprise (3) · ucosminexus application server standard (3) | — | ||
| 23 | imagemagick | 4 | 1 | · | · | NEW | imagemagick (4) | — | |
| 24 | mozilla | 4 | 2 | · | · | PoC 1 | firefox (3) · seamonkey (2) · bugzilla (1) | — | |
| 25 | wordpress | 4 | · | · | 4 | NEWNuclei 4PoC 1 | wordpress (4) | — | |
| 26 | xwiki | 4 | · | · | · | NEW | xwiki (4) | — | |
| 27 | 3 | · | · | · | NEW | picasa (3) | — | ||
| 28 | hp | 3 | 2 | · | · | all-in-on printer (1) · hp-ux (1) · photo and imaging gallery (1) | — | ||
| 29 | invision power services | 3 | · | · | · | NEW | invision power board (3) | — | |
| 30 | izicontents | 3 | · | · | · | NEWPoC 3 | izicontents (3) | — | |
| 31 | jspwiki | 3 | · | · | · | NEWPoC 1 | jspwiki (3) | — | |
| 32 | kwsphp | 3 | · | · | · | NEWPoC 3 | kwsphp (3) | — | |
| 33 | mit | 3 | 2 | · | · | NEW | kerberos 5 (3) | — | |
| 34 | roi revolution | 3 | · | · | · | NEW | urchin (3) | — | |
| 35 | winimage | 3 | 2 | · | · | NEWPoC 1 | winimage (3) | — | |
| 36 | adam scheinberg | 2 | · | · | · | NEWPoC 2 | flip (2) | — | |
| 37 | adobe | 2 | 1 | · | · | NEW | acrobat (1) · acrobat reader (1) · connect enterprise server (1) | — | |
| 38 | alexander palmo | 2 | · | · | · | simple php blog (2) | — | ||
| 39 | aol | 2 | · | · | · | NEW | instant messenger (2) · aim lite (1) · aim pro (1) | — | |
| 40 | aprelium technologies | 2 | · | · | · | NEW | abyss web server (2) | — | |
| 41 | ask.com | 2 | 2 | · | · | NEWPoC 1 | ask toolbar (2) | — | |
| 42 | baofeng | 2 | 1 | · | · | NEWPoC 1 | storm (2) | — | |
| 43 | chupix | 2 | · | · | · | NEWPoC 2 | chupix cms (2) | — | |
| 44 | coppermine | 2 | · | · | · | NEWPoC 1 | coppermine photo gallery (2) | — | |
| 45 | cor entertainment | 2 | · | · | · | NEW | alien arena 2007 (2) | — | |
| 46 | cowon america | 2 | 1 | · | · | NEWPoC 2 | jetaudio (1) · jetcast server (1) | — | |
| 47 | data-vision | 2 | 1 | · | · | NEW | remotedocs r-viewer (2) | — | |
| 48 | dragonfrugal | 2 | · | · | · | NEWPoC 1 | dfd cart (2) | — | |
| 49 | eb design pty ltd | 2 | · | · | · | NEWPoC 2 | ebcrypt (2) | — | |
| 50 | focus sis | 2 | · | · | · | NEWPoC 2 | focus sis (2) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins104 CVE2 crit66 vendorsCVSS 7.5joomla (6) · auracms (4) · claroline (4)
- Operating Systems70 CVE16 crit19 vendorsCVSS 7.5debian gnu/linux (13) · ubuntu linux (10) · linux kernel (7)
- OSS Libraries39 CVE3 crit13 vendorsCVSS 6.6php (20) · imagemagick (4) · libvorbis (2)
- Enterprise Software39 CVE11 crit15 vendorsCVSS 9.3aix (9) · ucosminexus application server enterprise (3) · ucosminexus application server standard (3)
- Consumer Software39 CVE16 crit28 vendorsCVSS 7.6media player classic (3) · netjuke (2) · stormplayer (2)
- 6 crit12 vendorsCVSS 6.8content switching module with ssl (2) · content switching modules (2) · video surveillance ip gateway encoder decoder (2)
- Communications18 CVE3 crit17 vendorsCVSS 7.5instant messenger (2) · aim lite (1) · aim pro (1)
- Mobile Apps17 CVE3 crit2 vendorsCVSS 6.4safari (8) · iphone (3) · iphone os (3)
- Security Products17 CVE2 crit13 vendorsCVSS 5.9kaspersky internet security (2) · anti-virus (1) · internetsecurity 2007 (1)
- Cloud & SaaS12 CVE17 crit4 vendorsCVSS 8.3ace (7) · player (6) · server (6)
- Databases8 CVE3 vendorsCVSS 5.5firebird (6)
- ICS / OT / IoT5 CVE1 crit1 vendorsCVSS 5.3207w network camera (4) · 207w camera (1)
- DevTools & CI4 CVE1 crit3 vendorsCVSS 7.2backup manager (1) · webmin (1)
- Hardware Firmware2 CVE2 crit1 KEV2 vendorsCVSS 9.8dsl 600eu router (1)
- Unclassified58 CVE8 crit43 vendorsCVSS 6.7izicontents (3) · ask toolbar (2) · cd-storm (2)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 5 | 104 | 2 | · | 66 | 74 | 7.5 | joomla (6) · auracms (4) · claroline (4) |
| Operating Systems▸ 3 | 70 | 16 | · | 19 | 42 | 7.5 | debian gnu/linux (13) · ubuntu linux (10) · linux kernel (7) |
| OSS Libraries▸ 3 | 39 | 3 | · | 13 | 15 | 6.6 | php (20) · imagemagick (4) · libvorbis (2) |
| Enterprise Software▸ 6 | 39 | 11 | · | 15 | 26 | 9.3 | aix (9) · ucosminexus application server enterprise (3) · ucosminexus application server standard (3) |
| Consumer Software▸ 5 | 39 | 16 | · | 28 | 34 | 7.6 | media player classic (3) · netjuke (2) · stormplayer (2) |
| Networking Infrastructure▸ 5 | 21 | 6 | · | 12 | 27 | 6.8 | content switching module with ssl (2) · content switching modules (2) · video surveillance ip gateway encoder decoder (2) |
| Communications▸ 4 | 18 | 3 | · | 17 | 18 | 7.5 | instant messenger (2) · aim lite (1) · aim pro (1) |
| Mobile Apps▸ 2 | 17 | 3 | · | 2 | 7 | 6.4 | safari (8) · iphone (3) · iphone os (3) |
| Security Products▸ 4 | 17 | 2 | · | 13 | 17 | 5.9 | kaspersky internet security (2) · anti-virus (1) · internetsecurity 2007 (1) |
| Cloud & SaaS▸ 2 | 12 | 17 | · | 4 | 9 | 8.3 | ace (7) · player (6) · server (6) |
| Databases▸ 2 | 8 | · | · | 3 | 3 | 5.5 | firebird (6) |
| ICS / OT / IoT▸ 1 | 5 | 1 | · | 1 | 2 | 5.3 | 207w network camera (4) · 207w camera (1) |
| DevTools & CI▸ 2 | 4 | 1 | · | 3 | 3 | 7.2 | backup manager (1) · webmin (1) |
| Hardware Firmware▸ 2 | 2 | 2 | 1 | 2 | 2 | 9.8 | dsl 600eu router (1) |
| Unclassified | 58 | 8 | · | 43 | 44 | 6.7 | izicontents (3) · ask toolbar (2) · cd-storm (2) |