month report

January 2007

Data as of Jun 4, 2026, 13:24 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

January 2007 closed with 730 published CVEs. 85 criticals, oracle led volume, mostly via application server. Biggest breakout: oracle at ×8.3 their 12-month median. Top weakness class — CWE-119 (21 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

730

— MoM— YoY

Severity mix

85 / 288

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

1.0%

7 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

6992.8

n=7

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

—

n=0

Weakness × Vendor

What's spreading where in January 2007

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

8.3×oracle33 CVE
4.0×wordpress8 CVE
4.0×adobe8 CVE
3.5×phpmyadmin7 CVE
3.3×broadcom10 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#12the address book8 CVE
#16endonesia6 CVE
#20aztek forum5 CVE
#24easebay resources4 CVE
#25f54 CVE
#27igeneric4 CVE
#29212cafe3 CVE
#31docman3 CVE
#32ezboxx3 CVE
#33fersch3 CVE

Top vendors

Ranked by distinct CVE count this period.

1oracle—
33 CVECVSS 5.0
×8.3PoC 2
application server (12) · database server (11) · collaboration suite (9)
2apple—
28 CVE4 critCVSS 7.2
PoC 9
mac os x (20) · quicktime (4) · ichat (3)
3microsoft—
24 CVE16 critCVSS 8.7
PoC 5
office (10) · works (6) · excel (5)
4bea—
20 CVE1 critCVSS 6.0
weblogic server (17) · aqualogic service bus (2) · jrockit (1)
5cisco—
13 CVE3 critCVSS 7.0
network admission control manager and server system software (3) · secure access control server (3) · ios transmission control protocol (3)
6sun—
12 CVE1 critCVSS 6.5
solaris (5) · sunos (3) · java system access manager (1)
7broadcom—
10 CVE6 critCVSS 9.0
×3.3PoC 1
brightstor enterprise backup (4) · brightstor arcserve backup (4) · widcomm bluetooth (3)
8joomla—
9 CVECVSS 6.6
PoC 3
joomla (7) · rs gallery2 (1) · be it easypartner component (1)
9adobe—
8 CVE1 critCVSS 5.7
×4.0PoC 3
acrobat reader (7) · acrobat (4) · acrobat 3d (3)
10gentoo foundation inc.—
8 CVE4 critCVSS 7.7
gentoo linux (8)
11hp—
8 CVE1 critCVSS 4.8
PoC 1
hp-ux (2) · openview network node manager (2) · http server (1)
12the address book—
8 CVECVSS 6.4
NEWPoC 3
the address book (8)
13wordpress—
8 CVECVSS 6.5
×4.0Nuclei 7PoC 2
wordpress (8)
14drupal—
7 CVECVSS 5.8
drupal (3) · project (3) · project issue tracking module (3)
15phpmyadmin—
7 CVE1 critCVSS 6.8
×3.5PoC 2
phpmyadmin (7)
16endonesia—
6 CVECVSS 6.3
NEWPoC 5
endonesia (6)
17ibm—
6 CVE1 critCVSS 6.0
aix (4) · os 400 (2)
18linux—
6 CVE1 critCVSS 5.0
linux kernel (6)
19сообщество свободного программного обеспечения—
6 CVECVSS 5.4
PoC 1
debian gnu/linux (6)
20aztek forum—
5 CVECVSS 6.7
NEWPoC 1
aztek forum (5)
21argosoft—
4 CVE1 critCVSS 7.5
ftp server (4)
22bitweaver—
4 CVECVSS 5.9
PoC 2
bitweaver (4)
23cmsmadesimple—
4 CVECVSS 7.0
cms made simple (4)
24easebay resources—
4 CVECVSS 7.2
NEW
login manager (2) · paypal subscription manager (2)
25f5—
4 CVECVSS 6.5
NEW
firepass (3) · firepass 4100 (1)
26hitachi—
4 CVECVSS 6.4
hirdb datareplicator (1) · cosminexus application server version 5 (1) · cosminexus developer light version 6 (1)
27igeneric—
4 CVECVSS 7.5
NEWPoC 3
ig shop (3) · ig calendar (1)
28webroot software—
4 CVECVSS 6.3
spy sweeper (3) · spy sweeper enterprise (1)
29212cafe—
3 CVECVSS 6.8
NEW
212cafeboard (2) · guestbook (1)
30ca—
3 CVE2 critCVSS 9.1
PoC 1
protection suites (2) · host-based intrusion prevention system (1)
31docman—
3 CVECVSS 6.4
NEW
docman (3)
32ezboxx—
3 CVECVSS 7.4
NEW
ezboxx portal system (2) · portal system beta (1)
33fersch—
3 CVECVSS 5.9
NEWPoC 2
formbankserver (3)
34freebsd—
3 CVECVSS 6.8
freebsd (3)
35getahead—
3 CVECVSS 6.7
NEW
direct web remoting (3)
36maxdev—
3 CVE1 critCVSS 7.3
PoC 2
mdpro (2) · mdforum (1)
37maxum development corporation—
3 CVECVSS 5.2
NEWPoC 1
rumpus ftp server (3)
38mkportal—
3 CVECVSS 7.4
NEW
mkportal (3)
39novell inc.—
3 CVECVSS 3.9
opensuse (2) · suse linux enterprise (1)
40opera—
3 CVE2 critCVSS 7.6
PoC 1
opera browser (3)
41phpbb group—
3 CVE3 critCVSS 10.0
phpbb (3)
42php-update—
3 CVECVSS 7.0
NEWPoC 3
php-update (3)
43plain black—
3 CVECVSS 6.7
NEW
webgui (3)
44postnuke software foundation—
3 CVE1 critCVSS 7.6
postnuke (3)
45xfree86 project—
3 CVE1 critCVSS 7.7
xfree86 (2) · xfree86 x server (1)
46x.org—
3 CVE1 critCVSS 7.7
x.org (3)
47alexphpteam—
2 CVECVSS 7.5
NEWPoC 2
alex guestbook (2)
48asp edge—
2 CVECVSS 7.5
NEWPoC 1
asp edge (2)
49canonical—
2 CVE1 critCVSS 8.4
ubuntu linux (2)
50cgi-rescue—
2 CVECVSS 5.9
shopping basket professional (1) · webform (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	oracle	33	·	·	·	×8.3PoC 2	application server (12) · database server (11) · collaboration suite (9)	—
2	apple	28	4	·	·	PoC 9	mac os x (20) · quicktime (4) · ichat (3)	—
3	microsoft	24	16	·	·	PoC 5	office (10) · works (6) · excel (5)	—
4	bea	20	1	·	·		weblogic server (17) · aqualogic service bus (2) · jrockit (1)	—
5	cisco	13	3	·	·		network admission control manager and server system software (3) · secure access control server (3) · ios transmission control protocol (3)	—
6	sun	12	1	·	·		solaris (5) · sunos (3) · java system access manager (1)	—
7	broadcom	10	6	·	·	×3.3PoC 1	brightstor enterprise backup (4) · brightstor arcserve backup (4) · widcomm bluetooth (3)	—
8	joomla	9	·	·	·	PoC 3	joomla (7) · rs gallery2 (1) · be it easypartner component (1)	—
9	adobe	8	1	·	·	×4.0PoC 3	acrobat reader (7) · acrobat (4) · acrobat 3d (3)	—
10	gentoo foundation inc.	8	4	·	·		gentoo linux (8)	—
11	hp	8	1	·	·	PoC 1	hp-ux (2) · openview network node manager (2) · http server (1)	—
12	the address book	8	·	·	·	NEWPoC 3	the address book (8)	—
13	wordpress	8	·	·	7	×4.0Nuclei 7PoC 2	wordpress (8)	—
14	drupal	7	·	·	·		drupal (3) · project (3) · project issue tracking module (3)	—
15	phpmyadmin	7	1	·	·	×3.5PoC 2	phpmyadmin (7)	—
16	endonesia	6	·	·	·	NEWPoC 5	endonesia (6)	—
17	ibm	6	1	·	·		aix (4) · os 400 (2)	—
18	linux	6	1	·	·		linux kernel (6)	—
19	сообщество свободного программного обеспечения	6	·	·	·	PoC 1	debian gnu/linux (6)	—
20	aztek forum	5	·	·	·	NEWPoC 1	aztek forum (5)	—
21	argosoft	4	1	·	·		ftp server (4)	—
22	bitweaver	4	·	·	·	PoC 2	bitweaver (4)	—
23	cmsmadesimple	4	·	·	·		cms made simple (4)	—
24	easebay resources	4	·	·	·	NEW	login manager (2) · paypal subscription manager (2)	—
25	f5	4	·	·	·	NEW	firepass (3) · firepass 4100 (1)	—
26	hitachi	4	·	·	·		hirdb datareplicator (1) · cosminexus application server version 5 (1) · cosminexus developer light version 6 (1)	—
27	igeneric	4	·	·	·	NEWPoC 3	ig shop (3) · ig calendar (1)	—
28	webroot software	4	·	·	·		spy sweeper (3) · spy sweeper enterprise (1)	—
29	212cafe	3	·	·	·	NEW	212cafeboard (2) · guestbook (1)	—
30	ca	3	2	·	·	PoC 1	protection suites (2) · host-based intrusion prevention system (1)	—
31	docman	3	·	·	·	NEW	docman (3)	—
32	ezboxx	3	·	·	·	NEW	ezboxx portal system (2) · portal system beta (1)	—
33	fersch	3	·	·	·	NEWPoC 2	formbankserver (3)	—
34	freebsd	3	·	·	·		freebsd (3)	—
35	getahead	3	·	·	·	NEW	direct web remoting (3)	—
36	maxdev	3	1	·	·	PoC 2	mdpro (2) · mdforum (1)	—
37	maxum development corporation	3	·	·	·	NEWPoC 1	rumpus ftp server (3)	—
38	mkportal	3	·	·	·	NEW	mkportal (3)	—
39	novell inc.	3	·	·	·		opensuse (2) · suse linux enterprise (1)	—
40	opera	3	2	·	·	PoC 1	opera browser (3)	—
41	phpbb group	3	3	·	·		phpbb (3)	—
42	php-update	3	·	·	·	NEWPoC 3	php-update (3)	—
43	plain black	3	·	·	·	NEW	webgui (3)	—
44	postnuke software foundation	3	1	·	·		postnuke (3)	—
45	xfree86 project	3	1	·	·		xfree86 (2) · xfree86 x server (1)	—
46	x.org	3	1	·	·		x.org (3)	—
47	alexphpteam	2	·	·	·	NEWPoC 2	alex guestbook (2)	—
48	asp edge	2	·	·	·	NEWPoC 1	asp edge (2)	—
49	canonical	2	1	·	·		ubuntu linux (2)	—
50	cgi-rescue	2	·	·	·		shopping basket professional (1) · webform (1)	—