Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193891	6.1	警告 Network	IBM	-	IBM Security Access Manager for Web におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-3018	2017-02-13 11:53	2016-12-6	Show	GitHub Exploit DB Packet Storm

193892	6.1	警告 Network	IBM	-	IBM iNotes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-2939	2017-02-13 11:53	2016-11-2	Show	GitHub Exploit DB Packet Storm

193893	6.1	警告 Network	IBM	-	IBM iNotes におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-2938	2017-02-13 11:53	2016-11-2	Show	GitHub Exploit DB Packet Storm

193894	3.7	低 Network	IBM	-	IBM BigFix Platform における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0297	2017-02-13 11:53	2016-11-7	Show	GitHub Exploit DB Packet Storm

193895	3.3	低 Local	IBM	-	IBM BigFix Platform におけるログファイルに重要な情報を格納される脆弱性	CWE-532 ログファイルからの情報漏えい	CVE-2016-0296	2017-02-13 11:53	2016-11-7	Show	GitHub Exploit DB Packet Storm

193896	5.4	警告 Network	IBM	-	IBM Campaign におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-0265	2017-02-13 11:52	2016-10-18	Show	GitHub Exploit DB Packet Storm

193897	6.1	警告 Network	Atlassian	-	Atlassian JIRA の includes/decorators/global-translations.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6285	2017-02-10 17:34	2016-09-27	Show	GitHub Exploit DB Packet Storm

193898	5.5	警告 Local	libdwarf project	-	libdwarf の get_abbrev_array_info 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-787 境界外書き込み	CVE-2016-2050	2017-02-10 16:39	2016-01-19	Show	GitHub Exploit DB Packet Storm

193899	9.8	緊急 Network	シスコシステムズ	-	Cisco TelePresence MCU ソフトウェアのカーネルのプロプライエタリデバイスドライバにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2017-3792	2017-02-10 15:18	2017-01-25	Show	GitHub Exploit DB Packet Storm

193900	10	緊急 Network	シスコシステムズ	-	Cisco Prime Home の Web ベースの GUI における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2017-3791	2017-02-10 15:18	2017-02-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293771	-	2532gigs	2532gigs	Directory traversal vulnerability in activateuser.php in 2532\|Gigs 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.	CWE-22 Path Traversal	CVE-2007-4585	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293772	-	php	php	Multiple buffer overflows in php_iisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as dem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4586	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293773	-	turnkey_web_tools	sunshop_shopping_cart	SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, …	CWE-89 SQL Injection	CVE-2007-4597	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293774	-	implied_by_design	micro_cms	SQL injection vulnerability in cms/revert-content.php in Implied by Design Micro CMS (Micro-CMS) 3.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2007-4602	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293775	-	altercoder	acg_news	Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid paramet…	CWE-89 SQL Injection	CVE-2007-4603	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293776	-	dinkumsoft.com	dl_paycart	SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.	CWE-89 SQL Injection	CVE-2007-4604	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293777	-	vwar	virtual_war	PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a d…	CWE-94 Code Injection	CVE-2007-4605	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293778	-	phpnuke-clan	phpnuke-clan	PHP remote file inclusion vulnerability in convert/mvcw_conver.php in the Virtual War (VWar) module for PHPNuke-Clan (PNC) 4.2.0 and earlier allows remote attackers to execute arbitrary PHP code via …	CWE-94 Code Injection	CVE-2007-4606	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293779	-	flac nullsoft	libflac winamp	Multiple integer overflows in Free Lossless Audio Codec (FLAC) libFLAC before 1.2.1, as used in Winamp before 5.5 and other products, allow user-assisted remote attackers to execute arbitrary code vi…	CWE-189 Numeric Errors	CVE-2007-4619	2017-09-29 10:29	2007-10-13	Show	GitHub Exploit DB Packet Storm

293780	-	ibm	aix	Stack-based buffer overflow in the sendrmt function in bellmail in IBM AIX 5.2 and 5.3 allows local users to execute arbitrary code via a long parameter to the m command.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4623	2017-09-29 10:29	2007-11-6	Show	GitHub Exploit DB Packet Storm