Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210211	5.4	警告	amberfog	-	Android 用 VK Amberfog アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5920	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210212	5.4	警告	surdoc	-	Android 用 SurDoc - 100GB+ FREE storage アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5919	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210213	5.4	警告	secretcircle	-	Android 用 Secret Circle - talk freely アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5918	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210214	5.4	警告	grassapper	-	Android 用 Slideshow 365 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5917	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210215	5.4	警告	oi	-	Android 用 Minha Oi アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5916	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210216	5.4	警告	tigo	-	Android 用 Tigo Copa Mundial FIFA 2014 アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5915	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210217	5.4	警告	finansbank	-	Android 用 Finansbank Cep Subesi アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5914	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210218	5.4	警告	game-lion	-	Android 用 Allies in War アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5913	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210219	5.4	警告	IntSig Information	-	Android 用 InNote アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5912	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

210220	5.4	警告	jellytap	-	Android 用 Free App Icons & Icon Packs アプリケーションにおけるサーバになりすまされる脆弱性	CWE-310 暗号の問題	CVE-2014-5911	2014-12-17 09:57	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 18, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293431	-	hotscripts	hot_or_not_clone	Hot or Not Clone has insufficient access control for producing and reading database backups, which allows remote attackers to obtain the administrator username and password via a direct request to co…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-6603	2017-09-29 10:30	2008-01-1	Show	GitHub Exploit DB Packet Storm

293432	-	xcms	xcms	Multiple directory traversal vulnerabilities in index.php in XCMS 1.82 and earlier allow remote attackers to read arbitrary files via a .. (dot dot) in (1) the s parameter to the admin page or (2) th…	CWE-22 Path Traversal	CVE-2007-6604	2017-09-29 10:30	2008-01-1	Show	GitHub Exploit DB Packet Storm

293433	-	skyfex	skyfex_client	Buffer overflow in a certain ActiveX control in SkyFexClient.ocx 1.0.2.77 in SkyFex Client 1.0 allows remote attackers to execute arbitrary code via long strings in the first four arguments to the St…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-6605	2017-09-29 10:30	2008-01-1	Show	GitHub Exploit DB Packet Storm

293434	-	joovili	joovili	Directory traversal vulnerability in include/images.inc.php in Joovili 2.x allows remote attackers to read arbitrary files via a .. (dot dot) in the picture parameter.	CWE-22 Path Traversal	CVE-2007-6620	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293435	-	joovili	joovili	Directory traversal vulnerability in joovili.images.php in Joovili 3.0.0 through 3.0.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the picture parameter.	CWE-22 Path Traversal	CVE-2007-6621	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293436	-	zeuscms	zeuscms	SQL injection vulnerability in security.php in ZeusCMS 0.3 and earlier allows remote attackers to execute arbitrary SQL commands via the Referer HTTP header.	CWE-89 SQL Injection	CVE-2007-6622	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293437	-	zeuscms	zeuscms	Absolute path traversal vulnerability in ZeusCMS 0.3 and earlier might allow remote attackers to list arbitrary directories via a full pathname in the dir parameter.	CWE-22 Path Traversal	CVE-2007-6623	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293438	-	pnphpbb	pnphpbb	Directory traversal vulnerability in printview.php in PNphpBB2 1.2i and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the phpEx parameter.	CWE-22 Path Traversal	CVE-2007-6624	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293439	-	xml2owl	xml2owl	showCode.php in xml2owl 0.1.1 allows remote attackers to execute arbitrary commands via shell metacharacters in the path parameter.	CWE-94 Code Injection	CVE-2007-6632	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm

293440	-	adobe	flash_player	Multiple cross-site scripting (XSS) vulnerabilities in Adobe Flash Player allow remote attackers to inject arbitrary web script or HTML via a crafted SWF file, related to "pre-generated SWF files" an…	CWE-79 Cross-site Scripting	CVE-2007-6637	2017-09-29 10:30	2008-01-4	Show	GitHub Exploit DB Packet Storm