Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210761	5	警告	シスコシステムズ	-	Cisco Adaptive Security Appliance ソフトウェアの SSL VPN の実装におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2014-3407	2014-12-1 15:43	2014-11-26	Show	GitHub Exploit DB Packet Storm

210762	5	警告	Paid Memberships Pro	-	WordPress 用 Paid Memberships Pro プラグインの services/getfile.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8801	2014-12-1 15:21	2014-11-14	Show	GitHub Exploit DB Packet Storm

210763	5	警告	DukaPress	-	WordPress 用 DukaPress プラグインの php/dp-functions.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2014-8799	2014-12-1 15:16	2014-11-12	Show	GitHub Exploit DB Packet Storm

210764	3.5	注意	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9098	2014-12-1 15:08	2014-07-15	Show	GitHub Exploit DB Packet Storm

210765	7.5	危険	apptha.com	-	WordPress 用 Apptha WordPress Video Gallery プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9097	2014-12-1 14:39	2014-07-23	Show	GitHub Exploit DB Packet Storm

210766	7.5	危険	Pligg	-	Pligg CMS の recover.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9096	2014-12-1 14:27	2014-07-31	Show	GitHub Exploit DB Packet Storm

210767	7.5	危険	ラリタン・ジャパン株式会社	-	Raritan Power IQ における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-9095	2014-12-1 14:17	2014-07-16	Show	GitHub Exploit DB Packet Storm

210768	7.5	危険	The Document Foundation	-	LibreOffice におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2014-9093	2014-12-1 13:52	2014-11-19	Show	GitHub Exploit DB Packet Storm

210769	4.3	警告	Digital Zoom Studio	-	WordPress 用 Digital Zoom Studio Video Gallery プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9094	2014-12-1 13:32	2014-05-8	Show	GitHub Exploit DB Packet Storm

210770	7.2	危険	Wibu-Systems AG	-	Wibu-Systems CodeMeter Runtime における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-8419	2014-12-1 11:56	2014-11-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293911	-	acti	network_video_recorder	Multiple absolute path traversal vulnerabilities in the nvUtility.Utility.1 ActiveX control in nvUtility.dll 1.0.14.0 in ACTi Network Video Recorder (NVR) SP2 2.0 allow remote attackers to (1) create…	CWE-22 Path Traversal	CVE-2007-4583	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293912	-	bitchx	bitchx	Stack-based buffer overflow in BitchX 1.1 Final allows remote IRC servers to execute arbitrary code via a long string in a MODE command, related to the p_mode variable.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4584	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293913	-	2532gigs	2532gigs	Directory traversal vulnerability in activateuser.php in 2532\|Gigs 1.2.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter.	CWE-22 Path Traversal	CVE-2007-4585	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293914	-	php	php	Multiple buffer overflows in php_iisfunc.dll in the iisfunc extension for PHP 5.2.0 and earlier allow context-dependent attackers to execute arbitrary code, probably during Unicode conversion, as dem…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4586	2017-09-29 10:29	2007-08-29	Show	GitHub Exploit DB Packet Storm

293915	-	turnkey_web_tools	sunshop_shopping_cart	SQL injection vulnerability in index.php in TurnkeyWebTools SunShop Shopping Cart 4.0 RC 6 allows remote attackers to execute arbitrary SQL commands via the s[cid] parameter in a search_list action, …	CWE-89 SQL Injection	CVE-2007-4597	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293916	-	implied_by_design	micro_cms	SQL injection vulnerability in cms/revert-content.php in Implied by Design Micro CMS (Micro-CMS) 3.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.	CWE-89 SQL Injection	CVE-2007-4602	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293917	-	altercoder	acg_news	Multiple SQL injection vulnerabilities in index.php in ACG News 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the aid parameter in a showarticle action or (2) the catid paramet…	CWE-89 SQL Injection	CVE-2007-4603	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293918	-	dinkumsoft.com	dl_paycart	SQL injection vulnerability in viewitem.php in DL PayCart 1.01 allows remote attackers to execute arbitrary SQL commands via the ItemID parameter.	CWE-89 SQL Injection	CVE-2007-4604	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293919	-	vwar	virtual_war	PHP remote file inclusion vulnerability in convert/mvcw.php in Virtual War (VWar) 1.5.0 R15 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the vwar_root parameter, a d…	CWE-94 Code Injection	CVE-2007-4605	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm

293920	-	phpnuke-clan	phpnuke-clan	PHP remote file inclusion vulnerability in convert/mvcw_conver.php in the Virtual War (VWar) module for PHPNuke-Clan (PNC) 4.2.0 and earlier allows remote attackers to execute arbitrary PHP code via …	CWE-94 Code Injection	CVE-2007-4606	2017-09-29 10:29	2007-08-31	Show	GitHub Exploit DB Packet Storm