Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
215251 5 警告 ownCloud - ownCloud の設定のローダにおける CSRF トークンおよびその他の重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-2086 2014-03-19 13:57 2013-05-12 Show GitHub Exploit DB Packet Storm
215252 6.5 警告 ownCloud - ownCloud における任意の API コマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2048 2014-03-19 13:56 2013-04-27 Show GitHub Exploit DB Packet Storm
215253 2.1 注意 ownCloud - ownCloud のログインページにおけるパスワードを推測される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2047 2014-03-19 13:55 2013-04-7 Show GitHub Exploit DB Packet Storm
215254 5.8 警告 ownCloud - ownCloud のログインページにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2044 2014-03-19 13:54 2013-04-23 Show GitHub Exploit DB Packet Storm
215255 4 警告 ownCloud - ownCloud の apps/calendar/ajax/events.php における任意のカレンダーをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-2043 2014-03-19 13:53 2013-04-22 Show GitHub Exploit DB Packet Storm
215256 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2042 2014-03-19 13:53 2013-04-30 Show GitHub Exploit DB Packet Storm
215257 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2041 2014-03-19 13:49 2013-04-22 Show GitHub Exploit DB Packet Storm
215258 3.5 注意 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2040 2014-03-19 13:48 2013-04-22 Show GitHub Exploit DB Packet Storm
215259 4 警告 ownCloud - ownCloud Server の apps/files_trashbin/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-2085 2014-03-19 13:47 2013-05-6 Show GitHub Exploit DB Packet Storm
215260 4 警告 ownCloud - ownCloud の lib/files/view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-2039 2014-03-19 13:46 2013-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
289121 - livecms livecms SQL injection vulnerability in categoria.php in LiveCMS 3.4 and earlier allows remote attackers to execute arbitrary SQL commands via the cid parameter. NVD-CWE-Other
CVE-2007-3293 2017-10-11 10:32 2007-06-21 Show GitHub Exploit DB Packet Storm
289122 - php php Multiple buffer overflows in libtidy, as used in the Tidy extension for PHP 5.2.3 and possibly other products, allow context-dependent attackers to execute arbitrary code via (1) a long second argume… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-3294 2017-10-11 10:32 2007-06-21 Show GitHub Exploit DB Packet Storm
289123 - cybozu_labs musoo Multiple PHP remote file inclusion vulnerabilities in Musoo 0.21 allow remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[ini_array][EXTLIB_PATH] parameter to (1) msDb.php, (2) m… NVD-CWE-Other
CVE-2007-3297 2017-10-11 10:32 2007-06-21 Show GitHub Exploit DB Packet Storm
289124 - ultrize minibill PHP remote file inclusion vulnerability in crontab/run_billing.php in MiniBill 1.2.5 allows remote attackers to execute arbitrary PHP code via a URL in the config[include_dir] parameter, a different … NVD-CWE-Other
CVE-2007-3306 2017-10-11 10:32 2007-06-21 Show GitHub Exploit DB Packet Storm
289125 - solar_empire solar_empire SQL injection vulnerability in game_listing.php in Solar Empire 2.9.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the User-Agent HTTP header. NVD-CWE-Other
CVE-2007-3307 2017-10-11 10:32 2007-06-21 Show GitHub Exploit DB Packet Storm
289126 - efstratios_geroulis jasmine_cms Directory traversal vulnerability in admin/plugin_manager.php in Jasmine CMS 1.0 allows remote authenticated administrators to include and execute arbitrary local files a .. (dot dot) in the u parame… NVD-CWE-Other
CVE-2007-3312 2017-10-11 10:32 2007-06-22 Show GitHub Exploit DB Packet Storm
289127 - efstratios_geroulis jasmine_cms Multiple SQL injection vulnerabilities in Jasmine CMS 1.0 allow remote attackers to execute arbitrary SQL commands via (1) the login_username parameter to login.php or (2) the item parameter to news.… NVD-CWE-Other
CVE-2007-3313 2017-10-11 10:32 2007-06-22 Show GitHub Exploit DB Packet Storm
289128 - lms lan_management_system PHP remote file inclusion vulnerability in lib/language.php in LAN Management System (LMS) 1.9.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _LIB_DIR parameter,… NVD-CWE-Other
CVE-2007-3325 2017-10-11 10:32 2007-06-22 Show GitHub Exploit DB Packet Storm
289129 - lms lan_management_system LAN Management System (LMS) 1.9.6 does not appear to be a valid version. Vendor website shows up to version 1.8.10. This CVE is most likely referring to the version of 1.6.9, which is listed as the… NVD-CWE-Other
CVE-2007-3325 2017-10-11 10:32 2007-06-22 Show GitHub Exploit DB Packet Storm
289130 - iptel serweb PHP remote file inclusion vulnerability in html/load_lang.php in SerWeb 0.9.6 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _SERWEB[serwebdir] parameter. NVD-CWE-Other
CVE-2007-3358 2017-10-11 10:32 2007-06-23 Show GitHub Exploit DB Packet Storm