Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215831	7.5	危険	Google	-	Android の java/android/webkit/BrowserFrame.java における任意の Java コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-1939	2014-03-5 15:59	2014-02-10	Show	GitHub Exploit DB Packet Storm

215832	9	危険	AVTECH	-	AVTECH AVN801 DVR のファームウェアの cgi-bin/user/Config.cgi におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4981	2014-03-5 14:46	2013-08-28	Show	GitHub Exploit DB Packet Storm

215833	9	危険	AVTECH	-	AVTECH AVN801 DVR のファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4980	2014-03-5 14:46	2013-08-28	Show	GitHub Exploit DB Packet Storm

215834	10	危険	Hangzhou Hikvision Digital Technology	-	Hikvision DS-2CD7153-E IP カメラのファームウェアの RTSP Packet Handler におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4977	2014-03-5 14:31	2013-08-6	Show	GitHub Exploit DB Packet Storm

215835	6.8	警告	Inmatrix	-	INMATRIX Zoom Player におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3260	2014-03-5 14:12	2013-06-7	Show	GitHub Exploit DB Packet Storm

215836	6.8	警告	Inmatrix	-	INMATRIX Zoom Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3259	2014-03-5 14:12	2013-06-7	Show	GitHub Exploit DB Packet Storm

215837	7.5	危険	アドビシステムズ Apache Software Foundation	-	Windows Phone 7 および 8 上で稼働する Apache Cordova および Adobe PhoneGap におけるデバイスリソース制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1884	2014-03-4 19:45	2014-01-24	Show	GitHub Exploit DB Packet Storm

215838	7.5	危険	アドビシステムズ	-	Android 上で稼働する Adobe PhoneGap におけるデバイスリソース制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1883	2014-03-4 19:41	2014-01-24	Show	GitHub Exploit DB Packet Storm

215839	7.5	危険	アドビシステムズ Apache Software Foundation	-	Apache Cordova および Adobe PhoneGap におけるイベントベースのブリッジのデバイスリソース制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1882	2014-03-4 19:38	2014-01-24	Show	GitHub Exploit DB Packet Storm

215840	7.5	危険	アドビシステムズ Apache Software Foundation	-	Apache Cordova および Adobe PhoneGap におけるイベントベースのブリッジのデバイスリソース制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2014-1881	2014-03-4 19:32	2014-01-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
289011	-	achievo	achievo	PHP remote file inclusion vulnerability in index.php in Achievo 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter.	NVD-CWE-Other	CVE-2007-2736	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289012	-	xoops	xoops_glossaire_module	SQL injection vulnerability in glossaire-p-f.php in the Glossaire 1.7 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the sid parameter in an ImprDef action.	NVD-CWE-Other	CVE-2007-2738	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289013	-	glossword	glossword	PHP remote file inclusion vulnerability in custom_vars.php in GlossWord 1.8.1 allows remote attackers to execute arbitrary PHP code via a URL in the sys[path_addon] parameter.	NVD-CWE-Other	CVE-2007-2743	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289014	-	faqengine	faqengine	SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action.	NVD-CWE-Other	CVE-2007-2749	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289015	-	simpnews	simpnews	SQL injection vulnerability in print.php in SimpNews 2.40.01 and earlier allows remote attackers to execute arbitrary SQL commands via the newsnr parameter.	NVD-CWE-Other	CVE-2007-2750	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289016	-	phpglossar	phpglossar	Multiple PHP remote file inclusion vulnerabilities in PHPGlossar 0.8 allow remote attackers to execute arbitrary PHP code via a URL in the format_menue parameter to (1) admin/inc/change_action.php or…	NVD-CWE-Other	CVE-2007-2751	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289017	-	runawaysoft	haber_portal	SQL injection vulnerability in devami.asp in RunawaySoft Haber portal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2007-2752	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289018	-	runawaysoft	haber_portal	RunawaySoft Haber portal 1.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for data/xice.…	NVD-CWE-Other	CVE-2007-2753	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289019	-	precisionid_barcode	precisionid_barcode	The PrecisionID Barcode 1.9 ActiveX control in PrecisionID_Barcode.dll, when Internet Explorer 6 is used, allows remote attackers to overwrite arbitrary files via a full pathname to the SaveToFile fu…	NVD-CWE-Other	CVE-2007-2755	2017-10-11 10:32	2007-05-18	Show	GitHub Exploit DB Packet Storm

289020	-	libgd	libgd	The gdPngReadData function in libgd 2.0.34 allows user-assisted attackers to cause a denial of service (CPU consumption) via a crafted PNG image with truncated data, which causes an infinite loop in …	NVD-CWE-Other	CVE-2007-2756	2017-10-11 10:32	2007-05-19	Show	GitHub Exploit DB Packet Storm