Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216081 5.5 警告 Puppet - Puppet における他のノードのリソースを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2011-0528 2014-02-19 18:52 2011-01-27 Show GitHub Exploit DB Packet Storm
216082 9.3 危険 クアルコム - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 CONFIG_STRICT_MEMORY_RWX の実装におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4737 2014-02-19 18:51 2013-09-5 Show GitHub Exploit DB Packet Storm
216083 5 警告 The PHP Group - PHP の ext/gd/gd.c における重要な情報を取得される脆弱性 CWE-189
数値処理の問題 		CVE-2014-2020 2014-02-19 18:36 2014-02-18 Show GitHub Exploit DB Packet Storm
216084 6.4 警告 The PHP Group - PHP の ext/gd/gd.c の gdImageCrop 関数における整数符号エラーの脆弱性 CWE-189
数値処理の問題 		CVE-2013-7328 2014-02-19 18:33 2013-12-28 Show GitHub Exploit DB Packet Storm
216085 5 警告 The PHP Group - PHP の libxml RSHUTDOWN 機能における open_basedir 保護メカニズムを回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-1171 2014-02-19 18:31 2012-03-25 Show GitHub Exploit DB Packet Storm
216086 2.1 注意 ヒューレット・パッカード - HP Linux Imaging and Printing におけるログファイルを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6108 2014-02-19 18:24 2012-11-27 Show GitHub Exploit DB Packet Storm
216087 7.5 危険 netfilter.org - iptables の extensions/libxt_tcp.c におけるファイアウォールの制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2663 2014-02-19 18:23 2012-03-30 Show GitHub Exploit DB Packet Storm
216088 5.7 警告 レッドハット - Red Hat Enterprise Linux の kexec-tools パッケージで配布される kexec-tools 用 Red Hat mkdumprd スクリプトにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-3590 2014-02-19 17:52 2011-08-10 Show GitHub Exploit DB Packet Storm
216089 5.7 警告 レッドハット - Red Hat Enterprise Linux の kexec-tools パッケージで配布される kexec-tools 用 Red Hat mkdumprd スクリプトにおける重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2011-3589 2014-02-19 17:51 2011-08-10 Show GitHub Exploit DB Packet Storm
216090 5.7 警告 レッドハット - Red Hat Enterprise Linux の kexec-tools パッケージで配布される kexec-tools 用 Red Hat mkdumprd スクリプトにおける kdump サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2011-3588 2014-02-19 17:50 2011-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298741 - phpraider phpraider Multiple SQL injection vulnerabilities in index.php in phpRaider 1.0.0 rc8 allow remote attackers to execute arbitrary SQL commands via the (1) id or (2) type parameter. NVD-CWE-Other
CVE-2007-3415 2017-07-29 10:32 2007-06-27 Show GitHub Exploit DB Packet Storm
298742 - web-app.org
web_app.net 		webapp Multiple cross-site request forgery (CSRF) vulnerabilities in the administration of (1) polls, (2) profiles, (3) IP bans, and (4) forums in (a) web-app.org WebAPP 0.8 through 0.9.9.6; and (b) web-app… CWE-352
 Origin Validation Error 		CVE-2007-3416 2017-07-29 10:32 2007-06-27 Show GitHub Exploit DB Packet Storm
298743 - trend_micro officescan Stack-based buffer overflow in CGIOCommon.dll before 8.0.0.1042 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to execute arbitrary code via long crafted requests, as demonst… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-3454 2017-07-29 10:32 2007-06-27 Show GitHub Exploit DB Packet Storm
298744 - trend_micro officescan cgiChkMasterPwd.exe before 8.0.0.142 in Trend Micro OfficeScan Corporate Edition 8.0 allows remote attackers to bypass the password requirement and gain access to the Management Console via an empty … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-3455 2017-07-29 10:32 2007-06-27 Show GitHub Exploit DB Packet Storm
298745 - adobe flash_player Adobe Flash Player 8.0.34.0 and earlier insufficiently validates HTTP Referer headers, which might allow remote attackers to conduct a CSRF attack via a crafted SWF file. CWE-352
 Origin Validation Error 		CVE-2007-3457 2017-07-29 10:32 2007-07-12 Show GitHub Exploit DB Packet Storm
298746 - rim blackberry_enterprise_server Research in Motion BlackBerry Enterprise Server 4.0 through 4.1 has a default configuration that permits installation of arbitrary third-party applications on BlackBerry devices, which might facilita… NVD-CWE-Other
CVE-2007-3483 2017-07-29 10:32 2007-06-29 Show GitHub Exploit DB Packet Storm
298747 - htmlpurifier htmlpurifier Cross-site scripting (XSS) vulnerability in smoketests/configForm.php in HTML Purifier before 2.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "… NVD-CWE-Other
CVE-2007-3498 2017-07-29 10:32 2007-06-30 Show GitHub Exploit DB Packet Storm
298748 - directadmin directadmin Cross-site scripting (XSS) vulnerability in CMD_USER_STATS in DirectAdmin 1.30.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the domain parameter, a different vecto… NVD-CWE-Other
CVE-2007-3501 2017-07-29 10:32 2007-06-30 Show GitHub Exploit DB Packet Storm
298749 - kaspersky_lab kaspersky_anti-spam Unspecified vulnerability in the web-based product configuration system in Kaspersky Anti-Spam before 3.0 MP1 allows remote attackers to obtain access to certain directories. NVD-CWE-Other
CVE-2007-3502 2017-07-29 10:32 2007-06-30 Show GitHub Exploit DB Packet Storm
298750 - symantec veritas_backup_exec Heap-based buffer overflow in the RPC subsystem in Symantec Backup Exec for Windows Servers 10.0, 10d, and 11d allows remote attackers to cause a denial of service (process exit) and possibly execute… NVD-CWE-Other
CVE-2007-3509 2017-07-29 10:32 2007-07-12 Show GitHub Exploit DB Packet Storm