Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216111 5 警告 SAP - SAP NetWeaver の Message Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2014-1963 2014-02-19 13:50 2014-01-25 Show GitHub Exploit DB Packet Storm
216112 5 警告 SAP - SAP CRM の Gwsync における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1962 2014-02-19 13:50 2014-01-25 Show GitHub Exploit DB Packet Storm
216113 5 警告 SAP - SAP NetWeaver の Portal WebDynPro における重要なパス情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2014-1961 2014-02-19 13:50 2014-01-25 Show GitHub Exploit DB Packet Storm
216114 5 警告 SAP - SAP NetWeaver の Solution Manager における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-1960 2014-02-19 13:49 2014-01-25 Show GitHub Exploit DB Packet Storm
216115 5.8 警告 Ryan O'Hara - Piranha の Piranha Configuration Tool における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6492 2014-02-19 13:36 2013-12-13 Show GitHub Exploit DB Packet Storm
216116 7.2 危険 Linux Containers - LXC の lxc-sshd テンプレートにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6441 2014-02-19 12:18 2013-12-18 Show GitHub Exploit DB Packet Storm
216117 4.3 警告 Django Software Foundation - Django の utils/http.py 内の is_safe_url 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6044 2014-02-18 18:16 2013-08-13 Show GitHub Exploit DB Packet Storm
216118 5 警告 IBM
オラクル		 - Oracle Java SE および Java SE Embedded における JAXP に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5851 2014-02-18 18:14 2013-10-15 Show GitHub Exploit DB Packet Storm
216119 4 警告 Linux - Linux Kernel の virt/kvm/kvm_main.c の __kvm_set_memory_region 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-4592 2014-02-18 18:13 2013-11-18 Show GitHub Exploit DB Packet Storm
216120 4.3 警告 レッドハット - Red Hat JBoss Fuse および JBoss A-MQ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4372 2014-02-18 18:03 2013-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
290141 - vm_watermark vm_watermark PHP remote file inclusion vulnerability in watermark.php in the vm (aka Jean-Francois Laflamme) watermark 0.4.1 mod for Gallery allows remote attackers to execute arbitrary PHP code via a URL in the … CWE-94
Code Injection 		CVE-2007-2575 2017-10-11 10:32 2007-05-10 Show GitHub Exploit DB Packet Storm
290142 - east_wind_software advdaudio.ocx Buffer overflow in the East Wind Software advdaudio.ocx 1.5.1.1 ActiveX control allows user-assisted remote attackers to execute arbitrary code via a long OpenDVD property value. NOTE: this issue mi… NVD-CWE-Other
CVE-2007-2576 2017-10-11 10:32 2007-05-10 Show GitHub Exploit DB Packet Storm
290143 - squirrelmail squirrelmail Cross-site request forgery (CSRF) vulnerability in compose.php in SquirrelMail 1.4.0 through 1.4.9a allows remote attackers to send e-mails from arbitrary users via certain data in the SRC attribute … CWE-352
 Origin Validation Error 		CVE-2007-2589 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290144 - phpmyportal phpmyportal PHP remote file inclusion vulnerability in inc/articles.inc.php in phpMyPortal 3.0.0 RC3 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[CHEMINMODULES] parameter. NVD-CWE-Other
CVE-2007-2594 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290145 - agner_fog aforum PHP remote file inclusion vulnerability in common/func.php in aForum 1.32 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the CommonAbsDir parameter. NVD-CWE-Other
CVE-2007-2596 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290146 - telltargetcms telltarget_cms Multiple PHP remote file inclusion vulnerabilities in telltarget CMS 1.3.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) ordnertiefe parameter to site_conf.php; or the (2)… NVD-CWE-Other
CVE-2007-2597 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290147 - wavelink_media tutorialcms Multiple SQL injection vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) catFile parameter to (a) browseCa… NVD-CWE-Other
CVE-2007-2599 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290148 - wavelink_media tutorialcms Multiple cross-site scripting (XSS) vulnerabilities in TutorialCMS (aka Photoshop Tutorials) 1.00 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) catFile paramet… NVD-CWE-Other
CVE-2007-2600 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290149 - divx_city gdivx_zenith_player Buffer overflow in a certain ActiveX control in the GDivX Zenith Player AviFixer class in fix.dll 1.0.0.1 allows remote attackers to execute arbitrary code via a long SetInputFile property value. NVD-CWE-Other
CVE-2007-2601 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm
290150 - lavague lavague PHP remote file inclusion vulnerability in views/print/printbar.php in LaVague 0.3 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the views_path parameter. NVD-CWE-Other
CVE-2007-2607 2017-10-11 10:32 2007-05-11 Show GitHub Exploit DB Packet Storm