Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216611	4.3	警告	Schneider Electric	-	Schneider Electric ClearSCADA および SCADA Expert ClearSCADA の DNP3 ドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-6142	2014-01-20 11:12	2013-01-14	Show	GitHub Exploit DB Packet Storm

216612	7.5	危険	cspmum	-	CSP MySQL User Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-1466	2014-01-20 10:28	2013-01-8	Show	GitHub Exploit DB Packet Storm

216613	7.5	危険	Open Web Analytics	-	Open Web Analytics のパスワードリセットのページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2014-1206	2014-01-20 10:16	2014-01-9	Show	GitHub Exploit DB Packet Storm

216614	10	危険	LOREX Technology	-	複数の Lorex Edge 製品のファームウェアの INetViewX ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-1201	2014-01-20 10:16	2014-01-9	Show	GitHub Exploit DB Packet Storm

216615	7.5	危険	WellinTech	-	複数の WellinTech 製品の ActiveX コントロールにおける任意の DLL コードをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2013-2827	2014-01-20 10:15	2014-01-14	Show	GitHub Exploit DB Packet Storm

216616	6.4	警告	WellinTech	-	複数の WellinTech 製品におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2826	2014-01-20 10:14	2014-01-14	Show	GitHub Exploit DB Packet Storm

216617	3.5	注意	VASCO	-	VASCO IDENTIKEY Authentication Server に認証不備の脆弱性	CWE-287 CWE-Other	CVE-2013-7292	2014-01-17 18:20	2014-01-9	Show	GitHub Exploit DB Packet Storm

216618	7.2	危険	サン・マイクロシステムズオラクル	-	Sun Solaris の dbm_open() および dbminit() 関数におけるバッファオーバーフローの脆弱性	-	CVE-2003-1067	2014-01-17 18:10	2003-06-19	Show	GitHub Exploit DB Packet Storm

216619	9.3	危険	オラクル	-	Oracle Java SE における Hotspot に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0408	2014-01-17 17:17	2014-01-14	Show	GitHub Exploit DB Packet Storm

216620	9.3	危険	オラクル	-	Oracle Java SE における Install に関する脆弱性	CWE-noinfo 情報不足	CVE-2014-0385	2014-01-17 17:17	2014-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299851	-	ibm	websphere_application_server	Multiple cross-site request forgery (CSRF) vulnerabilities in uddigui/navigateTree.do in the UDDI user console in IBM WebSphere Application Server (WAS) before 6.1.0 Fix Pack 13 (6.1.0.13) allow remo…	CWE-352 Origin Validation Error	CVE-2007-5799	2017-07-29 10:33	2007-11-3	Show	GitHub Exploit DB Packet Storm

299852	-	nagios	nagios	Multiple cross-site scripting (XSS) vulnerabilities in CGI programs in Nagios before 2.12 might allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, a different issu…	CWE-79 Cross-site Scripting	CVE-2007-5803	2017-07-29 10:33	2008-05-14	Show	GitHub Exploit DB Packet Storm

299853	-	ibm	aix	cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create or overwrite an arbitrary file, and enable w…	NVD-CWE-Other	CVE-2007-5804	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299854	-	ibm	aix	cfgcon in IBM AIX 5.2 and 5.3 does not properly validate the argument to the "-p" option to swcons, which allows local users in the system group to create an arbitrary file, and enable world writabil…	CWE-59 Link Following	CVE-2007-5805	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299855	-	hitachi	groupmax_collaboration_portal groupmax_collaboration_web_client ucosminexus_collaboration_portal	Unspecified vulnerability in the Groupmax Collaboration - Schedule component in Hitachi Groupmax Collaboration Portal 07-30 through 07-30-/F and 07-32 through 07-32-/C, uCosminexus Collaboration Port…	NVD-CWE-noinfo	CVE-2007-5808	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299856	-	ibm	tivoli_continuous_data_protection_for_files	IBM Tivoli Continuous Data Protection for Files (CDP) 3.1.0 uses weak permissions (unrestricted write) for the Central Admin Global download directory, which allows local users to place arbitrary fil…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5819	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299857	-	iscsitarget	iscsitarget	iSCSI Enterprise Target (iscsitarget) 0.4.15 uses weak permissions for /etc/ietd.conf, which allows local users to obtain passwords.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5827	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299858	-	symantec	norton_antivirus norton_internet_security	The Disk Mount scanner in Symantec AntiVirus for Macintosh 9.x and 10.x, Norton AntiVirus for Macintosh 10.0 and 10.1, and Norton Internet Security for Macintosh 3.x, uses a directory with weak permi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5829	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299859	-	afcommerce	afcommerce	SQL injection vulnerability in Amazing Flash AFCommerce allows remote attackers to execute arbitrary SQL commands via the firstname parameter to an unspecified component, a different issue than CVE-2…	CWE-89 SQL Injection	CVE-2007-5836	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm

299860	-	yarssr	yarssr	GUI.pm in yarssr 0.2.2, when Gnome default URL handling is disabled, allows remote attackers to execute arbitrary commands via shell metacharacters in a link element in a feed.	CWE-94 Code Injection	CVE-2007-5837	2017-07-29 10:33	2007-11-6	Show	GitHub Exploit DB Packet Storm