Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
216901	5.8	警告	サイボウズ	-	サイボウズガルーンのケータイ機能における認証回避の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6006	2014-01-7 16:11	2013-12-25	Show	GitHub Exploit DB Packet Storm

216902	6.4	警告	Bare Bones Software	-	複数の Bare Bones Software 製品で使用されるソフトウェアアップデートメカニズムにおけるアップデートの "tampering or corruption" を実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-3667	2014-01-7 15:45	2013-07-2	Show	GitHub Exploit DB Packet Storm

216903	4.3	警告	Ubiquiti Networks	-	Ubiquiti Networks UniFi の UniFi Controller の管理者インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3572	2014-01-7 14:50	2013-10-22	Show	GitHub Exploit DB Packet Storm

216904	10	危険	op5	-	op5 Monitor および op5 Appliance における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-0264	2014-01-7 14:33	2012-01-20	Show	GitHub Exploit DB Packet Storm

216905	4	警告	op5	-	op5 Monitor および op5 Appliance の monitor/index.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0263	2014-01-7 14:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

216906	10	危険	op5	-	op5 Monitor および op5 Appliance の system-op5config の op5config/welcome における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0262	2014-01-7 14:28	2012-01-20	Show	GitHub Exploit DB Packet Storm

216907	10	危険	op5	-	op5 Monitor および op5 Appliance の system-portal の license.php における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0261	2014-01-7 14:27	2012-01-20	Show	GitHub Exploit DB Packet Storm

216908	7.5	危険	Synology Inc.	-	Synology DiskStation Manager の FileBrowser コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-6987	2014-01-7 12:07	2013-12-19	Show	GitHub Exploit DB Packet Storm

216909	4.3	警告	Mislav Marohnic	-	Ruby 用 will_paginate gem におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6459	2014-01-7 11:39	2013-09-18	Show	GitHub Exploit DB Packet Storm

216910	4.3	警告	CloudBees	-	CloudBees Jenkins のデフォルトの markup formatter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5573	2014-01-7 11:20	2013-12-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299571	-	php	php	The session extension in PHP before 5.2.4 might allow local users to bypass open_basedir restrictions via a session file that is a symlink.	CWE-59 Link Following	CVE-2007-4652	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299572	-	cgi-rescue	shopping_basket_professional	Multiple directory traversal vulnerabilities in CGI RESCUE Shopping Basket Professional 7.51 and earlier allow remote attackers to list arbitrary directories, and possibly read arbitrary files, via d…	CWE-200 CWE-22 Information Exposure Path Traversal	CVE-2007-4655	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299573	-	cgi-rescue	shopping_basket_professional	Additional information can be found at: http://www.securityfocus.com/bid/25500/info	CWE-200 CWE-22 Information Exposure Path Traversal	CVE-2007-4655	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299574	-	php	php	The zend_alter_ini_entry function in PHP before 5.2.4 does not properly handle an interruption to the flow of execution triggered by a memory_limit violation, which has unknown impact and attack vect…	NVD-CWE-Other	CVE-2007-4659	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299575	-	php	php	Directory traversal vulnerability in PHP before 5.2.4 allows attackers to bypass open_basedir restrictions via unspecified vectors involving the glob function.	CWE-22 Path Traversal	CVE-2007-4663	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299576	-	firebirdsql	firebird	Unspecified vulnerability in the (1) attach database and (2) create database functionality in Firebird before 2.0.2, when a filename exceeds MAX_PATH_LEN, has unknown impact and attack vectors, aka C…	CWE-119 CWE-20 Incorrect Access of Indexable Resource ('Range Error') Improper Input Validation	CVE-2007-4664	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299577	-	firebirdsql	firebird	Unspecified vulnerability in the server in Firebird before 2.0.2 allows remote attackers to cause a denial of service (daemon crash) via an XNET session that makes multiple simultaneous requests to r…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4665	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299578	-	firebirdsql	firebird	Unspecified vulnerability in the server in Firebird before 2.0.2, when a Superserver/TCP/IP environment is configured, allows remote attackers to cause a denial of service (CPU and memory consumption…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4666	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299579	-	firebirdsql	firebird	Unspecified vulnerability in the Services API in Firebird before 2.0.2 allows remote attackers to cause a denial of service, aka CORE-1149.	NVD-CWE-Other	CVE-2007-4667	2017-07-29 10:33	2007-09-5	Show	GitHub Exploit DB Packet Storm

299580	-	apple	quicktime	Argument injection vulnerability in Apple QuickTime 7.2 for Windows XP SP2 and Vista allows remote attackers to execute arbitrary commands via a URL in the qtnext field in a crafted QTL file. NOTE: …	CWE-78 OS Command	CVE-2007-4673	2017-07-29 10:33	2007-10-5	Show	GitHub Exploit DB Packet Storm