Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219331	4.3	警告	Kennziffer.com	-	TYPO3 用 Faceted Search エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5307	2013-08-20 14:30	2013-08-5	Show	GitHub Exploit DB Packet Storm

219332	7.5	危険	Die Netzmacher	-	TYPO3 用 Browser - TYPO3 without PHP エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5306	2013-08-20 14:20	2013-08-5	Show	GitHub Exploit DB Packet Storm

219333	4.3	警告	Joachim Ruhs	-	TYPO3 用 Store Locator エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5305	2013-08-20 14:12	2013-08-5	Show	GitHub Exploit DB Packet Storm

219334	7.5	危険	Joachim Ruhs	-	TYPO3 用 Store Locator エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5304	2013-08-20 14:08	2013-08-5	Show	GitHub Exploit DB Packet Storm

219335	10	危険	Joachim Ruhs	-	TYPO3 用 Store Locator エクステンションにおける脆弱性	CWE-noinfo 情報不足	CVE-2013-5303	2013-08-20 13:54	2013-08-5	Show	GitHub Exploit DB Packet Storm

219336	7.5	危険	Kennziffer.com	-	TYPO3 用 Faceted Search エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5302	2013-08-20 13:46	2013-08-5	Show	GitHub Exploit DB Packet Storm

219337	7.8	危険	TrustPort	-	Trustport Webfilter の help.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-5301	2013-08-20 13:39	2013-07-30	Show	GitHub Exploit DB Packet Storm

219338	3.5	注意	サイボウズ	-	サイボウズメールワイズにおける情報漏えいの脆弱性	CWE-noinfo 情報不足	CVE-2013-4698	2013-08-20 11:36	2013-08-13	Show	GitHub Exploit DB Packet Storm

219339	4.3	警告	WordPress.org	-	WordPress の SWFUpload のデフォルト設定における同一生成元ポリシーを回避される脆弱性	CWE-16 CWE-79	CVE-2013-2205	2013-08-19 18:03	2013-06-21	Show	GitHub Exploit DB Packet Storm

219340	4.3	警告	Moxiecode Systems AB WordPress.org	-	WordPress の TinyMCE Media プラグインで使用される Moxiecode moxieplayer における Flash アプリケーションに任意のパラメータを渡される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2204	2013-08-19 18:02	2013-06-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 17, 2026, 4:13 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307531	-	phpffl	phpffl	Multiple PHP remote file inclusion vulnerabilities in phpFFL 1.24 allow remote attackers to execute arbitrary PHP code via a URL in the PHPFFL_FILE_ROOT parameter to (1) admin.php, (2) custom_pages.p…	CWE-94 Code Injection	CVE-2007-4935	2011-03-8 11:59	2007-09-19	Show	GitHub Exploit DB Packet Storm

307532	-	baofeng	storm	Multiple buffer overflows in a certain ActiveX control in sparser.dll in Baofeng Storm 2.8 and earlier allow remote attackers to execute arbitrary code via malformed input in an unknown set of argume…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4943	2011-03-8 11:59	2007-09-19	Show	GitHub Exploit DB Packet Storm

307533	-	redhat	certificate_server	Certificate Server 7.2 in Red Hat Certificate System (RHCS) does not properly handle new revocations that occur while a Certificate Revocation List (CRL) is being generated, which might prevent certa…	CWE-255 Credentials Management	CVE-2007-4994	2011-03-8 11:59	2007-11-7	Show	GitHub Exploit DB Packet Storm

307534	-	gnome	balsa	Stack-based buffer overflow in the ir_fetch_seq function in balsa before 2.3.20 might allow remote IMAP servers to execute arbitrary code via a long response to a FETCH command.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5007	2011-03-8 11:59	2007-12-13	Show	GitHub Exploit DB Packet Storm

307535	-	icewarp	merak_mail_server	Cross-site scripting (XSS) vulnerability in the Webmail interface for IceWarp Merak Mail Server before 9.0.0 allows remote attackers to inject arbitrary JavaScript via a javascript: URI in an attribu…	CWE-79 Cross-site Scripting	CVE-2007-5046	2011-03-8 11:59	2007-09-24	Show	GitHub Exploit DB Packet Storm

307536	-	ibm	aix	Buffer overflow in lpd in bos.rte.printers in AIX 5.2 and 5.3 allows local users with printq group privileges to gain root privileges.	NVD-CWE-Other	CVE-2007-4236	2011-03-8 11:58	2007-08-9	Show	GitHub Exploit DB Packet Storm

307537	-	ibm	aix	Buffer overflow in the atm subset in arp in devices.common.IBM.atm.rte in AIX 5.2 and 5.3 allows local users to gain root privileges.	NVD-CWE-Other	CVE-2007-4237	2011-03-8 11:58	2007-08-9	Show	GitHub Exploit DB Packet Storm

307538	-	ibm	aix	AIX 5.2 and 5.3 install pioinit with user and group ownership of bin, which allows local users with bin or possibly printq privileges to gain root privileges by modifying pioinit.	NVD-CWE-Other	CVE-2007-4238	2011-03-8 11:58	2007-08-9	Show	GitHub Exploit DB Packet Storm

307539	-	ibm	db2_universal_database	Directory traversal vulnerability in IBM DB2 UDB 8 before Fixpak 15 and 9.1 before Fixpak 3 allows local users to create arbitrary files via a .. (dot dot) in an unspecified environment variable, whi…	CWE-22 Path Traversal	CVE-2007-4271	2011-03-8 11:58	2007-08-19	Show	GitHub Exploit DB Packet Storm

307540	-	trend_micro	pc-cillin_internet_security_2007 scan_engine	The Trend Micro AntiVirus scan engine before 8.550-1001, as used in Trend Micro PC-Cillin Internet Security 2007, and Tmxpflt.sys 8.320.1004 and 8.500.0.1002, has weak permissions (Everyone:Write) fo…	CWE-264 CWE-119 Permissions, Privileges, and Access Controls Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4277	2011-03-8 11:58	2007-10-31	Show	GitHub Exploit DB Packet Storm