Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
219361 9.3 危険 XnSoft - XnView におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2577 2013-08-19 14:31 2013-07-18 Show GitHub Exploit DB Packet Storm
219362 4.3 警告 Novell
Canonical
MongoDB Inc.		 - MongoDB で使用される mongo-python-driver におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2013-2132 2013-08-19 13:46 2013-05-31 Show GitHub Exploit DB Packet Storm
219363 4.3 警告 Happyworm
ownCloud		 - ownCloud Server などの製品で使用される jPlayer の Flash SWF コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1942 2013-08-19 13:32 2013-03-21 Show GitHub Exploit DB Packet Storm
219364 10 危険 Apache Software Foundation - Apache Open For Business Project における任意の Unified Expression Language 機能を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-2250 2013-08-16 11:45 2013-07-20 Show GitHub Exploit DB Packet Storm
219365 4.3 警告 Apache Software Foundation - Apache Open For Business Project の Webtools アプリケーションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2137 2013-08-16 11:37 2013-07-20 Show GitHub Exploit DB Packet Storm
219366 7.5 危険 BigTree CMS - BigTree CMS の core/inc/bigtree/cms.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4879 2013-08-15 19:02 2013-07-3 Show GitHub Exploit DB Packet Storm
219367 4.3 警告 BigTree CMS - BigTree CMS の core/admin/modules/developer/modules/views/add.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4880 2013-08-15 19:00 2013-07-17 Show GitHub Exploit DB Packet Storm
219368 7.5 危険 Moxi9 - PHPFox における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5121 2013-08-15 18:39 2013-08-7 Show GitHub Exploit DB Packet Storm
219369 7.5 危険 Moxi9 - PHPFox における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5120 2013-08-15 18:33 2013-07-30 Show GitHub Exploit DB Packet Storm
219370 7.5 危険 LibRaw - LibRaw の exposure correction コードにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-2127 2013-08-15 18:04 2013-05-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278371 - xpdf xpdf Stream.cc in Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to modify memory and possibly execute arbitrary code via a DCTDe… NVD-CWE-noinfo
CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2005-3627 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278372 - easy_software_products
kde
libextractor
poppler
sgi
tetex
xpdf
conectiva
debian
gentoo
mandrakesoft
redhat
sco
slackware
suse
trustix
turbolinux
ubuntu 		cups
kdegraphics
koffice
kpdf
kword
libextractor
poppler
propack
tetex
xpdf
linux
debian_linux
mandrake_linux
mandrake_linux_corporate_server
enterprise_linu… 		Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (infinite loop) via streams that end prematurely… CWE-399
 Resource Management Errors 		CVE-2005-3625 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278373 - easy_software_products
kde
libextractor
poppler
sgi
tetex
xpdf
conectiva
debian
gentoo
mandrakesoft
redhat
sco
slackware
suse
trustix
turbolinux
ubuntu 		cups
kdegraphics
koffice
kpdf
kword
libextractor
poppler
propack
tetex
xpdf
linux
debian_linux
mandrake_linux
mandrake_linux_corporate_server
enterprise_linu… 		Xpdf, as used in products such as gpdf, kpdf, pdftohtml, poppler, teTeX, CUPS, libextractor, and others, allows attackers to cause a denial of service (crash) via a crafted FlateDecode stream that tr… CWE-399
 Resource Management Errors 		CVE-2005-3626 2018-10-20 00:37 2005-12-31 Show GitHub Exploit DB Packet Storm
278374 - saphp saphplesson SQL injection vulnerability in Saphp Lesson, possibly saphp Lesson1.1 and saphpLesson2.0, allows remote attackers to execute arbitrary SQL commands via the forumid parameter in (1) showcat.php and (2… NVD-CWE-Other
CVE-2005-3363 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278375 - codeworx_technologies dcp-portal Multiple SQL injection vulnerabilities in DCP-Portal 6 and earlier allow remote attackers to execute arbitrary SQL commands, possibly requiring encoded characters, via (1) the name parameter in regis… CWE-89
SQL Injection 		CVE-2005-3365 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278376 - trend_micro officescan
pc-cillin_2005 		Multiple interpretation error in Trend Micro (1) PC-Cillin 2005 12.0.1244 with the 7.510.1002 engine and (2) OfficeScan 7.0 with the 7.510.1002 engine allows remote attackers to bypass virus scanning… NVD-CWE-Other
CVE-2005-3379 2018-10-20 00:36 2005-10-30 Show GitHub Exploit DB Packet Storm
278377 - oaboard oaboard Multiple SQL injection vulnerabilities in forum.php in oaboard forum 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) channel parameter in the topics module and (2) topic para… NVD-CWE-Other
CVE-2005-3394 2018-10-20 00:36 2005-11-1 Show GitHub Exploit DB Packet Storm
278378 - invision_power_services invision_gallery SQL injection vulnerability in Invision Gallery 2.0.3 allows remote attackers to execute arbitrary SQL commands via the st parameter. NVD-CWE-Other
CVE-2005-3395 2018-10-20 00:36 2005-11-1 Show GitHub Exploit DB Packet Storm
278379 - elite_forum elite_forum Cross-site scripting (XSS) vulnerability in Elite Forum 1.0.0.0 allows remote attackers to inject arbitrary web script or HTML via a Post Reply to a topic, in which the reply contains a javascript: U… NVD-CWE-Other
CVE-2005-3412 2018-10-20 00:36 2005-11-2 Show GitHub Exploit DB Packet Storm
278380 - alexander_palmo simple_php_blog Multiple cross-site scripting (XSS) vulnerabilities in Simple PHP Blog 0.4.5 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) entry, (2) blog_subject, and (3) blo… NVD-CWE-Other
CVE-2005-3473 2018-10-20 00:36 2005-11-3 Show GitHub Exploit DB Packet Storm