Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225391	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Web Proxy Server の View URL Database 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6570	2012-12-20 18:34	2007-12-21	Show	GitHub Exploit DB Packet Storm

225392	7.5	危険	xzeroscripts	-	XZero Community Classifieds の config.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-6568	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

225393	6.4	警告	xzeroscripts	-	XZero Community Classifieds の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6567	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

225394	7.5	危険	xzeroscripts	-	XZero Community Classifieds の post.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6566	2012-12-20 18:34	2007-12-28	Show	GitHub Exploit DB Packet Storm

225395	5	警告	tcpreen	-	TCPreen の FD_SET の使用におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6562	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

225396	4.3	警告	totalplayer	-	TotalPlayer におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-6558	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

225397	7.5	危険	websihirbazi	-	websihirbazi における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6556	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

225398	7.5	危険	pmos helpdesk	-	PMOS Help Desk の form.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6550	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

225399	7.5	危険	runcms	-	RunCMS における脆弱性	CWE-DesignError	CVE-2007-6549	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

225400	7.5	危険	runcms	-	RunCMS における任意の PHP コード挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6548	2012-12-20 18:34	2007-12-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292331	-	graphiks	myforum	Multiple SQL injection vulnerabilities in Graphiks MyForum 1.3 allow remote attackers to execute arbitrary SQL commands via the (1) Username and (2) Password fields.	CWE-89 SQL Injection	CVE-2009-1852	2017-09-29 10:34	2009-06-2	Show	GitHub Exploit DB Packet Storm

292332	-	kenseiboard	kensei_board	Multiple SQL injection vulnerabilities in index.php in Kensei Board 2.0 BETA (aka 2.0.0b) and earlier allow remote attackers to execute arbitrary SQL commands via the (1) f and (2) t parameters in a …	CWE-89 SQL Injection	CVE-2009-1853	2017-09-29 10:34	2009-06-2	Show	GitHub Exploit DB Packet Storm

292333	-	cmsnx	million_dollar_text_links	Million Dollar Text Links 1.0 allows remote attackers to bypass authentication and gain administrative access by setting the userid cookie to 1.	CWE-287 Improper Authentication	CVE-2009-1854	2017-09-29 10:34	2009-06-2	Show	GitHub Exploit DB Packet Storm

292334	-	adobe	air flash_player flex	Unspecified vulnerability in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-1863	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292335	-	adobe	air flash_player flex	Heap-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1864	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292336	-	adobe	air flash_player flex	Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly execute arbitrary code via un…	NVD-CWE-noinfo	CVE-2009-1865	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292337	-	adobe	air flash_player flex	Stack-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibl…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1866	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292338	-	adobe	air flash_player flex	Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to trick a user into (1) selecting a link or (2) completing a dialog, related to a "clickj…	CWE-59 Link Following	CVE-2009-1867	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292339	-	adobe	air flash_player flex	Heap-based buffer overflow in Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to cause a denial of service (application crash) or possibly…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1868	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm

292340	-	adobe	air flash_player flex	Adobe Flash Player before 9.0.246.0 and 10.x before 10.0.32.18, and Adobe AIR before 1.5.2, allows attackers to obtain sensitive information via vectors involving saving an SWF file to a hard drive, …	CWE-200 Information Exposure	CVE-2009-1870	2017-09-29 10:34	2009-08-1	Show	GitHub Exploit DB Packet Storm