Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225431 7.5 危険 xecms - xeCMS の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6508 2012-12-20 18:34 2007-12-21 Show GitHub Exploit DB Packet Storm
225432 10 危険 トレンドマイクロ - Windows 用の Trend Micro ServerProtect における "ファイルシステムの全アクセス権限" を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6507 2012-12-20 18:34 2007-07-27 Show GitHub Exploit DB Packet Storm
225433 4.9 警告 plain black - Plain Black WebGUI における管理アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6487 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
225434 6.8 警告 phprpg - phpRPG の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6484 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
225435 7.8 危険 サン・マイクロシステムズ - Sun Ray Server Software の utdevmgrd におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6482 2012-12-20 18:34 2007-12-18 Show GitHub Exploit DB Packet Storm
225436 6.4 警告 サン・マイクロシステムズ - Sun Ray Server Software の utdevmgrd における任意のディレクトリを削除される脆弱性 CWE-DesignError
CVE-2007-6481 2012-12-20 18:34 2007-12-18 Show GitHub Exploit DB Packet Storm
225437 9.4 危険 サン・マイクロシステムズ - Sun MC の Oracle データベースコンポーネントにおける任意のコードを実行される脆弱性 CWE-DesignError
CVE-2007-6480 2012-12-20 18:34 2007-12-18 Show GitHub Exploit DB Packet Storm
225438 6.8 警告 rosoftengineering - Rosoft Media Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6478 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
225439 5.8 警告 texas imperial software - Texas Imperial Software WFTPD Pro Explorer におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6473 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
225440 7.5 危険 phpmyrealty - PMR における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6472 2012-12-20 18:34 2007-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292381 - david_degner phpcollegeexchange SQL injection vulnerability in house/listing_view.php in phpCollegeExchange 0.1.5c allows remote attackers to execute arbitrary SQL commands via the itemnr parameter. CWE-89
SQL Injection 		CVE-2009-2096 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292382 - micheal_glazer phportal SQL injection vulnerability in topicler.php in phPortal 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2009-2098 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292383 - ijoomla com_rssfeeder SQL injection vulnerability in the iJoomla RSS Feeder (com_ijoomla_rss) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cat parameter in an xml action to index… CWE-89
SQL Injection 		CVE-2009-2099 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292384 - joomlapraise com_projectfork Directory traversal vulnerability in the JoomlaPraise Projectfork (com_projectfork) component 2.0.10 for Joomla! allows remote attackers to read arbitrary files via directory traversal sequences in t… CWE-22
Path Traversal 		CVE-2009-2100 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292385 - castro_xl torrentvolve Directory traversal vulnerability in archive.php in TorrentVolve 1.4, when register_globals is enabled, allows remote attackers to delete arbitrary files via a .. (dot dot) in the deleteTorrent param… CWE-22
Path Traversal 		CVE-2009-2101 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292386 - com_jumi com_jumi SQL injection vulnerability in the Jumi (com_jumi) component 2.0.3 and possibly other versions for Joomla allows remote attackers to execute arbitrary SQL commands via the fileid parameter to index.p… CWE-89
SQL Injection 		CVE-2009-2102 2017-09-29 10:34 2009-06-18 Show GitHub Exploit DB Packet Storm
292387 - jnmsolutions db_top_sites Multiple directory traversal vulnerabilities in DB Top Sites 1.0, when magic_quotes_gpc is disabled, allow remote attackers to include and execute arbitrary local files via a .. (dot dot) in the u pa… CWE-22
Path Traversal 		CVE-2009-2110 2017-09-29 10:34 2009-06-19 Show GitHub Exploit DB Packet Storm
292388 - jnmsolutions db_top_sites Static code injection vulnerability in add_reg.php in DB Top Sites 1.0 allows remote attackers to inject arbitrary PHP code via a crafted (1) url and (2) location parameter. CWE-94
Code Injection 		CVE-2009-2111 2017-09-29 10:34 2009-06-19 Show GitHub Exploit DB Packet Storm
292389 - frank-karau phpfk Directory traversal vulnerability in include/page_bottom.php in phpFK 7.03 allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the _FORUM[setting… CWE-22
Path Traversal 		CVE-2009-2112 2017-09-29 10:34 2009-06-19 Show GitHub Exploit DB Packet Storm
292390 - phportal phportal uye_paneli.php in phPortal 1.0 allows remote attackers to bypass authentication and obtain administrative access by setting the kulladi cookie to a valid username. CWE-287
Improper Authentication 		CVE-2009-2117 2017-09-29 10:34 2009-06-19 Show GitHub Exploit DB Packet Storm