Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227371 6.8 警告 PHP工房 - Phpkobo Address Book Script の codelib/cfg/common.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1058 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227372 6.8 警告 PHP工房 - Phpkobo AdFreely におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1057 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227373 6.8 警告 rockettheme - Joomla! 用の Rokdownloads コンポーネントにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1056 2012-12-20 19:29 2010-03-16 Show GitHub Exploit DB Packet Storm
227374 5.1 警告 tufat - osDate における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1055 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
227375 6.8 警告 zentracking - Zen Time Tracking における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1053 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
227376 7.5 危険 Uiga - Uiga Business Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1049 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
227377 4.3 警告 Uiga - Uiga Business Portal の blog/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1048 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
227378 7.5 危険 ryan marshall - Rostermain の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1046 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
227379 4.3 警告 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1020 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
227380 7.5 危険 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1019 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345921 - - - Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name. NVD-CWE-Other
CVE-2004-0524 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345922 - kde konqueror KDE Konqueror 2.1.1 and 2.2.2 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image … NVD-CWE-Other
CVE-2004-0527 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345923 - netscape navigator Netscape Navigator 7.1 allows remote attackers to spoof a legitimate URL in the status bar via A HREF tags with modified "alt" values that point to the legitimate site, combined with an image map who… NVD-CWE-Other
CVE-2004-0528 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345924 - cluecentral suexec.patch The modified suexec program in cPanel, when configured for mod_php and compiled for Apache 1.3.31 and earlier without mod_phpsuexec, allows local users to execute untrusted shared scripts and gain pr… NVD-CWE-Other
CVE-2004-0529 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345925 - - - The PHP package in Slackware 8.1, 9.0, and 9.1, when linked against a static library, includes /tmp in the search path, which allows local users to execute arbitrary code as the PHP user by inserting… NVD-CWE-Other
CVE-2004-0530 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345926 - businessobjects infoview
webintelligence 		Business Objects WebIntelligence 2.7.0 through 2.7.4 only enforces access controls on the client, which allows remote authenticated users to delete arbitrary files on the server via a crafted delete … NVD-CWE-Other
CVE-2004-0533 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
345927 - businessobjects infoview
webintelligence 		Cross-site scripting (XSS) vulnerability in Business Objects InfoView 5.1.4 through 5.1.8 for WebIntelligence 2.7.0 through 2.7.4 allows remote attackers to inject arbitrary web script or HTML via do… NVD-CWE-Other
CVE-2004-0534 2017-07-11 10:30 2004-09-17 Show GitHub Exploit DB Packet Storm
345928 - tripwire tripwire Format string vulnerability in Tripwire commercial 4.0.1 and earlier, including 2.4, and open source 2.3.1 and earlier, allows local users to gain privileges via format string specifiers in a file na… NVD-CWE-Other
CVE-2004-0536 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345929 - oracle applications
e-business_suite 		Multiple SQL injection vulnerabilities in Oracle Applications 11.0 and Oracle E-Business Suite 11.5.1 through 11.5.8 allow remote attackers to execute arbitrary SQL procedures and queries. NVD-CWE-Other
CVE-2004-0543 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm
345930 - ibm aix Multiple buffer overflows in LVM for AIX 5.1 and 5.2 allow local users to gain privileges via the (1) putlvcb or (2) getlvcb commands. NVD-CWE-Other
CVE-2004-0544 2017-07-11 10:30 2004-08-6 Show GitHub Exploit DB Packet Storm