Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228981 4.3 警告 Intelliants - Subrion CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-4771 2012-10-24 16:36 2012-10-22 Show GitHub Exploit DB Packet Storm
228982 3.6 注意 OpenFabrics Alliance - ibacm における ib_acm デーモンログまたは ibacm.port ファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4518 2012-10-24 16:35 2012-10-22 Show GitHub Exploit DB Packet Storm
228983 5 警告 OpenFabrics Alliance - ibacm におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-4517 2012-10-24 16:34 2012-10-22 Show GitHub Exploit DB Packet Storm
228984 5.8 警告 OpenFabrics Alliance - librdmacm におけるアプリケーションのアドレス解決情報を設定される脆弱性 CWE-Other
その他 		CVE-2012-4516 2012-10-24 15:52 2012-10-22 Show GitHub Exploit DB Packet Storm
228985 5.8 警告 libsocialweb - libsocialweb における重要な情報を取得される脆弱性 CWE-16
環境設定 		CVE-2012-4511 2012-10-24 15:36 2012-10-22 Show GitHub Exploit DB Packet Storm
228986 7.5 危険 Intelliants - Subrion CMS の admin/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-5212 2012-10-24 11:39 2012-10-22 Show GitHub Exploit DB Packet Storm
228987 4.3 警告 Intelliants - Subrion CMS の poll モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5211 2012-10-24 11:38 2012-10-22 Show GitHub Exploit DB Packet Storm
228988 5.8 警告 libsocialweb - libsocialweb における重要な情報を取得される脆弱性 CWE-16
環境設定 		CVE-2011-4129 2012-10-24 11:37 2012-10-22 Show GitHub Exploit DB Packet Storm
228989 4.3 警告 phpMyFAQ - phpMyFAQ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4821 2012-10-24 11:34 2010-09-28 Show GitHub Exploit DB Packet Storm
228990 4.3 警告 Claws Mail - Claws Mail の procmime.c の strchr 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-4507 2012-10-24 11:29 2012-10-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284661 - emc replistor Multiple heap-based buffer overflows in EMC RepliStor 6.2 SP2, and possibly earlier versions, allow remote attackers to execute arbitrary code via crafted compressed data. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6426 2018-10-16 06:53 2008-02-21 Show GitHub Exploit DB Packet Storm
284662 - x.org tog-cup
xserver 		The ProcGetReservedColormapEntries function in the TOG-CUP extension in X.Org Xserver before 1.4.1 allows context-dependent attackers to read the contents of arbitrary memory locations via a request … NVD-CWE-Other
CVE-2007-6428 2018-10-16 06:53 2008-01-19 Show GitHub Exploit DB Packet Storm
284663 - x.org evi
mit-shm
xserver 		Multiple integer overflows in X.Org Xserver before 1.4.1 allow context-dependent attackers to execute arbitrary code via (1) a GetVisualInfo request containing a 32-bit value that is improperly used … CWE-189
CWE-362
Numeric Errors
Race Condition 		CVE-2007-6429 2018-10-16 06:53 2008-01-19 Show GitHub Exploit DB Packet Storm
284664 - real_time_logic barracudadrive_web_server
barracudadrive_web_server_home_server 		BarracudaDrive Web Server before 3.8 allows remote attackers to read the source code for web scripts by appending a (1) + (plus), (2) . (dot), or (3) %80 and similar characters to the file name in th… CWE-20
 Improper Input Validation  		CVE-2007-6314 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm
284665 - real_time_logic barracudadrive_web_server
barracudadrive_web_server_home_server 		Group Chat in BarracudaDrive Web Server before 3.8 allows remote authenticated users to cause a denial of service (crash) via a HTTP request to /eh/chat.ehintf/C. that does not contain a Connection I… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-6315 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm
284666 - real_time_logic barracudadrive_web_server
barracudadrive_web_server_home_server 		Cross-site scripting (XSS) vulnerability in BarracudaDrive Web Server before 3.8 allows remote attackers to inject arbitrary web script or HTML via the URI path in an HTTP GET request, which is activ… CWE-79
Cross-site Scripting 		CVE-2007-6316 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm
284667 - real_time_logic barracudadrive_web_server
barracudadrive_web_server_home_server 		Multiple directory traversal vulnerabilities in BarracudaDrive Web Server before 3.8 allow (1) remote attackers to read arbitrary files via certain ..\ (dot dot backslash) sequences in the URL path, … CWE-22
Path Traversal 		CVE-2007-6317 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm
284668 - wordpress wordpress SQL injection vulnerability in wp-includes/query.php in WordPress 2.3.1 and earlier allows remote attackers to execute arbitrary SQL commands via the s parameter, when DB_CHARSET is set to (1) Big5, … CWE-89
SQL Injection 		CVE-2007-6318 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm
284669 - lyris list_manager Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitra… NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-6319 2018-10-16 06:52 2008-02-20 Show GitHub Exploit DB Packet Storm
284670 - roundcube webmail Cross-site scripting (XSS) vulnerability in RoundCube webmail 0.1rc2, 2007-12-09, and earlier versions, when using Internet Explorer, allows remote attackers to inject arbitrary web script or HTML vi… CWE-79
Cross-site Scripting 		CVE-2007-6321 2018-10-16 06:52 2007-12-12 Show GitHub Exploit DB Packet Storm