Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229411 7.5 危険 Mavili - Mavili Guestbook における任意のメッセージを編集される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5299 2012-10-9 14:55 2012-10-4 Show GitHub Exploit DB Packet Storm
229412 5 警告 Mavili - Mavili Guestbook におけるデータベースを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5298 2012-10-9 14:54 2012-10-4 Show GitHub Exploit DB Packet Storm
229413 7.5 危険 Mavili - Mavili Guestbook の edit.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5297 2012-10-9 14:51 2012-10-4 Show GitHub Exploit DB Packet Storm
229414 4.3 警告 Mavili - Mavili Guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5296 2012-10-9 14:51 2012-10-4 Show GitHub Exploit DB Packet Storm
229415 4.3 警告 FuseTalk - FuseTalk Forums の login.cfm におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5295 2012-10-9 14:50 2012-10-4 Show GitHub Exploit DB Packet Storm
229416 7.5 危険 MyStore Xpress - MyStore Xpress Tienda Virtual の art_detalle.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5294 2012-10-9 14:49 2012-10-4 Show GitHub Exploit DB Packet Storm
229417 4.3 警告 TheCartPress - WordPress 用 TheCartPress プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5207 2012-10-9 14:49 2011-12-31 Show GitHub Exploit DB Packet Storm
229418 4.3 警告 Rapid Leech - Rapid Leech の notes.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5206 2012-10-9 14:48 2011-12-21 Show GitHub Exploit DB Packet Storm
229419 4.3 警告 Rapid Leech - Rapid Leech の audl.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-5205 2012-10-9 14:47 2012-10-4 Show GitHub Exploit DB Packet Storm
229420 1.9 注意 Akiva - Akiva WebBoard における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2011-5204 2012-10-9 14:47 2012-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298701 - virtuemart virtuemart SQL injection vulnerability in VirtueMart before 1.0.11 allows remote attackers to execute arbitrary SQL commands via unspecified parameters, possibly related to improper input validation of the PATH… NVD-CWE-Other
CVE-2007-3247 2017-07-29 10:32 2007-06-18 Show GitHub Exploit DB Packet Storm
298702 - joomla letterman_subscriber Cross-site scripting (XSS) vulnerability in mod_lettermansubscribe.php in the Letterman Subscriber (mod_letterman) before 1.2.5 module for Joomla! allows remote attackers to inject arbitrary web scri… NVD-CWE-Other
CVE-2007-3249 2017-07-29 10:32 2007-06-18 Show GitHub Exploit DB Packet Storm
298703 - astaro security_gateway Multiple unspecified vulnerabilities in Astaro Security Gateway (ASG) before 7.005 allow remote attackers to cause a denial of service via (1) certain email, which stops the SMTP Proxy during scannin… NVD-CWE-Other
CVE-2007-3253 2017-07-29 10:32 2007-06-18 Show GitHub Exploit DB Packet Storm
298704 - vincent_hor calendarix calendar.php in Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via large values to the (1) year and (2) month parameters, which causes negative values to be passed to… NVD-CWE-Other
CVE-2007-3258 2017-07-29 10:32 2007-06-28 Show GitHub Exploit DB Packet Storm
298705 - hp system_management_homepage HP System Management Homepage (SMH) before 2.1.9 for Linux, when used with Novell eDirectory, assigns the eDirectory members to the root group, which allows remote authenticated eDirectory users to g… NVD-CWE-Other
CVE-2007-3260 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm
298706 - dkret dkret Cross-site scripting (XSS) vulnerability in widgets/widget_search.php in dKret before 2.6 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO (PHP_SELF). NVD-CWE-Other
CVE-2007-3261 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm
298707 - ibm websphere_application_server Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier allows remote attackers to cause a denial of service related to a thread han… NVD-CWE-Other
CVE-2007-3262 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm
298708 - ibm websphere_application_server Unspecified vulnerability in the Default Messaging Component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors, related to "incorrect authorization o… NVD-CWE-noinfo
CVE-2007-3263 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm
298709 - ibm websphere_application_server Unspecified vulnerability in the PD tools component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier has unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2007-3264 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm
298710 - ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the Samples component in IBM WebSphere Application Server (WAS) 6.1.0.7 and earlier allows remote attackers to inject arbitrary web script or HTML via unsp… NVD-CWE-Other
CVE-2007-3265 2017-07-29 10:32 2007-06-20 Show GitHub Exploit DB Packet Storm