Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229601 9 危険 IBM - Windows 上の IBM DB2 および DB2 Connect の UTL_FILE モジュールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-3324 2012-09-27 16:11 2012-07-25 Show GitHub Exploit DB Packet Storm
229602 3.3 注意 IBM - z/OS 上で稼働する IBM WebSphere Application Server におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-3311 2012-09-27 16:05 2012-09-24 Show GitHub Exploit DB Packet Storm
229603 6.8 警告 IBM - IBM WebSphere Application Server における脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-3306 2012-09-27 15:48 2012-09-24 Show GitHub Exploit DB Packet Storm
229604 6.4 警告 IBM - IBM WebSphere Application Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-3305 2012-09-27 15:37 2012-09-24 Show GitHub Exploit DB Packet Storm
229605 6.8 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるセッションをハイジャックされる脆弱性 CWE-Other
その他 		CVE-2012-3304 2012-09-27 15:31 2012-09-24 Show GitHub Exploit DB Packet Storm
229606 10 危険 IBM - IBM WebSphere Commerce における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-3298 2012-09-27 15:10 2012-09-20 Show GitHub Exploit DB Packet Storm
229607 5 警告 IBM - Solaris 上で稼働する IBM WebSphere MQ におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-2199 2012-09-27 14:57 2012-09-20 Show GitHub Exploit DB Packet Storm
229608 5 警告 IBM - 複数の IBM 製品用 IBM リモート管理アダプター II ファームウェアにおける暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2012-2187 2012-09-27 14:36 2012-09-20 Show GitHub Exploit DB Packet Storm
229609 6.5 警告 トレンドマイクロ - Trend Micro Control Manager における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-2998 2012-09-27 12:00 2012-09-27 Show GitHub Exploit DB Packet Storm
229610 4.3 警告 SQLiteManager - SQLiteManager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5105 2012-09-26 16:45 2012-09-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298551 - treble_designs 1024_cms Cross-site request forgery (CSRF) vulnerability in 1024 CMS 1.2.5 allows remote attackers to perform some actions as administrators, as demonstrated by (1) an unspecified action that creates a file c… CWE-352
 Origin Validation Error 		CVE-2007-5575 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
298552 - secureideas basic_analysis_and_security_engine Basic Analysis and Security Engine (BASE) before 1.3.8 sends a redirect to the web browser but does not exit, which allows remote attackers to bypass authentication via (1) base_main.php, (2) base_qr… CWE-287
Improper Authentication 		CVE-2007-5578 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
298553 - pligg pligg_cms login.php in Pligg CMS 9.5 uses a guessable confirmation code when resetting a forgotten password, which allows remote attackers with knowledge of a username to reset that user's password by calculat… CWE-255
Credentials Management 		CVE-2007-5579 2017-07-29 10:33 2007-10-19 Show GitHub Exploit DB Packet Storm
298554 - cisco unified_meetingplace Multiple cross-site scripting (XSS) vulnerabilities in mpweb/scripts/mpx.dll in Cisco Unified MeetingPlace 5.4 and earlier and 6.0 allow remote attackers to inject arbitrary web script or HTML via th… CWE-79
Cross-site Scripting 		CVE-2007-5581 2017-07-29 10:33 2007-11-8 Show GitHub Exploit DB Packet Storm
298555 - cisco firewall_services_module Unspecified vulnerability in Cisco Firewall Services Module (FWSM) 3.2(3) allows remote attackers to cause a denial of service (device reload) via crafted "data in the control-plane path with Layer 7… NVD-CWE-Other
CVE-2007-5584 2017-07-29 10:33 2007-12-20 Show GitHub Exploit DB Packet Storm
298556 - mnogosearch mnogosearch Cross-site scripting (XSS) vulnerability in mnoGoSearch before 3.2.43 allows remote attackers to inject arbitrary web script or HTML via the t parameter in search.cgi, as reachable from search.htm-di… CWE-79
Cross-site Scripting 		CVE-2007-5588 2017-07-29 10:33 2007-10-20 Show GitHub Exploit DB Packet Storm
298557 - miranda-im miranda Multiple buffer overflows in Miranda before 0.7.1 allow remote attackers to execute arbitrary code via unspecified vectors involving (1) IRC options, (2) Jabber forms, and unspecified aspects of the … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-5590 2017-07-29 10:33 2007-10-20 Show GitHub Exploit DB Packet Storm
298558 - realnetworks realplayer Stack-based buffer overflow in the Database Component in MPAMedia.dll in RealNetworks RealPlayer 10.5 and 11 beta, and earlier versions including 10, RealOne Player, and RealOne Player 2, allows remo… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-5601 2017-07-29 10:33 2007-10-21 Show GitHub Exploit DB Packet Storm
298559 - hp instant_support Buffer overflow in the ExtractCab function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary … NVD-CWE-noinfo
CWE-94
Code Injection 		CVE-2007-5604 2017-07-29 10:33 2008-06-5 Show GitHub Exploit DB Packet Storm
298560 - hp instant_support Buffer overflow in the GetFileTime function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support before 1.0.0.24 allows remote attackers to execute arbitrary… NVD-CWE-noinfo
CVE-2007-5605 2017-07-29 10:33 2008-06-5 Show GitHub Exploit DB Packet Storm