Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230011	7.5	危険	IBM	-	IBM Web Interface for Content Management における脆弱性	CWE-noinfo 情報不足	CVE-2010-1243	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230012	4.3	警告	IBM	-	IBM Web Interface for Content Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1242	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230013	5	警告	MoinMoin	-	MoinMoin における textcha の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1238	2012-09-25 17:38	2010-04-5	Show	GitHub Exploit DB Packet Storm

230014	9.3	危険	マイクロソフト	-	Microsoft Virtual PC 2007 などの Virtual Machine Monitor におけるデータ漏洩保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1225	2012-09-25 17:38	2010-04-1	Show	GitHub Exploit DB Packet Storm

230015	4.3	警告	mm forum	-	TYPO3 用の mm_forum エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1218	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230016	4.3	警告	je form creator	-	Joomla! 用の JE Form Creator コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1217	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230017	6.8	警告	notsopureedit	-	notsoPureEdit の templates/template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1216	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230018	5	警告	Mozilla Foundation	-	Bugzilla の Search.pm におけるタイムトラッキング情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1204	2012-09-25 17:38	2010-06-24	Show	GitHub Exploit DB Packet Storm

230019	4.3	警告	ikiwiki	-	ikiwiki の htmlscrubber コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1195	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230020	4.3	警告	MediaWiki	-	MediaWiki の thumb.php におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1190	2012-09-25 17:38	2010-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298881	-	drake_team	drake_cms	Directory traversal vulnerability in 404.php in Drake CMS allows remote attackers to include and execute arbitrary local arbitrary files via a .. (dot dot) in the d_private parameter. NOTE: some of …	NVD-CWE-Other	CVE-2007-1849	2017-07-29 10:31	2007-04-4	Show	GitHub Exploit DB Packet Storm

298882	-	hitachi	jp1-hicommand_device_manager jp1-hicommand_global_link_availability_manager jp1-hicommand_replication_monitor jp1-hicommand_tiered_storage_manager jp1-hicommand_tuning_manager	Unspecified vulnerability in Hitachi JP1/HiCommand DeviceManager, Global Link Availability Manager, Replication Monitor, Tiered Storage Manager, and Tuning Manager allows local users to obtain authen…	NVD-CWE-Other	CVE-2007-1853	2017-07-29 10:31	2007-04-4	Show	GitHub Exploit DB Packet Storm

298883	-	hitachi	cosminexus_component_container electronic_form_workflow ucosminexus_application_server ucosminexus_developer ucosminexus_erp_integrator ucosminexus_service_architect ucosminexus_ser…	Unspecified vulnerability in Hitachi Cosminexus Component Container 07-00 through 07-00-10, and 07-10 through 07-10-03, as used in uCosminexus Application Server Enterprise and Standard; uCosminexus …	NVD-CWE-Other	CVE-2007-1854	2017-07-29 10:31	2007-04-4	Show	GitHub Exploit DB Packet Storm

298884	-	dproxy	dproxy	Stack-based buffer overflow in the dns_decode_reverse_name function in dns_decode.c in dproxy-nexgen allows remote attackers to execute arbitrary code by sending a crafted packet to port 53/udp, a di…	NVD-CWE-Other	CVE-2007-1866	2017-07-29 10:31	2007-04-5	Show	GitHub Exploit DB Packet Storm

298885	-	ibm	tivoli_provisioning_manager_os_deployment	The management service in IBM Tivoli Provisioning Manager for OS Deployment before 5.1 Fix Pack 2 does not properly handle multipart/form-data in HTTP POST requests, which allows remote attackers to …	NVD-CWE-Other	CVE-2007-1868	2017-07-29 10:31	2007-04-5	Show	GitHub Exploit DB Packet Storm

298886	-	adobe	coldfusion	Adobe ColdFusion MX 7 for Linux and Solaris uses insecure permissions for certain scripts and directories, which allows local users to execute arbitrary code or obtain sensitive information via the (…	NVD-CWE-Other	CVE-2007-1874	2017-07-29 10:31	2007-04-12	Show	GitHub Exploit DB Packet Storm

298887	-	kaspersky_lab	kaspersky_anti-virus kaspersky_internet_security	The StartUploading function in KL.SysInfo ActiveX control (AxKLSysInfo.dll) in Kaspersky Anti-Virus 6.0 and Internet Security 6.0 before Maintenance Pack 2 build 6.0.2.614 allows remote attackers to …	NVD-CWE-Other	CVE-2007-1879	2017-07-29 10:31	2007-04-6	Show	GitHub Exploit DB Packet Storm

298888	-	kaspersky_lab	kaspersky_anti-virus kaspersky_internet_security	Integer overflow in the _NtSetValueKey function in klif.sys in Kaspersky Anti-Virus, Anti-Virus for Workstations, Anti-Virus for File Server 6.0, and Internet Security 6.0 before Maintenance Pack 2 b…	NVD-CWE-Other	CVE-2007-1880	2017-07-29 10:31	2007-04-6	Show	GitHub Exploit DB Packet Storm

298889	-	kaspersky_lab	kaspersky_anti-virus kaspersky_internet_security	The vendor has addressed this vulnerability within Maintenance Pack 2. More information is available from the following link: http://www.kaspersky.com/technews?id=203038693	NVD-CWE-Other	CVE-2007-1880	2017-07-29 10:31	2007-04-6	Show	GitHub Exploit DB Packet Storm

298890	-	hp	mercury_quality_center	qcbin/servlet/tdservlet/TDAPI_GeneralWebTreatment in HP Mercury Quality Center 9.0 build 9.1.0.4352 allows remote authenticated users to execute arbitrary SQL commands via the RunQuery method.	NVD-CWE-Other	CVE-2007-1882	2017-07-29 10:31	2007-04-6	Show	GitHub Exploit DB Packet Storm