Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230291	5	警告	vlad leont	-	FD Script の download.php における特定の拡張子を伴う Web 文書ルート配下のファイルのソースを読み取られる脆弱性	-	CVE-2007-0620	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230292	7.8	危険	Zenphoto	-	zenphoto の zen/template-functions.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0616	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

230293	4.3	警告	W-Agora	-	Web-Agora におけるアプリケーションのパス情報を取得される脆弱性	-	CVE-2007-0607	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

230294	5	警告	W-Agora	-	w-agora における重要な情報を取得される脆弱性	-	CVE-2007-0606	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

230295	6.8	警告	シックス・アパート株式会社	-	Movable Type におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0604	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230296	6.9	警告	トレンドマイクロ	-	Linux 用の Trend Micro VirusWall におけるバッファオーバーフローの脆弱性	-	CVE-2007-0602	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230297	5	警告	siteman	-	Siteman におけるパスワードハッシュを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0594	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230298	5	警告	siteman	-	Siteman におけるパスワードハッシュを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0593	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230299	7.5	危険	vu le an	-	VirtualPath の configure.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0591	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

230300	9.3	危険	webfwlog	-	Webfwlog の include/debug.php におけるファイルのソースコードを取得される脆弱性	-	CVE-2007-0585	2012-12-20 18:19	2007-01-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346761	-	david_harris	pegasus_mail	Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file, which allows local users to easily decrypt the passwords and read e-mail.	NVD-CWE-Other	CVE-1999-1366	2016-10-18 11:03	1999-05-15	Show	GitHub Exploit DB Packet Storm

346762	-	realnetworks	realserver	Real Media RealServer (rmserver) 6.0.3.353 stores a password in plaintext in the world-readable rmserver.cfg file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1369	2016-10-18 11:03	1999-04-14	Show	GitHub Exploit DB Packet Storm

346763	-	triactive	remote_management	Triactive Remote Manager with Basic authentication enabled stores the username and password in cleartext in registry keys, which could allow local users to gain privileges.	NVD-CWE-Other	CVE-1999-1372	2016-10-18 11:03	1999-02-19	Show	GitHub Exploit DB Packet Storm

346764	-	fore	powerhub_software	FORE PowerHub before 5.0.1 allows remote attackers to cause a denial of service (hang) via a TCP SYN scan with TCP/IP OS fingerprinting, e.g. via nmap.	NVD-CWE-Other	CVE-1999-1373	2016-10-18 11:03	2005-01-5	Show	GitHub Exploit DB Packet Storm

346765	-	arpanet	perlshop	perlshop.cgi shopping cart program stores sensitive customer information in directories and files that are under the web root, which allows remote attackers to obtain that information via an HTTP req…	NVD-CWE-Other	CVE-1999-1374	2016-10-18 11:03	2005-05-2	Show	GitHub Exploit DB Packet Storm

346766	-	microsoft	internet_information_server	FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote attackers to read arbitrary files by specifying the name in the file parameter.	NVD-CWE-Other	CVE-1999-1375	2016-10-18 11:03	1999-02-11	Show	GitHub Exploit DB Packet Storm

346767	-	microsoft	internet_information_server	Buffer overflow in fpcount.exe in IIS 4.0 with FrontPage Server Extensions allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1376	2016-10-18 11:03	1999-01-14	Show	GitHub Exploit DB Packet Storm

346768	-	dbmlparser.exe	dbmlparser.exe	dbmlparser.exe CGI guestbook program does not perform a chroot operation properly, which allows remote attackers to read arbitrary files.	NVD-CWE-Other	CVE-1999-1378	2016-10-18 11:03	1999-07-19	Show	GitHub Exploit DB Packet Storm

346769	-	dnstools_software	dnstools	DNS allows remote attackers to use DNS name servers as traffic amplifiers via a UDP DNS query with a spoofed source address, which produces more traffic to the victim than was sent by the attacker.	NVD-CWE-Other	CVE-1999-1379	2016-10-18 11:03	1999-12-31	Show	GitHub Exploit DB Packet Storm

346770	-	dbadmin	dbadmin	Buffer overflow in dbadmin CGI program 1.0.1 on Linux allows remote attackers to execute arbitrary commands.	NVD-CWE-Other	CVE-1999-1381	2016-10-18 11:03	1998-10-8	Show	GitHub Exploit DB Packet Storm