Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230351 6.8 警告 php-tools - patBBcode の examples/patExampleGen/bbcodeSource.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5995 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
230352 6.8 警告 yappa-ng - Fritz Berger yappa-ng の check_noimage.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-5994 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
230353 4.3 警告 vtls - VTLS vtls.web.gateway の Visionary Technology におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5993 2012-12-20 18:33 2007-11-15 Show GitHub Exploit DB Packet Storm
230354 6.8 警告 Skype Technologies S.A. - Skype の skype4com URI ハンドラにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-5989 2012-12-20 18:33 2007-12-13 Show GitHub Exploit DB Packet Storm
230355 4.3 警告 X7 Group - X7 Chat におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5982 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
230356 7.5 危険 XOOPS - XOOPS 用の mylinks モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5978 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
230357 3.5 注意 The phpMyAdmin Project - phpMyAdmin の db_create.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5977 2012-12-20 18:33 2007-11-11 Show GitHub Exploit DB Packet Storm
230358 6.5 警告 The phpMyAdmin Project - phpMyAdmin の db_create.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5976 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
230359 6.5 警告 torrentstrike - TBSource の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5975 2012-12-20 18:33 2007-11-14 Show GitHub Exploit DB Packet Storm
230360 5 警告 really simple caldav store - RSCDS における重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-5953 2012-12-20 18:33 2007-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292741 - zugec_ivan keyboard_shortcut_utility The Keyboard Shortcut Utility module 7.x-1.x before 7.x-1.1 for Drupal does not properly check node restrictions, which allows (1) remote authenticated users with the "view shortcuts" permission to r… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0226 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292742 - user_relationships_project user_relationships Cross-site scripting (XSS) vulnerability in the User Relationships module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.0-alpha5 for Drupal allows remote authenticated users with the "administer us… CWE-79
Cross-site Scripting 		CVE-2013-0225 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292743 - video_project video The Video module 7.x-2.x before 7.x-2.9 for Drupal, when using the FFmpeg transcoder, allows local users to execute arbitrary PHP code by modifying a temporary PHP file. CWE-16
Configuration 		CVE-2013-0224 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292744 - leighton_whiting mark_complete Cross-site request forgery (CSRF) vulnerability in the Mark Complete module 7.x-1.x before 7.x-1.1 for Drupal allows remote attackers to hijack the authentication of unspecified victims via unknown v… CWE-352
 Origin Validation Error 		CVE-2013-0207 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292745 - guy_bedford live_css Unrestricted file upload vulnerability in the Live CSS module 6.x-2.x before 6.x-2.1 and 7.x-2.x before 7.x-2.7 for Drupal allows remote authenticated users with the "administer CSS" permissions to e… NVD-CWE-Other
CVE-2013-0206 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292746 - restful_web_services_project restful_web_services Cross-site request forgery (CSRF) vulnerability in the RESTful Web Services (restws) module 7.x-1.x before 7.x-1.2 and 7.x-2.x before 7.x-2.0-alpha4 for Drupal allows remote attackers to hijack the a… CWE-352
 Origin Validation Error 		CVE-2013-0205 2024-11-21 10:47 2013-03-19 Show GitHub Exploit DB Packet Storm
292747 - apache commons_fileupload The default configuration of javax.servlet.context.tempdir in Apache Commons FileUpload 1.0 through 1.2.2 uses the /tmp directory for uploaded files, which allows local users to overwrite arbitrary f… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0248 2024-11-21 10:47 2013-03-16 Show GitHub Exploit DB Packet Storm
292748 - ganglia ganglia-web Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2013-0275 2024-11-21 10:47 2013-03-14 Show GitHub Exploit DB Packet Storm
292749 - fedoraproject 389_directory_server 389 Directory Server before 1.3.0.4 allows remote attackers to cause a denial of service (crash) via a zero length LDAP control sequence. CWE-189
Numeric Errors 		CVE-2013-0312 2024-11-21 10:47 2013-03-14 Show GitHub Exploit DB Packet Storm
292750 - adobe flash_player
flash_player_for_android
adobe_air_sdk_and_compiler
adobe_air_sdk
adobe_air 		Use-after-free vulnerability in Adobe Flash Player before 10.3.183.68 and 11.x before 11.6.602.180 on Windows and Mac OS X, before 10.3.183.68 and 11.x before 11.2.202.275 on Linux, before 11.1.111.4… CWE-399
 Resource Management Errors 		CVE-2013-0650 2024-11-21 10:47 2013-03-14 Show GitHub Exploit DB Packet Storm