Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230461	5.5	警告	Vtiger	-	vtiger CRM の SOAP Web サービスにおけるデータをアクセスされる脆弱性	-	CVE-2007-3602	2012-12-20 18:33	2007-02-26	Show	GitHub Exploit DB Packet Storm

230462	2.1	注意	Vtiger	-	vtiger CRM における特定ユーザのカレンダー項目を読まれる脆弱性	-	CVE-2007-3601	2012-12-20 18:33	2007-05-31	Show	GitHub Exploit DB Packet Storm

230463	4	警告	Vtiger	-	vtiger CRM の wordintegration コンポーネントにおけるフィールドレベルのセキュリティパーミッションを回避される脆弱性	-	CVE-2007-3600	2012-12-20 18:33	2007-05-9	Show	GitHub Exploit DB Packet Storm

230464	8.5	危険	Vtiger	-	vtiger CRM における連絡先情報をインポートされるなどの脆弱性	-	CVE-2007-3599	2012-12-20 18:33	2007-02-9	Show	GitHub Exploit DB Packet Storm

230465	5.5	警告	Vtiger	-	index.php の vtiger CRM における全ユーザ名などを取得される脆弱性	-	CVE-2007-3598	2012-12-20 18:33	2007-02-5	Show	GitHub Exploit DB Packet Storm

230466	6.5	警告	Vtiger	-	vtiger CRM の index.php における管理の変更を実行される脆弱性	-	CVE-2007-3616	2012-12-20 18:33	2006-10-24	Show	GitHub Exploit DB Packet Storm

230467	8.5	危険	Zen Cart	-	Zen Cart におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2007-3597	2012-12-20 18:33	2007-07-6	Show	GitHub Exploit DB Packet Storm

230468	7.5	危険	vbzoom	-	VBZooM の reply.php における SQL インジェクションの脆弱性	-	CVE-2007-3588	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

230469	7.5	危険	postnuke software foundation	-	PNphpBB2 の viewforum.php における SQL インジェクションの脆弱性	-	CVE-2007-3584	2012-12-20 18:33	2007-07-5	Show	GitHub Exploit DB Packet Storm

230470	4.3	警告	PHPIDS	-	PHPIDS における任意の Web スクリプトを挿入される脆弱性	-	CVE-2007-3580	2012-12-20 18:33	2007-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293151	-	moodle	moodle	The moodle1 backup converter in backup/converter/moodle1/lib.php in Moodle 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly validate pathnames, wh…	CWE-20 Improper Input Validation	CVE-2012-6099	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293152	-	moodle	moodle	grade/edit/outcome/edit_form.php in Moodle 1.9.x through 1.9.19, 2.1.x before 2.1.10, 2.2.x before 2.2.7, 2.3.x before 2.3.4, and 2.4.x before 2.4.1 does not properly enforce the moodle/grade:manage …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2012-6098	2024-11-21 10:45	2013-01-28	Show	GitHub Exploit DB Packet Storm

293153	-	tp-link	tl-wr841n_firmware tl-wr841n	Directory traversal vulnerability in the web-based management interface on the TP-LINK TL-WR841N router with firmware 3.13.9 build 120201 Rel.54965n and earlier allows remote attackers to read arbitr…	CWE-22 Path Traversal	CVE-2012-6276	2024-11-21 10:45	2013-01-27	Show	GitHub Exploit DB Packet Storm

293154	-	dell	openmanage_server_administrator	Multiple cross-site scripting (XSS) vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic p…	CWE-79 Cross-site Scripting	CVE-2012-6272	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293155	-	isc redhat canonical	bind enterprise_linux_hpc_node enterprise_linux_server_eus enterprise_linux_server_aus enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation ubuntu_linux	ISC BIND 9.8.x through 9.8.4-P1 and 9.9.x through 9.9.2-P1, in certain configurations involving DNS64 with a Response Policy Zone that lacks an AAAA rewrite rule, allows remote attackers to cause a d…	CWE-20 Improper Input Validation	CVE-2012-5689	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293156	-	proftpd	proftpd	ProFTPD before 1.3.5rc1, when using the UserOwner directive, allows local users to modify the ownership of arbitrary files via a race condition and a symlink attack on the (1) MKD or (2) XMKD command…	CWE-362 Race Condition	CVE-2012-6095	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293157	-	freetype	freetype	The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (out-of-bounds write and crash) via vectors related to BDF fonts and an ENCODI…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5670	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293158	-	freetype	freetype	The _bdf_parse_glyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via vectors related to BDF fonts a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5669	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293159	-	freetype	freetype	FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service (NULL pointer dereference and crash) via vectors related to BDF fonts and the improper handling of an "allocatio…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2012-5668	2024-11-21 10:45	2013-01-25	Show	GitHub Exploit DB Packet Storm

293160	-	gnupg	gnupg	The read_block function in g10/import.c in GnuPG 1.4.x before 1.4.13 and 2.0.x through 2.0.19, when importing a key, allows remote attackers to corrupt the public keyring database or cause a denial o…	CWE-20 Improper Input Validation	CVE-2012-6085	2024-11-21 10:45	2013-01-24	Show	GitHub Exploit DB Packet Storm