Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230641	6.8	警告	XOOPS	-	XOOPS 用の icontent モジュールにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3057	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230642	4.3	警告	WebSVN	-	WebSVN の filedetails.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-3056	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230643	7.5	危険	postnuke software foundation	-	PostNuke 用の PNphpBB2 モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3052	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230644	7.5	危険	revokesoft	-	RevokeSoft RevokeBB の inc/class_users.php における SQL インジェクションの脆弱性	-	CVE-2007-3051	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230645	10	危険	Vonage	-	Vonage VoIP Telephone Adapter における管理アクセス権限を取得される脆弱性	-	CVE-2007-3047	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230646	4.3	警告	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における総当たり攻撃を実行される脆弱性	-	CVE-2007-3022	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230647	7.5	危険	シマンテック	-	Symantec Client Security および SAV CE などで使用される Symantec Reporting Server における任意の実行可能なファイルを作成される脆弱性	-	CVE-2007-3021	2012-12-20 18:19	2007-06-5	Show	GitHub Exploit DB Packet Storm

230648	9.3	危険	zenturi	-	Zenturi ProgramChecker の sasatl.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-2987	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

230649	7.8	危険	techno dreams	-	Techno Dreams Web Directory / Search Engine におけるデータベースをダウンロードされる脆弱性	-	CVE-2007-2979	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

230650	7.5	危険	Wanewsletter	-	WAnewsletter の newsletter.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2969	2012-12-20 18:19	2007-05-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292321	-	ubercart	ubercart	Cross-site scripting (XSS) vulnerability in Views in the Ubercart module 7.x-3.x before 7.x-3.4 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full name field.	CWE-79 Cross-site Scripting	CVE-2013-0322	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292322	-	ubercart_views_project	uc_views	Cross-site scripting (XSS) vulnerability in Views in the Ubercart Views (uc_views) module 6.x before 6.x-3.3 for Drupal allows remote attackers to inject arbitrary web script or HTML via the full nam…	CWE-79 Cross-site Scripting	CVE-2013-0321	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292323	-	mattias_hutterer	taxonomy_manager	Cross-site request forgery (CSRF) vulnerability in the Taxonomy Manager (taxonomy_manager) module 6.x-2.x before 6.x-2.2 and 7.x-1.x before 7.x-1.0-rc1 for Drupal allows remote attackers to hijack th…	CWE-352 Origin Validation Error	CVE-2013-0320	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292324	-	yandex.metrics_project	yandex_metrics	Cross-site scripting (XSS) vulnerability in the Yandex.Metrics module 6.x-1.x before 6.x-1.6 and 7.x-1.x before 7.x-1.5 for Drupal allows remote attackers to inject arbitrary web script or HTML via v…	CWE-79 Cross-site Scripting	CVE-2013-0319	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292325	-	banckle_chat_project	banckle_chat	The admin page in the Banckle Chat module for Drupal does not properly restrict access, which allows remote attackers to bypass intended restrictions via unspecified vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-0318	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292326	-	joe_haskins	og_manager_change	Cross-site scripting (XSS) vulnerability in the Manager Change for Organic Groups (og_manager_change) module 7.x-2.x before 7.x-2.1 for Drupal might allow remote attackers to inject arbitrary web scr…	CWE-79 Cross-site Scripting	CVE-2013-0317	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292327	-	drupal	drupal	The Image module in Drupal 7.x before 7.20 allows remote attackers to cause a denial of service (CPU and disk space consumption) via a large number of new derivative requests.	CWE-399 Resource Management Errors	CVE-2013-0316	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292328	-	elliot_pahl	drush_debian_packaging	Unspecified vulnerability in the Drush Debian Packaging module for Drupal allows local users to obtain database credentials via unknown vectors.	NVD-CWE-noinfo	CVE-2013-0260	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292329	-	boxes_project	boxes	Cross-site scripting (XSS) vulnerability in the Boxes module 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with administer or edit boxes permissions to inject arbitrary web scri…	CWE-79 Cross-site Scripting	CVE-2013-0259	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm

292330	-	google_authenticator_login_project	ga_login	The Google Authenticator login (ga_login) module 7.x before 7.x-1.3 for Drupal, when multi-factor authentication is enabled, allows remote attackers to bypass authentication for accounts without an a…	CWE-287 Improper Authentication	CVE-2013-0258	2024-11-21 10:47	2013-03-28	Show	GitHub Exploit DB Packet Storm