Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230831 6.8 警告 x-diesel - Unreal Commander におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4545 2012-12-20 18:33 2007-08-27 Show GitHub Exploit DB Packet Storm
230832 4.3 警告 WordPress.org - WordPress MU の wp-newblog.php におけるクロスサイトスクリプティングの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2007-4544 2012-12-20 18:33 2007-08-27 Show GitHub Exploit DB Packet Storm
230833 4.3 警告 university of minnesota - MapServer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4542 2012-12-20 18:33 2007-08-27 Show GitHub Exploit DB Packet Storm
230834 6.8 警告 skulltag team - Huffman 解凍アルゴリズムにおけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-4537 2012-12-20 18:33 2007-08-27 Show GitHub Exploit DB Packet Storm
230835 4.6 警告 torrenttrader - TorrentTrader における任意の PHP コードを実行される脆弱性 - CVE-2007-4536 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
230836 4.3 警告 vavoom - Vavoom の str.cpp におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-4535 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
230837 7.5 危険 vavoom - Vavoom の p_thinker.cpp におけるバッファオーバーフローの脆弱性 - CVE-2007-4534 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
230838 6.8 警告 vavoom - Vavoom の sv_main.cpp におけるフォーマットストリングの脆弱性 - CVE-2007-4533 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
230839 4.3 警告 TeamSpeak Systems GmbH - TeamSpeak Server におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4530 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
230840 8.5 危険 TeamSpeak Systems GmbH - TeamSpeak Server の WebAdmin インターフェースにおける登録したユーザに特定の権限を割り当てられる脆弱性 - CVE-2007-4529 2012-12-20 18:33 2007-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293961 - neocrome seditio Neocrome Seditio build 161 allows remote attackers to obtain sensitive information via a direct request to (1) docs/new/seditio-createnew-160.sql, (2) docs/upgrade/sedito_convert_to_utf8.optional.sql… CWE-200
Information Exposure 		CVE-2012-5916 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293962 - neocrome seditio Neocrome Seditio build 161 and earlier allows remote attackers to obtain sensitive information via direct request to (1) view.php, (2) plugins/contact/lang/contact.en.lang.php, (3) system/lang/en/mai… CWE-200
Information Exposure 		CVE-2012-5915 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293963 - neocrome seditio Multiple cross-site scripting (XSS) vulnerabilities in the sed_import function in system/functions.php in Neocrome Seditio build 160 and 161 allow remote attackers to inject arbitrary web script or H… CWE-79
Cross-site Scripting 		CVE-2012-5914 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293964 - wordpress_integrator_project wordpress_integrator Cross-site scripting (XSS) vulnerability in wp-integrator.php in the WordPress Integrator module 1.32 for WordPress allows remote attackers to inject arbitrary web script or HTML via the redirect_to … CWE-79
Cross-site Scripting 		CVE-2012-5913 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293965 - pico picopublisher Multiple SQL injection vulnerabilities in PicoPublisher 2.0 allow remote attackers to execute arbitrary SQL commands via the id parameter to (1) page.php or (2) single.php. CWE-89
SQL Injection 		CVE-2012-5912 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293966 - b2evolution b2evolution Cross-site scripting (XSS) vulnerability in blogs/blog1.php in b2evolution 4.1.3 allows remote attackers to inject arbitrary web script or HTML via the message body. CWE-79
Cross-site Scripting 		CVE-2012-5911 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293967 - b2evolution b2evolution SQL injection vulnerability in blogs/htsrv/viewfile.php in b2evolution 4.1.3 allows remote authenticated users to execute arbitrary SQL commands via the root parameter. CWE-89
SQL Injection 		CVE-2012-5910 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293968 - mybb mybb SQL injection vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to execute arbitrary SQL commands via the conditions[usergroup][] parameter in … CWE-89
SQL Injection 		CVE-2012-5909 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293969 - mybb mybb Cross-site scripting (XSS) vulnerability in admin/modules/user/users.php in MyBB (aka MyBulletinBoard) 1.6.6 allows remote attackers to inject arbitrary web script or HTML via the conditions[usergrou… CWE-79
Cross-site Scripting 		CVE-2012-5908 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm
293970 - tomatocart tomatocart Directory traversal vulnerability in json.php in TomatoCart 1.2.0 Alpha 2 and possibly earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the module parameter in a "3" acti… CWE-22
Path Traversal 		CVE-2012-5907 2024-11-21 10:45 2012-11-18 Show GitHub Exploit DB Packet Storm