Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230881	5	警告	pc4arb	-	Pc4 Uploader の upfiles/index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2180	2012-09-25 17:27	2009-06-23	Show	GitHub Exploit DB Packet Storm

230882	4.3	警告	henning makholm	-	xcftools の flattenIncrementally 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-2175	2012-09-25 17:27	2009-06-23	Show	GitHub Exploit DB Packet Storm

230883	5	警告	gupnp	-	GUPnP におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2009-2174	2012-09-25 17:27	2009-06-23	Show	GitHub Exploit DB Packet Storm

230884	4	警告	Mahara	-	Mahara における他のユーザのアーティファクトを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-2171	2012-09-25 17:27	2009-06-21	Show	GitHub Exploit DB Packet Storm

230885	4.3	警告	Mahara	-	Mahara におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2170	2012-09-25 17:27	2009-06-21	Show	GitHub Exploit DB Packet Storm

230886	5	警告	OCS Inventory Team	-	OCS Inventory NG の cvs.php における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-2166	2012-09-25 17:27	2009-06-22	Show	GitHub Exploit DB Packet Storm

230887	6.8	警告	kjtechforce	-	Kjtechforce mailman における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2164	2012-09-25 17:27	2009-06-22	Show	GitHub Exploit DB Packet Storm

230888	7.5	危険	isabela gasparini	-	AdaptWeb の a_index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2152	2012-09-25 17:27	2009-06-22	Show	GitHub Exploit DB Packet Storm

230889	4.3	警告	pantha	-	transLucid におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2145	2012-09-25 17:27	2009-06-22	Show	GitHub Exploit DB Packet Storm

230890	7.5	危険	paolo palmonari	-	WordPress 用の Paolo Palmonari Photoracer プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2122	2012-09-25 17:27	2009-06-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285131	-	online_armor	personal_firewall	Online Armor Personal Firewall 2.0.1.215 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of servi…	CWE-264 CWE-20 Permissions, Privileges, and Access Controls Improper Input Validation	CVE-2007-4967	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285132	-	privacyware	privatefirewall	Privatefirewall 5.0.14.2 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and p…	CWE-20 Improper Input Validation	CVE-2007-4968	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285133	-	sysinternals	process_monitor	Process Monitor 1.22 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possi…	CWE-20 Improper Input Validation	CVE-2007-4969	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285134	-	diamondcs	processguard	ProcessGuard 3.410 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibl…	CWE-20 Improper Input Validation	CVE-2007-4970	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285135	-	isecsoft	prosecurity	ProSecurity 1.40 Beta 2 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and po…	CWE-20 Improper Input Validation	CVE-2007-4971	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285136	-	sysinternals	regmon	RegMon 7.04 does not properly validate certain parameters to System Service Descriptor Table (SSDT) function handlers, which allows local users to cause a denial of service (crash) and possibly gain …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-4972	2018-10-16 06:39	2007-09-19	Show	GitHub Exploit DB Packet Storm

285137	-	b1g	b1gmail	Cross-site scripting (XSS) vulnerability in hilfe.php in b1gMail 6.3.1 allows remote attackers to inject arbitrary web script or HTML via the chapter parameter.	CWE-79 Cross-site Scripting	CVE-2007-4975	2018-10-16 06:39	2007-09-20	Show	GitHub Exploit DB Packet Storm

285138	-	coppermine	coppermine_photo_gallery	Directory traversal vulnerability in viewlog.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote authenticated administrators to include and execute arbitrary local files via a .. …	CWE-22 Path Traversal	CVE-2007-4976	2018-10-16 06:39	2007-09-20	Show	GitHub Exploit DB Packet Storm

285139	-	coppermine	coppermine_photo_gallery	Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the referer parameter.	CWE-79 Cross-site Scripting	CVE-2007-4977	2018-10-16 06:39	2007-09-20	Show	GitHub Exploit DB Packet Storm

285140	-	gcaldaemon	gcaldaemon	The readRequest method in org/gcaldaemon/core/http/HTTPListener.java in GCALDaemon 1.0-beta13 allows remote attackers to cause a denial of service via a large integer value in the Content-Length HTTP…	CWE-189 Numeric Errors	CVE-2007-4980	2018-10-16 06:39	2007-09-20	Show	GitHub Exploit DB Packet Storm