Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231011	7.5	危険	IceWarp, Inc.	-	IceWarp の Merak Mail Server におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1516	2012-09-25 17:27	2009-05-4	Show	GitHub Exploit DB Packet Storm

231012	6.8	警告	Konstanty Bialkowski	-	libmodplug の src/load_pat.cpp の PATinst 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1513	2012-09-25 17:27	2009-05-4	Show	GitHub Exploit DB Packet Storm

231013	6.5	警告	keir davis	-	X-Forum における Config.php に任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1512	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231014	7.8	危険	マイクロソフト	-	Microsoft Windows XP SP3 の GDI+ におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1511	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231015	7.5	危険	koschtit	-	KoschtIT Image Gallery におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1510	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231016	7.5	危険	myiosoft	-	MyioSoft AjaxPortal の ajaxp_backend.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1509	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231017	7.5	危険	keir davis	-	X-Forum の xforum_validateUser 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1508	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231018	6.8	警告	Intelliants	-	eLitius の classes/Xp.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1506	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231019	7.5	危険	matteoiammarrone	-	S-Cms の plugin.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1502	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

231020	7.5	危険	Joomla!	-	Joomla! 用の MailTo コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1499	2012-09-25 17:27	2009-05-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284791	-	jfree	jfreechart	Multiple cross-site scripting (XSS) vulnerabilities in the image map feature in JFreeChart 1.0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) chart name or (2) chart tool…	CWE-79 Cross-site Scripting	CVE-2007-6306	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284792	-	jfree	jfreechart	Multiple cross-site scripting (XSS) vulnerabilities in clickstats.php in wwwstats 3.21 allow remote attackers to inject arbitrary web script or HTML via (1) the link parameter or (2) the User-Agent H…	CWE-79 Cross-site Scripting	CVE-2007-6307	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284793	-	webspell	webspell	Multiple cross-site scripting (XSS) vulnerabilities in index.php in webSPELL 4.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the galleryID parameter in a usergallery uploa…	CWE-79 Cross-site Scripting	CVE-2007-6309	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284794	-	falt4_cms	falt4_extreme_rc4	Multiple cross-site scripting (XSS) vulnerabilities in Falt4Extreme RC4 10.9.2007 allow remote attackers to inject arbitrary web script or HTML via the handler parameter to (1) index.php and possibly…	CWE-79 Cross-site Scripting	CVE-2007-6310	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284795	-	falt4_cms	falt4_extreme_rc4	SQL injection vulnerability in (1) index.php, and possibly (2) admin/index.php, in Falt4Extreme RC4 10.9.2007 allows remote attackers to execute arbitrary SQL commands via the nav_ID parameter.	CWE-89 SQL Injection	CVE-2007-6311	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284796	-	websense	enterpise reporting_tools web_security_suite	Cross-site scripting (XSS) vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HT…	CWE-79 Cross-site Scripting	CVE-2007-6312	2018-10-16 06:51	2007-12-12	Show	GitHub Exploit DB Packet Storm

284797	-	wireshark	wireshark	Multiple buffer overflows in Wireshark (formerly Ethereal) 0.99.0 through 0.99.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via (1) the SSL dissec…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-6114	2018-10-16 06:50	2007-11-24	Show	GitHub Exploit DB Packet Storm

284798	-	wireshark	wireshark	Buffer overflow in the ANSI MAP dissector for Wireshark (formerly Ethereal) 0.99.5 to 0.99.6, when running on unspecified platforms, allows remote attackers to cause a denial of service and possibly …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-6115	2018-10-16 06:50	2007-11-24	Show	GitHub Exploit DB Packet Storm

284799	-	wireshark	wireshark	The Firebird/Interbase dissector in Wireshark (formerly Ethereal) 0.99.6 allows remote attackers to cause a denial of service (infinite loop or crash) via unknown vectors.	NVD-CWE-noinfo	CVE-2007-6116	2018-10-16 06:50	2007-11-24	Show	GitHub Exploit DB Packet Storm

284800	-	wireshark	wireshark	Unspecified vulnerability in the HTTP dissector for Wireshark (formerly Ethereal) 0.10.14 to 0.99.6 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code vi…	NVD-CWE-noinfo	CVE-2007-6117	2018-10-16 06:50	2007-11-24	Show	GitHub Exploit DB Packet Storm