Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231401	7.5	危険	Jan Bednarik	-	TYPO3 用の cooluri 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6686	2012-09-25 17:27	2009-04-10	Show	GitHub Exploit DB Packet Storm

231402	7.5	危険	marc melvin	-	A+ PHP Scripts NMS における管理者の権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-6667	2012-09-25 17:27	2009-04-8	Show	GitHub Exploit DB Packet Storm

231403	4.3	警告	kronos	-	Kronos webTA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6666	2012-09-25 17:27	2009-04-8	Show	GitHub Exploit DB Packet Storm

231404	6.8	警告	ozerov	-	Alexey Ozerov BigDump の bigdump.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2008-6660	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231405	7.5	危険	openautoclassifieds	-	Open Auto Classifieds における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6656	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231406	7.5	危険	InsaneVisions	-	OneCMS の asd.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6652	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231407	10	危険	oxyproject	-	OxYProject OxYBox の edithistory.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6651	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231408	5	警告	mywebland	-	miniBloggie の del.php における任意の投稿を削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6650	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231409	7.5	危険	Ktools.net LLC.	-	Ktools PhotoStore の manager/image_details_editor.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6649	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

231410	7.5	危険	Ktools.net LLC.	-	Ktools PhotoStore の crumbs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6648	2012-09-25 17:27	2009-04-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
300081	-	asp_indir	dora_emlak	SQL injection vulnerability in default.asp in Dora Emlak 1.0, when the goster parameter is set to emlakdetay, allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: th…	NVD-CWE-Other	CVE-2007-3990	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300082	-	kerio	kerio_mailserver	Unspecified vulnerability in the attachment filter in Kerio MailServer before 6.4.1 has unknown impact and remote attack vectors.	NVD-CWE-Other	CVE-2007-3993	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300083	-	kerio	kerio_mailserver	http://www.frsirt.com/english/advisories/2007/2637	NVD-CWE-Other	CVE-2007-3993	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300084	-	kerio	kerio_mailserver	Vendor has released an upgrade to fix vulnerability: http://www.kerio.com/kms_download.html	NVD-CWE-Other	CVE-2007-3993	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300085	-	ibm	aix	pioout in IBM AIX 5.3 SP6 allows local users to execute arbitrary code by specifying a malicious library with the -R (ParseRoutine) command line argument.	NVD-CWE-Other	CVE-2007-4003	2017-07-29 10:32	2007-07-27	Show	GitHub Exploit DB Packet Storm

300086	-	ibm	aix	Buffer overflow in the ftp client in IBM AIX 5.3 SP6 and 5.2.0 allows local users to execute arbitrary code via unspecified vectors that trigger the overflow in a gets function call. NOTE: the clien…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4004	2017-07-29 10:32	2007-07-27	Show	GitHub Exploit DB Packet Storm

300087	-	wordpress	blix blixed blixkrieg	Cross-site scripting (XSS) vulnerability in a certain index.php installation script related to the (1) Blix 0.9.1, (2) Blixed 1.0, and (3) BlixKrieg (Blix Krieg) 2.2 themes for WordPress allows remot…	NVD-CWE-Other	CVE-2007-4014	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300088	-	citrix	access_gateway	Cross-site request forgery (CSRF) vulnerability in the web-based administration console in Citrix Access Gateway before firmware 4.5.5 allows remote attackers to perform certain configuration changes…	NVD-CWE-Other	CVE-2007-4017	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300089	-	citrix	access_gateway	Citrix Access Gateway is offered both as software or hardware.	NVD-CWE-Other	CVE-2007-4017	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm

300090	-	citrix	access_gateway	Citrix Access Gateway Advanced Edition before firmware 4.5.5 allows attackers to redirect users to arbitrary web sites and conduct phishing attacks via unknown vectors.	NVD-CWE-Other	CVE-2007-4018	2017-07-29 10:32	2007-07-26	Show	GitHub Exploit DB Packet Storm