Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231461	7.5	危険	Kurt Gusbeth	-	TYPO3 の myquizpoll エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6462	2012-09-25 17:27	2009-03-13	Show	GitHub Exploit DB Packet Storm

231462	7.5	危険	mirko werner	-	TYPO3 用の Simple Random Objects エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6460	2012-09-25 17:27	2009-03-13	Show	GitHub Exploit DB Packet Storm

231463	7.5	危険	martin helmich	-	TYPO3 用の HBook エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6456	2012-09-25 17:27	2009-03-13	Show	GitHub Exploit DB Packet Storm

231464	7.5	危険	oceandir	-	Oceandir の show_vote.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6452	2012-09-25 17:27	2009-03-13	Show	GitHub Exploit DB Packet Storm

231465	7.5	危険	jportal	-	jPORTAL の humor.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6451	2012-09-25 17:27	2009-03-13	Show	GitHub Exploit DB Packet Storm

231466	4.3	警告	lukas waldauf	-	PHPFreeForum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6437	2012-09-25 17:27	2009-03-6	Show	GitHub Exploit DB Packet Storm

231467	4.3	警告	kayalang	-	Kaya の CGI framework におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6428	2012-09-25 17:27	2009-03-6	Show	GitHub Exploit DB Packet Storm

231468	7.5	危険	mike leeper	-	Joomla! 用の prayercenter コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6429	2012-09-25 17:27	2007-03-18	Show	GitHub Exploit DB Packet Storm

231469	6.8	警告	hivemaker	-	Hivemaker の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6427	2012-09-25 17:27	2009-03-6	Show	GitHub Exploit DB Packet Storm

231470	8.8	危険	jun sota	-	FFFTP におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6424	2012-09-25 17:27	2009-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299451	-	linux	linux_kernel	The Linux kernel 2.6.13 and other versions before 2.6.20.1 allows remote attackers to cause a denial of service (oops) via a crafted NFSACL 2 ACCESS request that triggers a free of an incorrect point…	CWE-399 Resource Management Errors	CVE-2007-0772	2017-07-29 10:30	2007-02-21	Show	GitHub Exploit DB Packet Storm

299452	-	simple_invoices	simple_invoices	PHP remote file inclusion vulnerability in controller.php in Simple Invoices before 20070202 allows remote attackers to execute arbitrary PHP code via a URL in the (1) module or (2) view parameter. …	NVD-CWE-Other	CVE-2007-0787	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

299453	-	simple_invoices	simple_invoices	Successful exploitation requires that "register_globals" is enabled and "magic_quotes_gpc" is disabled.	NVD-CWE-Other	CVE-2007-0787	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

299454	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in MediaWiki 1.9.x before 1.9.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to "sortable tables JavaScript."	NVD-CWE-Other	CVE-2007-0788	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

299455	-	bluecoat	winproxy	Blue Coat Systems WinProxy 6.1a and 6.0 r1c, and possibly earlier, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long HTTP CONNECT reque…	NVD-CWE-Other	CVE-2007-0796	2017-07-29 10:30	2007-02-7	Show	GitHub Exploit DB Packet Storm

299456	-	hp	network_node_manager	HP Network Node Manager (NNM) Remote Console 7.50, 7.51, and 7.53 assigns Everyone Full Control permission for the %PROGRAMFILES%\HP OpenView directory tree, which allows local users to gain privileg…	NVD-CWE-Other	CVE-2007-0819	2017-07-29 10:30	2007-02-9	Show	GitHub Exploit DB Packet Storm

299457	-	cedric	claire_portailphp	Multiple PHP remote file inclusion vulnerabilities in Cedric CLAIRE PortailPhp 2 allow remote attackers to execute arbitrary PHP code via a URL in the chemin parameter to (1) mod_news/index.php, (2) …	NVD-CWE-Other	CVE-2007-0820	2017-07-29 10:30	2007-02-8	Show	GitHub Exploit DB Packet Storm

299458	-	alwil	avast_antivirus	avast! Server Edition before 4.7.726 does not demand a password in a certain intended context, even when a password has been set, which allows local users to bypass authentication requirements.	NVD-CWE-Other	CVE-2007-0829	2017-07-29 10:30	2007-02-8	Show	GitHub Exploit DB Packet Storm

299459	-	darrens_5-dollar_script_archive	flashchat	Cross-site scripting (XSS) vulnerability in FlashChat 4.7.8 allows remote attackers to inject arbitrary web script or HTML via the user name field when the user joins a chat room, a different vulnera…	NVD-CWE-Other	CVE-2007-0834	2017-07-29 10:30	2007-02-8	Show	GitHub Exploit DB Packet Storm

299460	-	coppermine	coppermine_photo_gallery	admin.php in Coppermine Photo Gallery 1.4.10, and possibly earlier, allows remote authenticated users to execute arbitrary shell commands via shell metacharacters (";" semicolon) in the "Command line…	NVD-CWE-Other	CVE-2007-0835	2017-07-29 10:30	2007-02-8	Show	GitHub Exploit DB Packet Storm