Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231491	7.5	危険	joomlaapps	-	Joomla! 用の Volunteer Management System における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6337	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231492	6.8	警告	matthew general	-	RSSSN の news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6333	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231493	6.5	警告	jaia interactive	-	MyTopix の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6330	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231494	7.5	危険	manzovi	-	ProQuiz の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6327	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231495	6.8	警告	phpaddedit	-	phpAddEdit の addedit-render.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6313	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231496	7.5	危険	manzovi	-	ProQuiz の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6312	2012-09-25 17:27	2009-02-27	Show	GitHub Exploit DB Packet Storm

231497	7.5	危険	gwm	-	Galatolo WebManager における管理者権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-6300	2012-09-25 17:27	2009-02-26	Show	GitHub Exploit DB Packet Storm

231498	7.5	危険	maran	-	Maran PHP Shop の admin.php における管理者アクセス権を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6296	2012-09-25 17:27	2009-02-26	Show	GitHub Exploit DB Packet Storm

231499	6.8	警告	niclor	-	nicLOR Sito の includefile.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6290	2012-09-25 17:27	2009-02-26	Show	GitHub Exploit DB Packet Storm

231500	7.8	危険	interface-medien	-	Interface Medien ibase の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6288	2012-09-25 17:27	2009-02-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299551	-	pecl_zip php	1.8.3 php	Stack-based buffer overflow in the zip:// URL wrapper in PECL ZIP 1.8.3 and earlier, as bundled with PHP 5.2.0 and 5.2.1, allows remote attackers to execute arbitrary code via a long zip:// URL, as d…	NVD-CWE-Other	CVE-2007-1399	2017-07-29 10:30	2007-03-11	Show	GitHub Exploit DB Packet Storm

299552	-	edgewall_software	trac	Cross-site scripting (XSS) vulnerability in the "download wiki page as text" feature in Trac before 0.10.3.1, when Microsoft Internet Explorer is used, allows remote attackers to inject arbitrary web…	NVD-CWE-Other	CVE-2007-1405	2017-07-29 10:30	2007-03-11	Show	GitHub Exploit DB Packet Storm

299553	-	mindtouch	dekiwiki	Cross-site scripting (XSS) vulnerability in skins/ace/popup-notopic.php in MindTouch OpenGarden DekiWiki before Gooseberry++ allows remote attackers to inject arbitrary web script or HTML via the mes…	NVD-CWE-Other	CVE-2007-1418	2017-07-29 10:30	2007-03-13	Show	GitHub Exploit DB Packet Storm

299554	-	dproxy	dproxy	Stack-based buffer overflow in dproxy.c for dproxy 0.1 through 0.5 allows remote attackers to execute arbitrary code via a long DNS query packet to UDP port 53.	NVD-CWE-Other	CVE-2007-1465	2017-07-29 10:30	2007-03-25	Show	GitHub Exploit DB Packet Storm

299555	-	horde	horde_application_framework imp	Argument injection vulnerability in the cleanup cron script in Horde Project Horde and IMP before Horde Application Framework 3.1.4 allows local users to delete arbitrary files and possibly gain priv…	NVD-CWE-Other	CVE-2007-1474	2017-07-29 10:30	2007-03-17	Show	GitHub Exploit DB Packet Storm

299556	-	sun	java_system_web_server	Unspecified vulnerability in Sun Java System Web Server 6.0 and 6.1 before 20070315 allows remote attackers to "gain unauthorized access to data", possibly involving a sample application.	NVD-CWE-noinfo	CVE-2007-1488	2017-07-29 10:30	2007-03-17	Show	GitHub Exploit DB Packet Storm

299557	-	gentoo	linux	The Linux Security Auditing Tool (LSAT) allows local users to overwrite arbitrary files via a symlink attack on temporary files, as demonstrated using /tmp/lsat1.lsat.	NVD-CWE-Other	CVE-2007-1500	2017-07-29 10:30	2007-03-20	Show	GitHub Exploit DB Packet Storm

299558	-	openafs	openafs	The default configuration in OpenAFS 1.4.x before 1.4.4 and 1.5.x before 1.5.17 supports setuid programs within the local cell, which might allow attackers to gain privileges by spoofing a response t…	CWE-16 Configuration	CVE-2007-1507	2017-07-29 10:30	2007-03-20	Show	GitHub Exploit DB Packet Storm

299559	-	cisco	7940_router 7960_router	Unspecified vulnerability in the Cisco IP Phone 7940 and 7960 running firmware before POS8-6-0 allows remote attackers to cause a denial of service via the Remote-Party-ID sipURI field in a SIP INVIT…	NVD-CWE-Other	CVE-2007-1542	2017-07-29 10:30	2007-03-21	Show	GitHub Exploit DB Packet Storm

299560	-	roxio	cineplayer	Multiple stack-based buffer overflows in SonicDVDDashVRNav.dll in Roxio CinePlayer 3.2 allow remote attackers to execute arbitrary code via (1) unspecified long property values to SonicMediaPlayer.dl…	NVD-CWE-Other	CVE-2007-1559	2017-07-29 10:30	2007-04-12	Show	GitHub Exploit DB Packet Storm