Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231681	6.8	警告	Little CMS	-	CMS little の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5628	2012-09-25 17:17	2008-12-17	Show	GitHub Exploit DB Packet Storm

231682	10	危険	MPlayer project	-	MPlayer の libmpdemux/demux_vqf.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-5616	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231683	7.5	危険	joomitaly	-	Joomla! 用の jmovies コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5607	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231684	5	警告	natterchat	-	Natterchat におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5602	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231685	5	警告	merlix	-	Merlix Teamworx Server におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5600	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231686	7.5	危険	merlix	-	Merlix Teamworx Server の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5599	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231687	5	警告	iwrite	-	Nightfall Personal Diary におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5592	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231688	4.3	警告	iwrite	-	Nightfall Personal Diary の login.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5591	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231689	7.5	危険	kalptaru infotech	-	Kalptaru Infotech Product Sales Framework における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5590	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

231690	7.5	危険	katywhitton	-	Katy Whitton RankEm の processlogin.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5589	2012-09-25 17:17	2008-12-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299621	-	cisco	content_switching_module_with_ssl content_switching_modules	Cisco Content Switching Modules (CSM) 4.2 before 4.2.7, and Cisco Content Switching Module with SSL (CSM-S) 2.1 before 2.1.6, when service termination is enabled, allow remote attackers to cause a de…	CWE-16 Configuration	CVE-2007-4789	2017-07-29 10:33	2007-09-11	Show	GitHub Exploit DB Packet Storm

299622	-	ibm	aix	Buffer overflow in ibstat in devices.common.IBM.ib.rte in IBM AIX 5.3 allows local users to gain privileges via unspecified vectors.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4792	2017-07-29 10:33	2007-09-11	Show	GitHub Exploit DB Packet Storm

299623	-	ibm	aix	Buffer overflow in fcstat in devices.common.IBM.fc.rte in IBM AIX 5.2 and 5.3 allows local users to gain privileges via a long input parameter.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-4794	2017-07-29 10:33	2007-09-11	Show	GitHub Exploit DB Packet Storm

299624	-	ibm	aix	Unspecified vulnerability in invscout in Inventory Scout in invscout.rte in IBM AIX 5.2 and 5.3 allows local users to delete system files that have names matching the final substring of a hostname al…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-4798	2017-07-29 10:33	2007-09-11	Show	GitHub Exploit DB Packet Storm

299625	-	quagga	quagga	bgpd in Quagga before 0.99.9 allows explicitly configured BGP peers to cause a denial of service (crash) via a malformed (1) OPEN message or (2) a COMMUNITY attribute, which triggers a NULL pointer d…	NVD-CWE-noinfo	CVE-2007-4826	2017-07-29 10:33	2007-09-12	Show	GitHub Exploit DB Packet Storm

299626	-	mediawiki	mediawiki	Cross-site scripting (XSS) vulnerability in the API pretty-printing mode in MediaWiki 1.8.0 through 1.8.4, 1.9.0 through 1.9.3, 1.10.0 through 1.10.1, and the 1.11 development versions before 1.11.0 …	CWE-79 Cross-site Scripting	CVE-2007-4828	2017-07-29 10:33	2007-09-13	Show	GitHub Exploit DB Packet Storm

299627	-	directadmin	directadmin	Cross-site scripting (XSS) vulnerability in CMD_BANDWIDTH_BREAKDOWN in DirectAdmin 1.30.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter.	CWE-79 Cross-site Scripting	CVE-2007-4830	2017-07-29 10:33	2007-09-13	Show	GitHub Exploit DB Packet Storm

299628	-	torrenttrader	torrenttrader	Multiple cross-site scripting (XSS) vulnerabilities in account_settings.php in TorrentTrader 1.07 allow remote attackers to inject arbitrary web script or HTML via the (1) avatar and (2) title parame…	CWE-79 Cross-site Scripting	CVE-2007-4831	2017-07-29 10:33	2007-09-13	Show	GitHub Exploit DB Packet Storm

299629	-	immersion_games	cellfactor_revolution	Format string vulnerability in CellFactor Revolution 1.03 and earlier allows remote attackers to execute arbitrary code via format string specifiers in a malformed nickname.	CWE-134 Use of Externally-Controlled Format String	CVE-2007-4832	2017-07-29 10:33	2007-09-13	Show	GitHub Exploit DB Packet Storm

299630	-	ibm	websphere_application_server	Unspecified vulnerability in the Edge Component in IBM WebSphere Application Server (WAS) 6.1 before Fix Pack 11 (6.1.0.11) has unknown impact and attack vectors, aka PK44789.	NVD-CWE-noinfo	CVE-2007-4833	2017-07-29 10:33	2007-09-13	Show	GitHub Exploit DB Packet Storm