Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231821	10	危険	Zabbix	-	ZABBIX におけるバッファオーバーフローの脆弱性	-	CVE-2007-0640	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231822	5	警告	vlad alexa mancini	-	Vlad Alexa Mancini PHPFootball の show.php における重要な情報を取得される脆弱性	-	CVE-2007-0638	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231823	7.5	危険	t-systems solutions for research gmbh	-	MyNews の include/themes/themefunc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-0633	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231824	7.5	危険	x-dev	-	X-dev xNews の classes/class.news.php における SQL インジェクションの脆弱性	-	CVE-2007-0630	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231825	6.4	警告	plain black	-	Plain Black WebGUI の www_purgeList メソッドにおける許可されていないアセットを削除される脆弱性	-	CVE-2007-0629	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231826	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Access Manager におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0628	2012-12-20 18:19	2007-01-29	Show	GitHub Exploit DB Packet Storm

231827	5	警告	vlad leont	-	FD Script の download.php における特定の拡張子を伴う Web 文書ルート配下のファイルのソースを読み取られる脆弱性	-	CVE-2007-0620	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231828	7.8	危険	Zenphoto	-	zenphoto の zen/template-functions.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0616	2012-12-20 18:19	2007-01-31	Show	GitHub Exploit DB Packet Storm

231829	4.3	警告	W-Agora	-	Web-Agora におけるアプリケーションのパス情報を取得される脆弱性	-	CVE-2007-0607	2012-12-20 18:19	2007-03-20	Show	GitHub Exploit DB Packet Storm

231830	5	警告	W-Agora	-	w-agora における重要な情報を取得される脆弱性	-	CVE-2007-0606	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294021	-	akunamachata oscommerce	paypal_express_module oscommerce	The PayPal Express module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows…	CWE-20 Improper Input Validation	CVE-2012-5795	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294022	-	moneybookers oscommerce	moneybookers oscommerce	The MoneyBookers module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows m…	CWE-20 Improper Input Validation	CVE-2012-5794	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294023	-	oscommerce harald_ponce_de_leon	oscommerce authorize.net	The Authorize.Net module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows …	CWE-20 Improper Input Validation	CVE-2012-5793	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294024	-	oscommerce sagepay	oscommerce sage_pay_direct_module	The Sage Pay Direct module in osCommerce does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allow…	CWE-20 Improper Input Validation	CVE-2012-5792	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294025	-	paypal	invoicing	PayPal Invoicing does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middle atta…	CWE-20 Improper Input Validation	CVE-2012-5791	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294026	-	paypal	payments_standard	PayPal Payments Standard PHP Library 20120427 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which …	CWE-20 Improper Input Validation	CVE-2012-5790	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294027	-	paypal	payments_standard	PayPal Payments Standard PHP Library before 20120427 does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate,…	CWE-20 Improper Input Validation	CVE-2012-5789	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294028	-	paypal	ipn	The PayPal IPN utility does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-middl…	CWE-20 Improper Input Validation	CVE-2012-5788	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294029	-	paypal	merchant_sdk	The PayPal merchant SDK does not verify that the server hostname matches a domain name in the subject's Common Name (CN) or subjectAltName field of the X.509 certificate, which allows man-in-the-midd…	CWE-20 Improper Input Validation	CVE-2012-5787	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm

294030	-	apache	cxf	The wsdl_first_https sample code in distribution/src/main/release/samples/wsdl_first_https/src/main/ in Apache CXF before 2.7.0 does not verify that the server hostname matches a domain name in the s…	CWE-20 Improper Input Validation	CVE-2012-5786	2024-11-21 10:45	2012-11-5	Show	GitHub Exploit DB Packet Storm