Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231951	4.3	警告	シックス・アパート株式会社	-	MT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3342	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231952	7.5	危険	phpecho cms	-	PHPEcho CMS の管理パネルにおける SQL インジェクションの脆弱性	-	CVE-2007-3335	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231953	5	警告	PHPNUKE	-	PHP-Nuke 用の Satel Lite におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3332	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231954	5	警告	stphp	-	STphp EasyNews におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3331	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231955	4.3	警告	stphp	-	STphp EasyNews におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3330	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231956	6.8	警告	xvid	-	Xvid の src/bitstream/mbcoding.c における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2007-3329	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

231957	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player のプラグインにおけるフォーマットストリングの脆弱性	-	CVE-2007-3316	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

231958	6.8	警告	yourfreescreamer	-	YourFreeScreamer における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3315	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231959	7.5	危険	XOOPS	-	Xoops 用の Articles モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3311	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

231960	4.3	警告	tdizin	-	TDizin の arama.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3310	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294591	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud before 4.0.15, 4.5.x before 4.5.11, and 5.0.x before 5.0.6 allow remote authenticated users to inject arbitrary web script or HTML via …	CWE-79 Cross-site Scripting	CVE-2013-2040	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294592	-	owncloud	owncloud	Directory traversal vulnerability in lib/files/view.php in ownCloud before 4.0.15, 4.5.x 4.5.11, and 5.x before 5.0.6 allows remote authenticated users to access arbitrary files via unspecified vecto…	CWE-22 Path Traversal	CVE-2013-2039	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294593	-	owncloud	owncloud	The contacts application in ownCloud before 4.5.10 and 5.x before 5.0.5 does not properly check the ownership of contacts, which allows remote authenticated users to download arbitrary contacts via u…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-1963	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294594	-	fruux owncloud	sabredav owncloud	The HTML\Browser plugin in SabreDAV before 1.6.9, 1.7.x before 1.7.7, and 1.8.x before 1.8.5, as used in ownCloud, when running on Windows, does not properly check path separators in the base path, w…	CWE-20 Improper Input Validation	CVE-2013-1939	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294595	-	owncloud	owncloud	Incomplete blacklist vulnerability in lib/migrate.php in ownCloud before 4.0.13 and 4.5.x before 4.5.8, when the user_migrate application is enabled, allows remote authenticated users to import arbit…	NVD-CWE-Other	CVE-2013-1851	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294596	-	owncloud	owncloud	Multiple incomplete blacklist vulnerabilities in (1) import.php and (2) ajax/uploadimport.php in apps/contacts/ in ownCloud before 4.0.13 and 4.5.x before 4.5.8 allow remote authenticated users to ex…	CWE-94 Code Injection	CVE-2013-1850	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294597	-	owncloud	owncloud	Multiple cross-site scripting (XSS) vulnerabilities in ownCloud 4.5.x before 4.5.8 allow remote authenticated users with administrator privileges to inject arbitrary web script or HTML via the (1) qu…	CWE-79 Cross-site Scripting	CVE-2013-1822	2024-11-21 10:50	2014-03-15	Show	GitHub Exploit DB Packet Storm

294598	-	opensource_technologies	responsive_logo_slideshow	Cross-site scripting (XSS) vulnerability in the Responsive Logo Slideshow plugin for WordPress allows remote attackers to inject arbitrary web script or HTML via the "URL and Image" field.	CWE-79 Cross-site Scripting	CVE-2013-1759	2024-11-21 10:50	2014-03-14	Show	GitHub Exploit DB Packet Storm

294599	-	marekkis	watermark	Cross-site scripting (XSS) vulnerability in the Marekkis Watermark plugin 0.9.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the pfad parameter to wp-admin/options…	CWE-79 Cross-site Scripting	CVE-2013-1758	2024-11-21 10:50	2014-03-14	Show	GitHub Exploit DB Packet Storm

294600	-	blair_williams joobi civicrm	pretty_link_lite com_jnews civicrm	Cross-site scripting (XSS) vulnerability in open-flash-chart.swf in Open Flash Chart (aka Open-Flash Chart), as used in the Pretty Link Lite plugin before 1.6.3 for WordPress, JNews (com_jnews) compo…	CWE-79 Cross-site Scripting	CVE-2013-1636	2024-11-21 10:50	2014-03-12	Show	GitHub Exploit DB Packet Storm