Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232511	6.8	警告	picoflat cms	-	PicoFlat CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5390	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

232512	6.8	警告	webdesktop	-	WebDesktop における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5388	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

232513	6.8	警告	pindorama	-	Pindorama の active/components/xmlrpc/client.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5387	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

232514	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5386	2012-12-20 18:33	2007-10-12	Show	GitHub Exploit DB Packet Storm

232515	2.6	注意	サン・マイクロシステムズ	-	Sun JVM におけるマルチピン DNS リバインド攻撃を実行される脆弱性	CWE-16 CWE-20	CVE-2007-5375	2012-12-20 18:33	2007-10-11	Show	GitHub Exploit DB Packet Storm

232516	6.8	警告	verlihub-project	-	VHCP の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 CWE-94	CVE-2007-5321	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

232517	5	警告	typolight	-	TYPOlight webCMS の preview.php における任意のファイルをダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2007-5318	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

232518	5	警告	SoftbizScripts	-	Softbiz Jobs and Recruitment Script の browsecats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5316	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

232519	6.8	警告	softpedia	-	Softonic International SciTE における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5315	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

232520	6.8	警告	xkiosk	-	xKiosk WEB の system/funcs/xkurl.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5314	2012-12-20 18:33	2007-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292541	-	pidgin	pidgin	Integer overflow in libpurple/protocols/gg/lib/http.c in the Gadu-Gadu (gg) parser in Pidgin before 2.10.8 allows remote attackers to have an unspecified impact via a large Content-Length value, whic…	CWE-189 Numeric Errors	CVE-2013-6487	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292542	-	pidgin	pidgin	Pidgin before 2.10.8 allows remote MSN servers to cause a denial of service (NULL pointer dereference and crash) via a crafted (1) SOAP response, (2) OIM XML response, or (3) Content-Length header.	CWE-20 Improper Input Validation	CVE-2013-6482	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292543	-	pidgin	pidgin	libpurple/protocols/yahoo/libymsg.c in Pidgin before 2.10.8 allows remote attackers to cause a denial of service (crash) via a Yahoo! P2P message with a crafted length field, which triggers a buffer …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6481	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292544	-	pidgin	pidgin	gtkutils.c in Pidgin before 2.10.8 on Windows allows user-assisted remote attackers to execute arbitrary programs via a message containing a file: URL that is improperly handled during construction o…	CWE-20 Improper Input Validation	CVE-2013-6486	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292545	-	pidgin	pidgin	Buffer overflow in util.c in libpurple in Pidgin before 2.10.8 allows remote HTTP servers to cause a denial of service (application crash) or possibly have unspecified other impact via an invalid chu…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-6485	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292546	-	pidgin	pidgin	The STUN protocol implementation in libpurple in Pidgin before 2.10.8 allows remote STUN servers to cause a denial of service (out-of-bounds write operation and application crash) by triggering a soc…	CWE-20 Improper Input Validation	CVE-2013-6484	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292547	-	pidgin	pidgin	The XMPP protocol plugin in libpurple in Pidgin before 2.10.8 does not properly determine whether the from address in an iq reply is consistent with the to address in an iq request, which allows remo…	CWE-20 Improper Input Validation	CVE-2013-6483	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292548	-	pidgin	pidgin	util.c in libpurple in Pidgin before 2.10.8 does not properly allocate memory for HTTP responses that are inconsistent with the Content-Length header, which allows remote HTTP servers to cause a deni…	CWE-399 Resource Management Errors	CVE-2013-6479	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292549	-	pidgin	pidgin	gtkimhtml.c in Pidgin before 2.10.8 does not properly interact with underlying library support for wide Pango layouts, which allows user-assisted remote attackers to cause a denial of service (applic…	CWE-20 Improper Input Validation	CVE-2013-6478	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm

292550	-	pidgin	pidgin	Multiple integer signedness errors in libpurple in Pidgin before 2.10.8 allow remote attackers to cause a denial of service (application crash) via a crafted timestamp value in an XMPP message.	CWE-189 Numeric Errors	CVE-2013-6477	2024-11-21 10:59	2014-02-7	Show	GitHub Exploit DB Packet Storm