Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232661 7.5 危険 saxon - SAXON における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2861 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
232662 7.5 危険 simpgb - SimpGB における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2859 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
232663 6.5 警告 phpBB - phpBB 用の IP-Tracking Mod における SQL インジェクションの脆弱性 - CVE-2007-2858 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
232664 7.5 危険 zakkis technology corporation - ABC Excel Parser の sample/xls2mysql における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2857 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
232665 10 危険 sky software - Sky Software Shell MegaPack ActiveX の shComboBox ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2848 2012-12-20 18:19 2007-05-24 Show GitHub Exploit DB Packet Storm
232666 6.8 警告 unicon-imc2 - unicon-imc2 の ImmModules/cce/ におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-2835 2012-12-20 18:19 2007-07-1 Show GitHub Exploit DB Packet Storm
232667 9.3 危険 wavelink media - TutorialCMS における認証を回避される脆弱性 - CVE-2007-2822 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
232668 7.5 危険 WordPress.org - WordPress の wp-admin/admin-ajax.php における SQL インジェクションの脆弱性 - CVE-2007-2821 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
232669 4.3 警告 track+ - Track+ の reportItem.do におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2819 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
232670 7.5 危険 vizayn urun - Vizayn Urun Tanitim Sitesi の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-2803 2012-12-20 18:19 2007-05-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291481 - typo3 typo3 The (old) Form Content Element component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated editors to generate arbitrary H… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-7081 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291482 - typo3 typo3 The creating record functionality in Extension table administration library (feuser_adminLib.inc) in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, and 6.0.0 through 6.0.11 allows remote attackers… NVD-CWE-noinfo
CVE-2013-7080 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291483 - typo3 typo3 Open redirect vulnerability in the OpenID extension in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote attackers to redirect users to arb… CWE-20
 Improper Input Validation  		CVE-2013-7079 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291484 - typo3 typo3 The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 allows remote authenticated backend users to unserialize arbit… CWE-310
Cryptographic Issues 		CVE-2013-7075 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291485 - typo3 typo3 The Content Editing Wizards component in TYPO3 4.5.0 through 4.5.31, 4.7.0 through 4.7.16, 6.0.0 through 6.0.11, and 6.1.0 through 6.1.6 does not check permissions, which allows remote authenticated … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-7073 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291486 - znc znc-msvc Stack-based buffer overflow in fish.cpp in the Fish plugin for ZNC, as used in ZNC for Windows (znc-msvc) 0.206 and earlier, allows remote attackers to cause a denial of service (crash) via a long st… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-7049 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291487 - cisco ios_xe The VTY authentication implementation in Cisco IOS XE 03.02.xxSE and 03.03.xxSE incorrectly relies on the Linux-IOS internal-network configuration, which allows remote attackers to bypass authenticat… CWE-287
Improper Authentication 		CVE-2013-6979 2024-11-21 11:00 2013-12-24 Show GitHub Exploit DB Packet Storm
291488 - cisco unified_communications_manager The disaster recovery system (DRS) component in Cisco Unified Communications Manager (UCM) 9.1(1) and earlier allows remote authenticated users to obtain sensitive device information by reading "extr… CWE-200
Information Exposure 		CVE-2013-6978 2024-11-21 11:00 2013-12-21 Show GitHub Exploit DB Packet Storm
291489 - efrontlearning efront Multiple cross-site scripting (XSS) vulnerabilities in www/administrator.php in eFront 3.6.14 (build 18012) allow remote authenticated administrators to inject arbitrary web script or HTML via the (1… CWE-79
Cross-site Scripting 		CVE-2013-7194 2024-11-21 11:00 2013-12-21 Show GitHub Exploit DB Packet Storm
291490 - etoshop c2c_forward_auction_creator Multiple SQL injection vulnerabilities in C2C Forward Auction Creator 2.0 allow remote attackers to execute arbitrary SQL commands via the (1) pa parameter to auction/asp/list.asp, or the (2) UserID … CWE-89
SQL Injection 		CVE-2013-7193 2024-11-21 11:00 2013-12-21 Show GitHub Exploit DB Packet Storm