Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232941	5	警告	serverkit	-	shttp の safe_path 関数におけるディレクトリトラバーサル攻撃を実行される脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5685	2012-12-20 18:33	2007-10-28	Show	GitHub Exploit DB Packet Storm

232942	7.5	危険	Tiki Software Community Association	-	TikiWiki におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5684	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232943	4.3	警告	Tiki Software Community Association	-	TikiWiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5683	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232944	7.5	危険	Tiki Software Community Association	-	TikiWiki の tiki-graph_formula.php における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5682	2012-12-20 18:33	2007-10-26	Show	GitHub Exploit DB Packet Storm

232945	7.5	危険	phpbasic	-	phpBasic の Music モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-5678	2012-12-20 18:33	2007-10-24	Show	GitHub Exploit DB Packet Storm

232946	7.5	危険	reloadcms	-	ReloadCMS の system.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5650	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232947	4.3	警告	rnote	-	rNote の rnote.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5648	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232948	4.3	警告	socketkb	-	SocketKB の social_game_play.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5647	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232949	6.8	警告	phppm	-	PHP Project Management におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5642	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

232950	6.8	警告	phppm	-	PHP Project Management における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5641	2012-12-20 18:33	2007-10-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293831	-	aker	secure_mail_gateway	Cross-site scripting (XSS) vulnerability in index.php in Aker Secure Mail Gateway 2.5.2 and earlier allows remote attackers to inject arbitrary web script or HTML via the msg_id parameter.	CWE-79 Cross-site Scripting	CVE-2013-6037	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

293832	-	huawei	e355_firmware e355	The Huawei E355 adapter with firmware 21.157.37.01.910 does not require authentication for API pages, which allows remote attackers to change passwords and settings, or obtain sensitive information, …	CWE-287 Improper Authentication	CVE-2013-6031	2024-11-21 10:58	2014-03-11	Show	GitHub Exploit DB Packet Storm

293833	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via the Description field in the "Short document metadata."	CWE-79 Cross-site Scripting	CVE-2013-6233	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

293834	-	eng	spagobi	Cross-site scripting (XSS) vulnerability in SpagoBI before 4.1 allows remote authenticated users to inject arbitrary web script or HTML via a document note in the execution page.	CWE-79 Cross-site Scripting	CVE-2013-6232	2024-11-21 10:58	2014-03-9	Show	GitHub Exploit DB Packet Storm

293835	-	ibm	enterprise_records infosphere_enterprise_records	IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 do not properly restrict use of FRAME elements, which makes it easier for remote…	CWE-20 Improper Input Validation	CVE-2013-6315	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293836	-	ibm	enterprise_records infosphere_enterprise_records	Cross-site scripting (XSS) vulnerability in IBM InfoSphere Enterprise Records 4.5.1 before 4.5.1.7-IER-IF001 and Enterprise Records 5.1.1 before 5.1.1.1-IER-IF003 allows remote authenticated users to…	CWE-79 Cross-site Scripting	CVE-2013-6314	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293837	-	ibm	algo_risk_application algo_one	Multiple directory traversal vulnerabilities in Algo Risk Application (ARA) 2.4.0.1 through 4.9.1 in IBM Algo One allow remote authenticated users to bypass intended access restrictions via a crafted…	CWE-22 Path Traversal	CVE-2013-6304	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293838	-	hp	security_management_system	Unspecified vulnerability in HP Security Management System 3.3.0, 3.5.0 before patch 1, and 3.6.0 before patch 2 allows remote attackers to execute arbitrary code via unknown vectors.	NVD-CWE-noinfo	CVE-2013-6201	2024-11-21 10:58	2014-03-6	Show	GitHub Exploit DB Packet Storm

293839	-	ibm	algo_one	Cross-site scripting (XSS) vulnerability in IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and A…	CWE-79 Cross-site Scripting	CVE-2013-6320	2024-11-21 10:58	2014-03-5	Show	GitHub Exploit DB Packet Storm

293840	-	ibm	algo_one	IBM Algo One, as used in MetaData Management Tools in UDS 4.7.0 through 5.0.0, ACSWeb in Algo Security Access Control Management 4.7.0 through 4.9.0, and ACSWeb in AlgoWebApps 5.0.0, allows remote au…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-6319	2024-11-21 10:58	2014-03-5	Show	GitHub Exploit DB Packet Storm