Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233411 5 警告 マイクロソフト - Microsoft Internet Security などの SOCKS4 Proxy における重要な情報 (別ユーザのセッションの宛先 IP アドレス) を取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-4991 2012-09-25 16:59 2007-09-21 Show GitHub Exploit DB Packet Storm
233412 7.5 危険 ktauber - phpBB の Ktauber.com StylesDemo mod の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4984 2012-09-25 16:59 2007-09-19 Show GitHub Exploit DB Packet Storm
233413 10 危険 MW6 Technologies - MW6 Technologies QRCode ActiveX の MW6QRCode.dll における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4982 2012-09-25 16:59 2007-09-19 Show GitHub Exploit DB Packet Storm
233414 4.3 警告 oblius - Obedit の save 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4981 2012-09-25 16:59 2007-09-19 Show GitHub Exploit DB Packet Storm
233415 7.5 危険 kwsphp - KwsPHP の sondages モジュールの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4979 2012-09-25 16:59 2007-09-19 Show GitHub Exploit DB Packet Storm
233416 7.5 危険 Erik de Castro Lopo - libsndfile の flac_buffer_copy 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4974 2012-09-25 16:59 2007-09-19 Show GitHub Exploit DB Packet Storm
233417 4.4 警告 isecsoft - ProSecurity における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4971 2012-09-25 16:59 2007-09-18 Show GitHub Exploit DB Packet Storm
233418 4.4 警告 online armor - Online Armor Personal Firewall におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-264
CVE-2007-4967 2012-09-25 16:59 2007-09-18 Show GitHub Exploit DB Packet Storm
233419 4.3 警告 linden lab - Linden Lab Second Life におけるアカウントへログインされる脆弱性 CWE-255
CWE-310
CVE-2007-4961 2012-09-25 16:59 2007-09-18 Show GitHub Exploit DB Packet Storm
233420 5 警告 linden lab - Linden Lab Second Life における重要な情報を取得される脆弱性 CWE-255
CWE-310
CVE-2007-4960 2012-09-25 16:59 2007-09-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284491 - mplayer
xine 		mplayer
xine-lib 		Array index vulnerability in libmpdemux/demux_audio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbit… CWE-189
Numeric Errors 		CVE-2008-0486 2018-10-16 07:00 2008-02-5 Show GitHub Exploit DB Packet Storm
284492 - the_net_guys aspired2protect Multiple SQL injection vulnerabilities in login.asp in ASPired2Protect allow remote attackers to execute arbitrary SQL commands via the (1) username and (2) password parameters. NOTE: some of these … CWE-89
SQL Injection 		CVE-2008-0487 2018-10-16 07:00 2008-01-31 Show GitHub Exploit DB Packet Storm
284493 - vb_marketing vb_marketing Directory traversal vulnerability in tseekdir.cgi in VB Marketing allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the location parameter. CWE-22
Path Traversal 		CVE-2008-0488 2018-10-16 07:00 2008-01-31 Show GitHub Exploit DB Packet Storm
284494 - clansphere clansphere Directory traversal vulnerability in install.php in Clansphere 2007.4.4 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the lang parameter. CWE-22
Path Traversal 		CVE-2008-0489 2018-10-16 07:00 2008-01-31 Show GitHub Exploit DB Packet Storm
284495 - ampjuke ampjuke Cross-site scripting (XSS) vulnerability in index.php in AmpJuke 0.7.0 allows remote attackers to inject arbitrary web script or HTML via the limit parameter in a search action. CWE-79
Cross-site Scripting 		CVE-2008-0496 2018-10-16 07:00 2008-01-31 Show GitHub Exploit DB Packet Storm
284496 - nucleus_cms nucleus_cms Cross-site scripting (XSS) vulnerability in action.php in Nucleus CMS 3.31 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO, which is not quoted when processing PHP_SE… CWE-79
Cross-site Scripting 		CVE-2008-0497 2018-10-16 07:00 2008-01-31 Show GitHub Exploit DB Packet Storm
284497 - coppermine coppermine_photo_gallery Multiple cross-site scripting (XSS) vulnerabilities in docs/showdoc.php in Coppermine Photo Gallery (CPG) before 1.4.15 allow remote attackers to inject arbitrary web script or HTML via the (1) h and… CWE-79
Cross-site Scripting 		CVE-2008-0505 2018-10-16 07:00 2008-02-1 Show GitHub Exploit DB Packet Storm
284498 - coppermine coppermine_photo_gallery include/imageObjectIM.class.php in Coppermine Photo Gallery (CPG) before 1.4.15, when the ImageMagick picture processing method is configured, allows remote attackers to execute arbitrary commands vi… CWE-20
 Improper Input Validation  		CVE-2008-0506 2018-10-16 07:00 2008-02-1 Show GitHub Exploit DB Packet Storm
284499 - wordpress permalinks_migration_plugin Cross-site request forgery (CSRF) vulnerability in deans_permalinks_migration.php in the Dean's Permalinks Migration 1.0 plugin for WordPress allows remote attackers to modify the oldstructure (aka d… CWE-352
 Origin Validation Error 		CVE-2008-0508 2018-10-16 07:00 2008-02-1 Show GitHub Exploit DB Packet Storm
284500 - phpcms phpcms Directory traversal vulnerability in parser/include/class.cache_phpcms.php in phpCMS 1.2.2 allows remote attackers to read arbitrary files via a .. (dot dot) in the file parameter to parser/parser.ph… CWE-22
Path Traversal 		CVE-2008-0513 2018-10-16 07:00 2008-02-1 Show GitHub Exploit DB Packet Storm