Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233811 7.5 危険 The PHP Group - PHP の Tidy エクステンションにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-3294 2012-09-25 16:47 2007-06-20 Show GitHub Exploit DB Packet Storm
233812 7.5 危険 livecms - LiveCMS の categoria.php における SQL インジェクションの脆弱性 - CVE-2007-3293 2012-09-25 16:47 2007-06-20 Show GitHub Exploit DB Packet Storm
233813 7.5 危険 livecms - LiveCMS における任意の PHP コードをアップロードされる脆弱性 - CVE-2007-3292 2012-09-25 16:47 2007-06-20 Show GitHub Exploit DB Packet Storm
233814 4.3 警告 livecms - LiveCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-3291 2012-09-25 16:47 2007-06-20 Show GitHub Exploit DB Packet Storm
233815 9.3 危険 livecms - LiveCMS の categoria.php における重要な情報を取得される脆弱性 - CVE-2007-3290 2012-09-25 16:47 2007-06-20 Show GitHub Exploit DB Packet Storm
233816 7.8 危険 マイクロソフト - Microsoft Office MSODataSourceControl ActiveX オブジェクトにおけるバッファオーバーフローの脆弱性 - CVE-2007-3282 2012-09-25 16:47 2007-06-19 Show GitHub Exploit DB Packet Storm
233817 4.3 警告 php hosting biller - Php Hosting Biller の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3281 2012-09-25 16:47 2007-06-19 Show GitHub Exploit DB Packet Storm
233818 7.1 危険 mailwasher - MailWasher Server における任意のユーザアカウントへアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-3275 2012-09-25 16:47 2007-06-19 Show GitHub Exploit DB Packet Storm
233819 7.8 危険 miniBB - MiniBB の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3272 2012-09-25 16:47 2007-06-19 Show GitHub Exploit DB Packet Storm
233820 3.5 注意 Papoo Software - Papoo Light におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3269 2012-09-25 16:47 2007-06-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
284161 - webroot_software spy_sweeper WebRoot Spy Sweeper 4.5.9 and earlier allows local users to bypass the "Startup-Shield" security restrictions by modifying certain registry keys. NVD-CWE-Other
CVE-2006-6959 2018-10-17 01:29 2007-01-30 Show GitHub Exploit DB Packet Storm
284162 - webroot_software spy_sweeper The Compression Sweep feature in WebRoot Spy Sweeper 4.5.9 and earlier does not handle non-ZIP archives, which allows remote attackers to bypass the malware detection via files with (1) RAR, (2) GZ, … NVD-CWE-Other
CVE-2006-6960 2018-10-17 01:29 2007-01-30 Show GitHub Exploit DB Packet Storm
284163 - webroot_software spy_sweeper WebRoot Spy Sweeper 4.5.9 and earlier does not detect malware based on file contents, which allows remote attackers to bypass malware detection by changing a file's name. NVD-CWE-Other
CVE-2006-6961 2018-10-17 01:29 2007-01-30 Show GitHub Exploit DB Packet Storm
284164 - jetty jetty_http_server Jetty before 4.2.27, 5.1 before 5.1.12, 6.0 before 6.0.2, and 6.1 before 6.1.0pre3 generates predictable session identifiers using java.util.random, which makes it easier for remote attackers to gues… NVD-CWE-Other
CVE-2006-6969 2018-10-17 01:29 2007-02-7 Show GitHub Exploit DB Packet Storm
284165 - opera opera_browser Opera 9.10 Final allows remote attackers to bypass the Fraud Protection mechanism by adding certain characters to the end of a domain name, as demonstrated by the "." and "/" characters, which is not… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2006-6970 2018-10-17 01:29 2007-02-7 Show GitHub Exploit DB Packet Storm
284166 - freetextbox freetextbox Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FreeTextBox allows remote attackers to execute arbitrary JavaScript via the javascript: URI in the (1) href or (2) onmouse… CWE-79
Cross-site Scripting 		CVE-2006-6977 2018-10-17 01:29 2007-02-9 Show GitHub Exploit DB Packet Storm
284167 - fckeditor fckeditor Cross-site scripting (XSS) vulnerability in the "Basic Toolbar Selection" in FCKEditor allows remote attackers to execute arbitrary JavaScript via the javascript: URI in the (1) href or (2) onmouseov… CWE-79
Cross-site Scripting 		CVE-2006-6978 2018-10-17 01:29 2007-02-9 Show GitHub Exploit DB Packet Storm
284168 - v3_chat v3chat_instant_messenger mycontacts.php in V3 Chat allows remote authenticated users to gain privileges as other users via a modified membername parameter. NVD-CWE-Other
CVE-2006-6995 2018-10-17 01:29 2007-02-12 Show GitHub Exploit DB Packet Storm
284169 - v3_chat v3chat_instant_messenger The attacker must already be authenticated on V3Chat. NVD-CWE-Other
CVE-2006-6995 2018-10-17 01:29 2007-02-12 Show GitHub Exploit DB Packet Storm
284170 - scart scart scart.cgi in SCart 2.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the page parameter of a show_text action. NVD-CWE-Other
CVE-2006-7012 2018-10-17 01:29 2007-02-15 Show GitHub Exploit DB Packet Storm