Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
233961 4.3 警告 The PHP Group - PHP の substr_count 関数における重要な情報を取得される脆弱性 - CVE-2007-2748 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
233962 7.5 危険 labs.beffa.org - labs.beffa.org w2box における任意の PHP コードをアップロードされる脆弱性 - CVE-2007-2742 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
233963 9.3 危険 Little CMS - Little CMS におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2741 2012-09-25 16:47 2007-05-17 Show GitHub Exploit DB Packet Storm
233964 6 警告 jetbox - Jetbox CMS における任意のスクリプトをアップロードされる脆弱性 - CVE-2007-2733 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233965 6.8 警告 jetbox - Jetbox CMS におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2732 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233966 4 警告 jetbox - Jetbox CMS の formmail.php における CRLF インジェクションの脆弱性 - CVE-2007-2731 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233967 4.3 警告 The PHP Group - PHP の soap エクステンションにおける脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-2728 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233968 2.6 注意 The PHP Group - PHP の ext/mcrypt/mcyrpt.c における特定のデータを解読される脆弱性 - CVE-2007-2727 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233969 7.1 危険 media player classic - Media Player Classic におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2723 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
233970 7.8 危険 newzcrawler - NewzCrawler におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2722 2012-09-25 16:47 2007-05-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285071 - coppermine coppermine_photo_gallery Cross-site scripting (XSS) vulnerability in mode.php in Coppermine Photo Gallery (CPG) 1.4.12 and earlier allows remote attackers to inject arbitrary web script or HTML via the referer parameter. CWE-79
Cross-site Scripting 		CVE-2007-4977 2018-10-16 06:39 2007-09-20 Show GitHub Exploit DB Packet Storm
285072 - gcaldaemon gcaldaemon The readRequest method in org/gcaldaemon/core/http/HTTPListener.java in GCALDaemon 1.0-beta13 allows remote attackers to cause a denial of service via a large integer value in the Content-Length HTTP… CWE-189
Numeric Errors 		CVE-2007-4980 2018-10-16 06:39 2007-09-20 Show GitHub Exploit DB Packet Storm
285073 - oblius obedit Cross-site scripting (XSS) vulnerability in the save function in Obedit 3.03 allows user-assisted remote attackers to inject arbitrary web script or HTML via unknown vectors, as demonstrated by a SCR… CWE-79
Cross-site Scripting 		CVE-2007-4981 2018-10-16 06:39 2007-09-20 Show GitHub Exploit DB Packet Storm
285074 - imagemagick imagemagick ImageMagick before 6.3.5-9 allows context-dependent attackers to cause a denial of service via a crafted image file that triggers (1) an infinite loop in the ReadDCMImage function, related to ReadBlo… CWE-399
 Resource Management Errors 		CVE-2007-4985 2018-10-16 06:39 2007-09-25 Show GitHub Exploit DB Packet Storm
285075 - imagemagick imagemagick Multiple integer overflows in ImageMagick before 6.3.5-9 allow context-dependent attackers to execute arbitrary code via a crafted (1) .dcm, (2) .dib, (3) .xbm, (4) .xcf, or (5) .xwd image file, whic… CWE-189
Numeric Errors 		CVE-2007-4986 2018-10-16 06:39 2007-09-25 Show GitHub Exploit DB Packet Storm
285076 - imagemagick imagemagick Off-by-one error in the ReadBlobString function in blob.c in ImageMagick before 6.3.5-9 allows context-dependent attackers to execute arbitrary code via a crafted image file, which triggers the writi… CWE-189
Numeric Errors 		CVE-2007-4987 2018-10-16 06:39 2007-09-25 Show GitHub Exploit DB Packet Storm
285077 - x.org x_font_server The swap_char2b function in X.Org X Font Server (xfs) before 1.0.5 allows context-dependent attackers to execute arbitrary code via (1) QueryXBitmaps and (2) QueryXExtents protocol requests with craf… CWE-189
Numeric Errors 		CVE-2007-4990 2018-10-16 06:39 2007-10-6 Show GitHub Exploit DB Packet Storm
285078 - firebirdsql firebird Stack-based buffer overflow in the process_packet function in fbserver.exe in Firebird SQL 2.0.2 allows remote attackers to execute arbitrary code via a long request to TCP port 3050. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-4992 2018-10-16 06:39 2007-10-11 Show GitHub Exploit DB Packet Storm
285079 - xensource_inc xen pygrub (tools/pygrub/src/GrubConf.py) in Xen 3.0.3, when booting a guest domain, allows local users with elevated privileges in the guest domain to execute arbitrary commands in domain 0 via a crafte… CWE-20
 Improper Input Validation  		CVE-2007-4993 2018-10-16 06:39 2007-09-28 Show GitHub Exploit DB Packet Storm
285080 - openssl openssl Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 before 0.9.8f allows remote attackers to execute arbitrary code via unspecified vectors. CWE-189
Numeric Errors 		CVE-2007-4995 2018-10-16 06:39 2007-10-13 Show GitHub Exploit DB Packet Storm