Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
234031	7.5	危険	phpecho cms	-	PHPEcho CMS の管理パネルにおける SQL インジェクションの脆弱性	-	CVE-2007-3335	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234032	5	警告	PHPNUKE	-	PHP-Nuke 用の Satel Lite におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-3332	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234033	5	警告	stphp	-	STphp EasyNews におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-3331	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234034	4.3	警告	stphp	-	STphp EasyNews におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3330	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234035	6.8	警告	xvid	-	Xvid の src/bitstream/mbcoding.c における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2007-3329	2012-12-20 18:19	2007-04-28	Show	GitHub Exploit DB Packet Storm

234036	9.3	危険	VideoLAN	-	VideoLAN VLC Media Player のプラグインにおけるフォーマットストリングの脆弱性	-	CVE-2007-3316	2012-12-20 18:19	2007-06-12	Show	GitHub Exploit DB Packet Storm

234037	6.8	警告	yourfreescreamer	-	YourFreeScreamer における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3315	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234038	7.5	危険	XOOPS	-	Xoops 用の Articles モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-3311	2012-12-20 18:19	2007-06-21	Show	GitHub Exploit DB Packet Storm

234039	4.3	警告	tdizin	-	TDizin の arama.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3310	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

234040	7.5	危険	Simple Machines	-	SMF におけるメッセージの作成時に任意の PHP コードを実行され脆弱性	-	CVE-2007-3309	2012-12-20 18:19	2007-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
345081	-	macromedia	dreamweaver	Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users.	NVD-CWE-Other	CVE-1999-1271	2017-12-19 11:29	1998-06-11	Show	GitHub Exploit DB Packet Storm

345082	-	sgi	irix	Buffer overflows in CDROM Confidence Test program (cdrom) allow local users to gain root privileges.	NVD-CWE-Other	CVE-1999-1272	2017-12-19 11:29	1998-03-1	Show	GitHub Exploit DB Packet Storm

345083	-	national_science_foundation	squid_web_proxy	Squid Internet Object Cache 1.1.20 allows users to bypass access control lists (ACLs) by encoding the URL with hexadecimal escape sequences.	NVD-CWE-Other	CVE-1999-1273	2017-12-19 11:29	1998-02-20	Show	GitHub Exploit DB Packet Storm

345084	-	ipass	roamserver	iPass RoamServer 3.1 creates temporary files with world-writable permissions.	NVD-CWE-Other	CVE-1999-1274	2017-12-19 11:29	1997-12-29	Show	GitHub Exploit DB Packet Storm

345085	-	ibm	lotus_cc_mail	Lotus cc:Mail release 8 stores the postoffice password in plaintext in a hidden file which has insecure permissions, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1275	2017-12-19 11:29	1997-09-8	Show	GitHub Exploit DB Packet Storm

345086	-	backweb_technologies	backweb_client	BackWeb client stores the username and password in cleartext for proxy authentication in the Communication registry key, which could allow other local users to gain privileges by reading the password.	NVD-CWE-Other	CVE-1999-1277	2017-12-19 11:29	1998-12-24	Show	GitHub Exploit DB Packet Storm

345087	-	nlog	nlog	nlog CGI scripts do not properly filter shell metacharacters from the IP address argument, which could allow remote attackers to execute certain commands via (1) nlog-smb.pl or (2) rpc-nlog.pl.	NVD-CWE-Other	CVE-1999-1278	2017-12-19 11:29	1998-12-25	Show	GitHub Exploit DB Packet Storm

345088	-	hummingbird	exceed	Hummingbird Exceed 6.0.1.0 inadvertently includes a DLL that was meant for development and testing, which logs user names and passwords in cleartext in the test.log file.	NVD-CWE-Other	CVE-1999-1280	2017-12-19 11:29	1998-12-3	Show	GitHub Exploit DB Packet Storm

345089	-	winddance_networks_corporation	breeze_network_server	Development version of Breeze Network Server allows remote attackers to cause the system to reboot by accessing the configbreeze CGI program.	NVD-CWE-Other	CVE-1999-1281	2017-12-19 11:29	1998-12-26	Show	GitHub Exploit DB Packet Storm

345090	-	realnetworks	realsystem_g2_server	RealSystem G2 server stores the administrator password in cleartext in a world-readable configuration file, which allows local users to gain privileges.	NVD-CWE-Other	CVE-1999-1282	2017-12-19 11:29	1998-12-10	Show	GitHub Exploit DB Packet Storm