Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
236601 3.5 注意 xmb software - XMB U2U Instant Messenger の memcp.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-0519 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236602 7.5 危険 Scriptsez.net - Scriptsez Smart PHP Subscriber におけるエンコードされたパスワードを取得される脆弱性 - CVE-2007-0518 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236603 7.5 危険 Scriptsez.net - Scriptsez Random PHP Quote におけるパスワード情報を取得される脆弱性 - CVE-2007-0517 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236604 4.9 警告 yana framework - Yana Framework における任意のゲストブックプロファイルを変更される脆弱性 CWE-noinfo
情報不足
CVE-2007-0516 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236605 6.8 警告 phpxmldom - phpXD における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0511 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236606 10 危険 vote pro - Vote! Pro の poll_frame.php における任意の PHP コードを実行される脆弱性 - CVE-2007-0504 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236607 7.5 危険 webSPELL - webSPELL の gallery.php における SQL インジェクションの脆弱性 - CVE-2007-0502 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236608 6.8 警告 sangwan kim - Sangwan Kim phpIndexPage の config.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-0499 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236609 7.5 危険 sky gunning - MySpeach の up.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0498 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
236610 6.8 警告 upload-service - Upload-Service の upload/top.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0497 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346771 - microsoft isa_server
proxy_server
windows_2003_server
Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Inte… NVD-CWE-Other
CVE-2004-0892 2018-10-13 06:35 2005-01-27 Show GitHub Exploit DB Packet Storm
346772 - microsoft windows_2003_server
windows_xp
The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote attackers to execute arbitrary code via a buffer overflow attack. NVD-CWE-Other
CVE-2004-0897 2018-10-13 06:35 2005-01-11 Show GitHub Exploit DB Packet Storm
346773 - microsoft windows_nt The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition, with DHCP logging enabled, does not properly validate the length of certain messages, which allows remote atta… NVD-CWE-Other
CVE-2004-0899 2018-10-13 06:35 2005-01-10 Show GitHub Exploit DB Packet Storm
346774 - microsoft windows_nt The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages, which allows remote attackers to execute arbitrary c… NVD-CWE-Other
CVE-2004-0900 2018-10-13 06:35 2005-01-10 Show GitHub Exploit DB Packet Storm
346775 - microsoft word Buffer overflow in Microsoft Word 2002 (10.6612.6714) SP3, and possibly other versions, allows remote attackers to cause a denial of service (application exception) and possibly execute arbitrary cod… NVD-CWE-Other
CVE-2004-0963 2018-10-13 06:35 2005-02-9 Show GitHub Exploit DB Packet Storm
346776 - microsoft windows_2000
windows_2003_server
windows_nt
windows_xp
Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, whic… NVD-CWE-Other
CVE-2004-1049 2018-10-13 06:35 2004-12-31 Show GitHub Exploit DB Packet Storm
346777 - microsoft windows_media_player Windows Media Player 9 allows remote attackers to execute arbitrary code via a PNG file containing large (1) width or (2) height values, aka the "PNG Processing Vulnerability." NVD-CWE-Other
CVE-2004-1244 2018-10-13 06:35 2004-02-8 Show GitHub Exploit DB Packet Storm
346778 - microsoft windows_xp Microsoft Windows XP Explorer allows local users to execute arbitrary code via a system folder with a Desktop.ini file containing a .ShellClassInfo specifier with a CLSID value that is associated wit… NVD-CWE-Other
CVE-2004-2289 2018-10-13 06:35 2004-12-31 Show GitHub Exploit DB Packet Storm
346779 - microsoft msn_messenger Microsoft MSN Messenger 6.0 and 6.1 does not properly handle certain requests, which allows remote attackers to read arbitrary files. NVD-CWE-Other
CVE-2004-0122 2018-10-13 06:34 2004-04-15 Show GitHub Exploit DB Packet Storm
346780 - microsoft windows_2000
windows_2003_server
windows_98
windows_98se
windows_me
windows_nt
windows_xp
Double free vulnerability in the ASN.1 library as used in Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003, allows remote attackers to cause a denial of service and possibly execute … CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2004-0123 2018-10-13 06:34 2004-06-1 Show GitHub Exploit DB Packet Storm