Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 12:16 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
236891 7.5 危険 php123 - PHP123 Top Sites の category.php における SQL インジェクションの脆弱性 - CVE-2007-4054 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
236892 7.5 危険 LinPHA - LinPHA の include/img_view.class.php における SQL インジェクションの脆弱性 - CVE-2007-4053 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
236893 4.3 警告 nukedit - nukedit の utilities/login.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4052 2012-09-25 16:47 2007-07-30 Show GitHub Exploit DB Packet Storm
236894 7.5 危険 Joomla! - Joomla! 用の Pony Gallery における SQL インジェクションの脆弱性 - CVE-2007-4046 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236895 7.5 危険 ネットスケープ - Netscape Navigator 9 における任意のコマンドを実行される脆弱性 - CVE-2007-4042 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236896 4.3 警告 マイクロソフト - Microsoft Outlook および Outlook Express における任意のコマンドを実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4040 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236897 4.3 警告 Mozilla Foundation - Mozilla におけるクロスブラウザスクリプティング攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4039 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236898 4.3 警告 Mozilla Foundation - Mozilla Firefox におけるクロスブラウザスクリプティング攻撃を実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2007-4038 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236899 7.8 危険 Tenable, Inc. - Nessus Vulnerability Scanner の特定の ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4031 2012-09-25 16:47 2007-07-27 Show GitHub Exploit DB Packet Storm
236900 6.8 警告 The PHP Group - PHP の win32std エクステンションにおけるコマンドを実行される脆弱性 - CVE-2007-4010 2012-09-25 16:47 2007-07-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348771 - john_andersson zixforum SQL injection vulnerability in ZixForum 1.12 allows remote attackers to execute arbitrary SQL commands via the H_ID parameter to (1) zixforum/forum.asp, as used in (2) Headforums.asp and (3) Subject.… NVD-CWE-Other
CVE-2005-4334 2008-09-6 05:56 2005-12-17 Show GitHub Exploit DB Packet Storm
348772 - blackboard academic_suite The login page in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to bypass authentication and gain privileg… NVD-CWE-Other
CVE-2005-4337 2008-09-6 05:56 2005-12-19 Show GitHub Exploit DB Packet Storm
348773 - blackboard academic_suite announcement.pl in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to gain administrator privileges by setti… NVD-CWE-Other
CVE-2005-4338 2008-09-6 05:56 2005-12-19 Show GitHub Exploit DB Packet Storm
348774 - blackboard academic_suite Cross-site scripting (XSS) vulnerability in Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to inject arbitr… NVD-CWE-Other
CVE-2005-4339 2008-09-6 05:56 2005-12-19 Show GitHub Exploit DB Packet Storm
348775 - blackboard academic_suite Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to list all available categories via a blank category_id par… NVD-CWE-Other
CVE-2005-4341 2008-09-6 05:56 2005-12-19 Show GitHub Exploit DB Packet Storm
348776 - icms_content_management_systems icms Cross-site scripting (XSS) vulnerability in admin/Default.asp in iCMS allows remote attackers to inject arbitrary web script or HTML via the LoginMSG parameter. NOTE: the provenance of this issue is… NVD-CWE-Other
CVE-2005-4396 2008-09-6 05:56 2005-12-20 Show GitHub Exploit DB Packet Storm
348777 - icms_content_management_systems icms SQL injection vulnerability in RunScript.asp iCMS allows remote attackers to execute arbitrary SQL commands via the Event_ID parameter. NVD-CWE-Other
CVE-2005-4397 2008-09-6 05:56 2005-12-20 Show GitHub Exploit DB Packet Storm
348778 - media2_cms media2_cms_shop SQL injection vulnerability in default.asp in Media2 CMS Shop 18.x allows remote attackers to execute arbitrary SQL commands via the item parameter. NOTE: the provenance of this issue is unknown; th… NVD-CWE-Other
CVE-2005-4404 2008-09-6 05:56 2005-12-20 Show GitHub Exploit DB Packet Storm
348779 - citrix program_neighborhood_client Citrix Program Neighborhood client before 9.150 caches the user password in plaintext in the GUI while asterisks are used to visually obfuscate the password, which allows attackers with access to the… NVD-CWE-Other
CVE-2005-4412 2008-09-6 05:56 2005-12-20 Show GitHub Exploit DB Packet Storm
348780 - ibm websphere_application_server Multiple cross-site scripting (XSS) vulnerabilities in sample scripts in IBM WebSphere Application Server 6 allow remote attackers to inject arbitrary web script or HTML via the (1) E-mail address fi… NVD-CWE-Other
CVE-2005-4413 2008-09-6 05:56 2005-12-20 Show GitHub Exploit DB Packet Storm