Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237041	6.8	警告	マイクロソフト	-	Microsoft Word 2007 の wwlib.dll におけるバッファオーバーフローの脆弱性	-	CVE-2007-1910	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237042	6.8	警告	php121	-	PHP121 Instant Messenger の php121db.php における PHP ファイルインクルージョンの脆弱性	-	CVE-2007-1908	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237043	6.8	警告	pathos	-	Pathos CMS の warn.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1907	2012-09-25 16:47	2007-04-10	Show	GitHub Exploit DB Packet Storm

237044	5.8	警告	jetbox	-	Jetbox CMS の formmail.php におけるスパムを送信される脆弱性	-	CVE-2007-1898	2012-09-25 16:47	2007-05-16	Show	GitHub Exploit DB Packet Storm

237045	7.5	危険	The PHP Group	-	PHP の msg_receive 関数における整数オーバーフローの脆弱性	-	CVE-2007-1890	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237046	7.5	危険	The PHP Group	-	PHP の Zend Memory Manager における整数符号エラーの脆弱性	-	CVE-2007-1889	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237047	7.5	危険	The PHP Group	-	SQLite の src/encode.c におけるバッファオーバーフローの脆弱性	-	CVE-2007-1888	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237048	6.8	警告	The PHP Group	-	PHP における整数オーバーフローの脆弱性	-	CVE-2007-1886	2012-09-25 16:47	2007-03-31	Show	GitHub Exploit DB Packet Storm

237049	7.5	危険	The PHP Group	-	PHP の str_replace 関数における整数オーバーフローの脆弱性	-	CVE-2007-1885	2012-09-25 16:47	2007-04-5	Show	GitHub Exploit DB Packet Storm

237050	6.8	警告	The PHP Group	-	PHP の printf 関数ファミリにおける整数符号エラーの脆弱性	-	CVE-2007-1884	2012-09-25 16:47	2007-04-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
348561	-	punbb	punbb	PunBB 1.2.9 does not require password entry when changing the e-mail address in an account's profile, which might allow an attacker to make an address change via a hijacked login session.	NVD-CWE-Other	CVE-2005-4688	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348562	-	-	-	Six Apart Movable Type 3.16 stores account names and password hashes in a cookie, which allows remote attackers to login to an account by sniffing the cookie.	NVD-CWE-Other	CVE-2005-4689	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348563	-	six_apart	movable_type	Six Apart Movable Type 3.16 allows local users with blog-creation privileges to create or overwrite arbitrary files of certain types (such as HTML and image files) by selecting an arbitrary directory…	NVD-CWE-Other	CVE-2005-4690	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348564	-	netbsd	netbsd	imake in NetBSD before 2.0.3, NetBSD-current before 12 September 2005, certain versions of X.Org, and certain versions of XFree86 allows local users to overwrite arbitrary files via a symlink attack …	NVD-CWE-Other	CVE-2005-4691	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348565	-	mroovca	mroovca_stats	Unspecified vulnerability in mroovca stats (mroovcastats) before 0.4.5b has unknown attack vectors and impact, related to cookies.	NVD-CWE-Other	CVE-2005-4692	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348566	-	gaim-encryption	gaim-encryption	Gaim-Encryption 2.38-1 on Debian Linux allows remote attackers to cause a denial of service (crash) via a crafted message from an ICQ buddy, possibly involving the GE_received_key function in keys.c.	NVD-CWE-Other	CVE-2005-4693	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348567	-	ipbproarcade	ipbproarcade	SQL injection vulnerability in the favorites module in index.php in IPBProArcade 2.5.2 allows remote attackers to inject arbitrary SQL commands via the gameid parameter. NOTE: the provenance of this…	NVD-CWE-Other	CVE-2005-4702	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348568	-	bea	weblogic_server	Unspecified vulnerability in BEA WebLogic Server and WebLogic Express 8.1 through SP3, 7.0 through SP6, and 6.1 through SP7, when SSL is intended to be used, causes an unencrypted protocol to be used…	NVD-CWE-Other	CVE-2005-4704	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348569	-	bea	weblogic_server	BEA WebLogic Server and WebLogic Express 8.1 through SP4, 7.0 through SP6, and 6.1 through SP7, when a Java client application creates an SSL connection to the server after it has already created an …	NVD-CWE-Other	CVE-2005-4705	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm

348570	-	php_handicapper	php_handicapper	CRLF injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to inject arbitrary HTTP headers via CRLF sequences in the login parameter. NOTE: the vendor has dispute…	NVD-CWE-Other	CVE-2005-4712	2008-09-6 05:57	2005-12-31	Show	GitHub Exploit DB Packet Storm