Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
237611	6.9	警告	IBM	-	IBM DB2 Universal Database の db2dasrrm におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-5758	2012-09-25 16:59	2008-04-16	Show	GitHub Exploit DB Packet Storm

237612	6.9	警告	IBM	-	IBM DB2 UDB の db2pd における root 権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5757	2012-09-25 16:59	2008-02-12	Show	GitHub Exploit DB Packet Storm

237613	7.5	危険	GuppYTeam	-	GuppY の inc/includes.inc におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5844	2012-09-25 16:59	2007-11-6	Show	GitHub Exploit DB Packet Storm

237614	6.8	警告	nuboard	-	nuBoard の admin/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5841	2012-09-25 16:59	2007-11-6	Show	GitHub Exploit DB Packet Storm

237615	2.1	注意	iscsitarget	-	iscsitarget におけるパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5827	2012-09-25 16:59	2007-11-5	Show	GitHub Exploit DB Packet Storm

237616	2.1	注意	IBM	-	IBM Tivoli CDP for Files における任意のファイルを配置される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-5819	2012-09-25 16:59	2007-11-5	Show	GitHub Exploit DB Packet Storm

237617	5	警告	ispworker	-	ISPworker の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5813	2012-09-25 16:59	2007-11-5	Show	GitHub Exploit DB Packet Storm

237618	5	警告	modulebuilder	-	ModuleBuilder の modules/Builder/DownloadModule.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-5812	2012-09-25 16:59	2007-11-5	Show	GitHub Exploit DB Packet Storm

237619	4.3	警告	ILIAS	-	ILIAS の Services/Utilities/classes/class.ilUtil.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-5806	2012-09-25 16:59	2007-11-5	Show	GitHub Exploit DB Packet Storm

237620	7.5	危険	jobsiteprofessional	-	JobSite Professional の file.php における SQL インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2007-5785	2012-09-25 16:59	2007-11-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
346841	-	mafia	mafia_blog	Mafia Blog .4 BETA does not properly protect the admin directory, which allows remote attackers to execute arbitrary PHP code by using writeinfo.php to inject the code into info.php.	NVD-CWE-Other	CVE-2005-1169	2016-10-18 12:17	2005-05-2	Show	GitHub Exploit DB Packet Storm

346842	-	datenbank_module	datenbank_module	SQL injection vulnerability in mod.php in the datenbank module for phpBB allows remote attackers to execute arbitrary SQL commands via the id parameter.	NVD-CWE-Other	CVE-2005-1170	2016-10-18 12:17	2005-05-2	Show	GitHub Exploit DB Packet Storm

346843	-	coppermine	coppermine_photo_gallery	Cross-site scripting (XSS) vulnerability in init.inc.php in Coppermine Photo Gallery 1.3.x allows remote attackers to inject arbitrary web script or HTML via the X-Forwarded-For parameter.	NVD-CWE-Other	CVE-2005-1172	2016-10-18 12:17	2005-05-2	Show	GitHub Exploit DB Packet Storm

346844	-	pmsoftware	simple_web_server	Buffer overflow in PMSoftware Simple Web Server 1.0 allows remote attackers to execute arbitrary code via a long GET request.	NVD-CWE-Other	CVE-2005-1173	2016-10-18 12:17	2005-05-2	Show	GitHub Exploit DB Packet Storm

346845	-	phpbb_group	phpbb	SQL injection vulnerability in kb.php in the Knowledge Base module for phpBB allows remote attackers to obtain sensitive information and execute SQL commands via the cat parameter.	NVD-CWE-Other	CVE-2005-1196	2016-10-18 12:17	2005-05-2	Show	GitHub Exploit DB Packet Storm

346846	-	interakt	mx_shop	SQL injection vulnerability in InterAKT MX Shop 1.1.1 allows remote attackers to execute arbitrary SQL commands via the id_ctg parameter.	NVD-CWE-Other	CVE-2005-0955	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm

346847	-	interakt	mx_kart	Multiple SQL injection vulnerabilities in index.php in InterAKT MX Kart 1.1.2 allow remote attackers to execute arbitrary SQL commands via the (1) idp, (2) id_ctg, or (3) id_man parameter.	NVD-CWE-Other	CVE-2005-0956	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm

346848	-	alstrasoft	epay	PHP remote file inclusion vulnerability in index.php in AlstraSoft EPay Pro 2.0 allows remote attackers to execute arbitrary PHP code by modifying the view parameter to reference a URL on a remote we…	NVD-CWE-Other	CVE-2005-0980	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm

346849	-	alstrasoft	epay	Multiple cross-site scripting (XSS) vulnerabilities in AlstraSoft EPay Pro 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) payment or (2) send parameter.	NVD-CWE-Other	CVE-2005-0981	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm

346850	-	yet_another_forum.net	yet_another_forum.net	Multiple cross-site scripting (XSS) vulnerabilities in Yet Another Forum.net 0.9.9 allow remote attackers to inject arbitrary web script or HTML via the (1) name, (2) location, or (3) Subject field.	NVD-CWE-Other	CVE-2005-0982	2016-10-18 12:16	2005-05-2	Show	GitHub Exploit DB Packet Storm