Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239551 4.3 警告 avantbrowser - Avant Browser の JavaScript エンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-4166 2012-06-26 16:02 2008-09-22 Show GitHub Exploit DB Packet Storm
239552 6.8 警告 assetman - Assetman の search_inv.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4161 2012-06-26 16:02 2008-09-22 Show GitHub Exploit DB Packet Storm
239553 6.8 警告 customcms - CCMS Gaming Portal の print.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4156 2012-06-26 16:02 2008-09-19 Show GitHub Exploit DB Packet Storm
239554 7.8 危険 easybrik - EasySite におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4155 2012-06-26 16:02 2008-09-19 Show GitHub Exploit DB Packet Storm
239555 5 警告 cyask - CYASK の collect.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4151 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
239556 7.5 危険 dieselscripts - Diesel Joke Site の picture_category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4150 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
239557 5 警告 addalink - Addalink における visit-counter の値を変更される脆弱性 CWE-287
不適切な認証 		CVE-2008-4146 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
239558 6.8 警告 addalink - Addalink の user_read_links.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4145 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
239559 7.5 危険 discountedscripts - ACG-ScriptShop E-Gold Script Shop の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4144 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
239560 7.5 危険 ephpscripts - E-Php CMS の article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4142 2012-06-26 16:02 2008-09-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
257031 - php_turbulence php_turbulence Directory traversal vulnerability in turbulence.php in PHP Turbulence 0.0.1 alpha allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the GLOBALS[tcore] paramet… NVD-CWE-Other
CVE-2007-2503 2024-08-7 23:15 2007-05-4 Show GitHub Exploit DB Packet Storm
257032 - php_turbulence php_turbulence PHP remote file inclusion vulnerability in user/turbulence.php in PHP Turbulence 0.0.1 alpha allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS[tcore] parameter. NOTE: th… NVD-CWE-Other
CVE-2007-2504 2024-08-7 23:15 2007-05-4 Show GitHub Exploit DB Packet Storm
257033 - phpmychat phpmychat PHP remote file inclusion vulnerability in phpMyChat.php3 in phpMyChat 0.14.5 allows remote attackers to execute arbitrary PHP code via a URL in the {ChatPath} parameter. NOTE: this has been dispute… NVD-CWE-Other
CVE-2007-2477 2024-08-7 23:15 2007-05-3 Show GitHub Exploit DB Packet Storm
257034 - comdev modules_builder Multiple PHP remote file inclusion vulnerabilities in Modules Builder (modbuild) 4.1 for Comdev One Admin allow remote attackers to execute arbitrary PHP code via a URL in the path[docroot] parameter… NVD-CWE-Other
CVE-2007-2422 2024-08-7 23:15 2007-05-2 Show GitHub Exploit DB Packet Storm
257035 - sphider sphider PHP remote file inclusion vulnerability in index.php in Sphider 1.2.x allows remote attackers to execute arbitrary PHP code via a URL in the include_dir parameter. NOTE: a third party disputes this … NVD-CWE-Other
CVE-2007-2411 2024-08-7 23:15 2007-05-1 Show GitHub Exploit DB Packet Storm
257036 - seir_anphin seir_anphin Directory traversal vulnerability in modules/file.php in Seir Anphin allows remote attackers to obtain sensitive information via a .. (dot dot) in the a[filepath] parameter. NOTE: a third party has … NVD-CWE-Other
CVE-2007-2412 2024-08-7 23:15 2007-05-1 Show GitHub Exploit DB Packet Storm
257037 - bloofoxcms bloofoxcms PHP remote file inclusion vulnerability in install/index.php in BlooFoxCMS 0.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the content_php parameter. NOTE: this issue has be… NVD-CWE-Other
CVE-2007-2311 2024-08-7 23:15 2007-04-27 Show GitHub Exploit DB Packet Storm
257038 - 3com tippingpoint_ips 3Com TippingPoint IPS allows remote attackers to cause a denial of service (device hang) via a flood of packets on TCP port 80 with sequentially increasing source ports, related to a "badly written l… CWE-399
 Resource Management Errors 		CVE-2007-2276 2024-08-7 23:15 2007-04-26 Show GitHub Exploit DB Packet Storm
257039 - joomla
mambo 		jambook PHP remote file inclusion vulnerability in jambook.php in the Jambook (com_Jambook) 1.0 beta7 module for Mambo and Joomla! allows remote attackers to execute arbitrary PHP code via a URL in the mosCo… NVD-CWE-Other
CVE-2007-2196 2024-08-7 23:15 2007-04-25 Show GitHub Exploit DB Packet Storm
257040 - b2evolution b2evolution Multiple PHP remote file inclusion vulnerabilities in b2evolution allow remote attackers to execute arbitrary PHP code via a URL in the (1) inc_path parameter to (a) a_noskin.php, (b) a_stub.php, (c)… NVD-CWE-Other
CVE-2007-2358 2024-08-7 23:15 2007-05-1 Show GitHub Exploit DB Packet Storm