Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239581	9.3	危険	friendly technologies	-	Friendly Technologies FriendlyPPPoE Client における任意のファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2008-4050	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239582	6.8	警告	friendly technologies	-	Friendly Technologies FriendlyPPPoE Client の fwRemoteCfg.dll における任意のプログラムを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4049	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239583	6.8	警告	friendly technologies	-	Friendly Technologies FriendlyPPPoE Client の fwRemoteCfg.dll におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4048	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239584	7.5	危険	elitecms	-	eliteCMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4046	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239585	4.3	警告	@mail	-	@Mail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4045	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239586	7.5	危険	aj square	-	AJ Square aj-hyip の article/readarticle.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4044	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239587	7.5	危険	aj square	-	AJ Square AJ HYIP Acme における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4043	2012-06-26 16:02	2008-09-11	Show	GitHub Exploit DB Packet Storm

239588	9.3	危険	gmanedit2	-	gmanedit の open_man_file 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3971	2012-06-26 16:02	2008-09-10	Show	GitHub Exploit DB Packet Storm

239589	7.5	危険	bitlbee	-	BitlBee における既存のアカウントを "上書き" される脆弱性	CWE-264 CWE-399	CVE-2008-3969	2012-06-26 16:02	2008-09-10	Show	GitHub Exploit DB Packet Storm

239590	7.5	危険	AlstraSoft	-	AlstraSoft Forum Pay Per Post Exchange の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3954	2012-06-26 16:02	2008-09-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
257201	-	mcafee	virusscan_enterprise	McAfee VirusScan Enterprise 8.5.0.i uses insecure permissions for certain Windows Registry keys, which allows local users to bypass local password protection via the UIP value in (1) HKEY_LOCAL_MACHI…	NVD-CWE-Other	CVE-2007-1538	2024-08-7 22:15	2007-03-21	Show	GitHub Exploit DB Packet Storm

257202	-	oscommerce	php_point_of_sale	Directory traversal vulnerability in index.php in PHP Point Of Sale for osCommerce 1.1 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the cfg_language para…	NVD-CWE-Other	CVE-2007-1477	2024-08-7 22:15	2007-03-17	Show	GitHub Exploit DB Packet Storm

257203	-	ftplib	ftplib	Buffer overflow in the set_umask function in QFTP in LIBFtp 3.1-1 allows local users to execute arbitrary code via a long -m argument. NOTE: CVE disputes this issue because QFTP is not setuid, and it…	NVD-CWE-Other	CVE-2007-1485	2024-08-7 22:15	2007-03-17	Show	GitHub Exploit DB Packet Storm

257204	-	phpalbum.net	phpalbum	PHP remote file inclusion vulnerability in common.php in PHP Photo Album allows remote attackers to execute arbitrary PHP code via a URL in the db_file parameter. NOTE: CVE disputes this vulnerabili…	NVD-CWE-Other	CVE-2007-1456	2024-08-7 22:15	2007-03-15	Show	GitHub Exploit DB Packet Storm

257205	-	pblang	pblang	PHP remote file inclusion vulnerability in index.php in PBLang (PBL) 4.60 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the dbpath parameter, a different vector than …	NVD-CWE-Other	CVE-2007-1052	2024-08-7 22:15	2007-02-22	Show	GitHub Exploit DB Packet Storm

257206	-	warped_systems	phpxmms	Multiple PHP remote file inclusion vulnerabilities in phpXmms 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the tcmdp parameter to (1) phpxmmsb.php or (2) phpxmmst.php. NOTE:…	NVD-CWE-Other	CVE-2007-1053	2024-08-7 22:15	2007-02-22	Show	GitHub Exploit DB Packet Storm

257207	-	mcrefer	mcrefer	SQL injection vulnerability in install.php in mcRefer allows remote attackers to execute arbitrary SQL commands via unspecified vectors. NOTE: this issue has been disputed by a third party, stating t…	CWE-89 SQL Injection	CVE-2007-0875	2024-08-7 22:15	2007-02-13	Show	GitHub Exploit DB Packet Storm

257208	-	phpcoin	phpcoin	PHP remote file inclusion vulnerability in modules/mail/index.php in phpCOIN RC-1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the _CCFG['_PKG_PATH_MDLS'] parameter.…	NVD-CWE-Other	CVE-2007-0861	2024-08-7 22:15	2007-02-9	Show	GitHub Exploit DB Packet Storm

257209	-	gnopaste	gnopaste	PHP remote file inclusion vulnerability in index.php in gnopaste 0.5.3 and earlier allows remote attackers to execute arbitrary PHP code via the GNP_REAL_PATH parameter. NOTE: CVE and a third party …	CWE-94 Code Injection	CVE-2007-0862	2024-08-7 22:15	2007-02-9	Show	GitHub Exploit DB Packet Storm

257210	-	laboratory_for_optical_and_computational_instrumentation	local_calendar_system	Multiple PHP remote file inclusion vulnerabilities in local Calendar System 1.1 allow remote attackers to execute arbitrary PHP code via a URL in the (1) TEMPLATE_DIR parameter to (a) showinvoices.ph…	NVD-CWE-Other	CVE-2007-0860	2024-08-7 22:15	2007-02-9	Show	GitHub Exploit DB Packet Storm