Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239581 7.5 危険 Papoo Software - Papoo の kontakt.php における SQL インジェクションの脆弱性 - CVE-2007-2320 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239582 7.5 危険 miniBB
tosmo mambo		 - TOSMO/Mambo などの製品における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2317 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239583 10 危険 open business management - OBM の admin script における脆弱性 - CVE-2007-2316 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239584 7.8 危険 minishare - MiniShare におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2315 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239585 7.5 危険 mxbb - mxBB 用の Shotcast モジュールにおける PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2313 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239586 6.8 警告 news manager deluxe - NMDeluxe の includes/footer.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2303 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
239587 10 危険 ヒューレット・パッカード - HP OpenView Storage Data Protector における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2007-2281 2012-09-25 16:47 2009-12-16 Show GitHub Exploit DB Packet Storm
239588 10 危険 ヒューレット・パッカード - HP OpenView Storage Data Protector におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2280 2012-09-25 16:47 2009-12-16 Show GitHub Exploit DB Packet Storm
239589 9.3 危険 マイクロソフト - Microsoft IAG で使用される WhlMgr.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-2238 2012-09-25 16:47 2009-04-16 Show GitHub Exploit DB Packet Storm
239590 7.5 危険 マイクロソフト - Microsoft Internet Explorer 7.0 の Digest Authentication サポートにおける CRLF インジェクションの脆弱性 - CVE-2007-2291 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
286001 - sqlbuddy sql_buddy Cross-site scripting (XSS) vulnerability in browse.php in SQL Buddy 1.3.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the table parameter. CWE-79
Cross-site Scripting 		CVE-2014-4304 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286002 - drupac touch Multiple cross-site scripting (XSS) vulnerabilities in the Touch theme 7.x-1.x before 7.x-1.9 for Drupal allow remote authenticated users with the Administer themes permission to inject arbitrary web… CWE-79
Cross-site Scripting 		CVE-2014-4303 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286003 - ham3d ham3d_shop_engine Cross-site scripting (XSS) vulnerability in rating/rating.php in HAM3D Shop Engine allows remote attackers to inject arbitrary web script or HTML via the ID parameter. CWE-79
Cross-site Scripting 		CVE-2014-4302 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286004 - ajenti ajenti Multiple cross-site scripting (XSS) vulnerabilities in the respond_error function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML v… CWE-79
Cross-site Scripting 		CVE-2014-4301 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286005 - ulli_horlacher fex Incomplete blacklist vulnerability in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allows remote attackers to conduct cross-site scripting (XSS) attacks via the addto parameter to fu… NVD-CWE-Other
CVE-2014-3877 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286006 - ulli_horlacher fex Multiple cross-site scripting (XSS) vulnerabilities in Frams' Fast File EXchange (F*EX, aka fex) before fex-20140530 allow remote attackers to inject arbitrary web script or HTML via the (1) akey par… CWE-79
Cross-site Scripting 		CVE-2014-3876 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286007 - dell bsafe_share The TLS implementation in EMC RSA BSAFE-Java Toolkits (aka Share for Java) supports the Extended Random extension during use of the Dual_EC_DRBG algorithm, which makes it easier for remote attackers … CWE-310
Cryptographic Issues 		CVE-2014-4193 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286008 - dell bsafe_share The Dual_EC_DRBG implementation in EMC RSA BSAFE-C Toolkits (aka Share for C and C++) processes certain requests for output bytes by considering only the requested byte count and not the use of cache… CWE-310
Cryptographic Issues 		CVE-2014-4192 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286009 - dell bsafe_share The TLS implementation in EMC RSA BSAFE-C Toolkits (aka Share for C and C++) sends a long series of random bytes during use of the Dual_EC_DRBG algorithm, which makes it easier for remote attackers t… CWE-310
Cryptographic Issues 		CVE-2014-4191 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm
286010 - powerpc-utils_project powerpc-utils snap in powerpc-utils 1.2.20 produces an archive with fstab and yaboot.conf files potentially containing cleartext passwords, and lacks a warning about reviewing this archive to detect included passw… CWE-310
Cryptographic Issues 		CVE-2014-4040 2024-11-21 11:09 2014-06-18 Show GitHub Exploit DB Packet Storm