Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240201	4.3	警告	lovecms	-	LoveCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1151	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240202	3.6	注意	lovecms	-	LoveCMS における /modules/content/pictures/tmp/ へ任意のファイルをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-1150	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240203	5	警告	lovecms	-	LoveCMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-1149	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240204	7.5	危険	lovecms	-	LoveCMS の install/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1148	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240205	7.5	危険	hbm	-	hbm の view.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-1147	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240206	4.3	警告	Kayako	-	Kayako Esupport におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1145	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240207	7.8	危険	jeunes-webmasters	-	J-Web Pics Navigator の pn-menu.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-1143	2012-09-25 16:47	2007-03-2	Show	GitHub Exploit DB Packet Storm

240208	4.3	警告	mtcms	-	MTCMS の "Contact Us" 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1132	2012-09-25 16:47	2007-02-26	Show	GitHub Exploit DB Packet Storm

240209	7.5	危険	mtcms	-	MTCMS におけるファイルを実行される脆弱性	CWE-Other その他	CVE-2007-1129	2012-09-25 16:47	2007-02-26	Show	GitHub Exploit DB Packet Storm

240210	6.4	警告	Novell	-	Novell ZENworks 7 Desktop Management Support Pack 1 における特定のフォルダへイメージをアップロードされる脆弱性	-	CVE-2007-1119	2012-09-25 16:47	2007-02-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267001	8.1	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. phpMyAdmin can be used to trigger a remote code execution attack against certain PHP installations that are running with the dbase extension. All 4.6.x versions…	NVD-CWE-noinfo	CVE-2016-6633	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267002	5.9	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin where, under certain conditions, phpMyAdmin may not delete temporary files during the import of ESRI files. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (…	CWE-399 Resource Management Errors	CVE-2016-6632	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267003	7.5	HIGH Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. A user can execute a remote code execution attack against a server when phpMyAdmin is being run as a CGI application. Under certain server configurations, a use…	CWE-78 OS Command	CVE-2016-6631	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267004	6.5	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An authenticated user can trigger a denial-of-service (DoS) attack by entering a very long password at the change password dialog. All 4.6.x versions (prior to …	CWE-20 Improper Input Validation	CVE-2016-6630	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267005	9.8	CRITICAL Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin involving the $cfg['ArbitraryServerRegexp'] configuration directive. An attacker could reuse certain cookie values in a way of bypassing the servers defined by A…	CWE-254 7PK - Security Features	CVE-2016-6629	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267006	6.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An attacker may be able to trigger a user to download a specially crafted malicious SVG file. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.…	CWE-254 7PK - Security Features	CVE-2016-6628	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267007	5.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An attacker can determine the phpMyAdmin host location through the file url.php. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.…	CWE-200 Information Exposure	CVE-2016-6627	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267008	5.4	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An attacker could redirect a user to a malicious web page. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (prior to 4.4.15.8), and 4.0.x versions (prior to…	CWE-254 7PK - Security Features	CVE-2016-6626	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267009	4.3	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin. An attacker can determine whether a user is logged in to phpMyAdmin. The user's session, username, and password are not compromised by this vulnerability. All 4…	CWE-200 Information Exposure	CVE-2016-6625	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm

267010	5.9	MEDIUM Network	phpmyadmin	phpmyadmin	An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in …	CWE-254 7PK - Security Features	CVE-2016-6624	2024-11-21 11:56	2016-12-11	Show	GitHub Exploit DB Packet Storm