Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240741 9 危険 シスコシステムズ - Cisco Unified ICME などにおける権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2007-5539 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240742 10 危険 シスコシステムズ - CUCM の Centralized TFTP File Locator Service におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5538 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240743 7.8 危険 シスコシステムズ - CUCM におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-5537 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240744 7.5 危険 artmedic webdesign - Artmedic CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-5489 2012-06-26 15:54 2007-10-17 Show GitHub Exploit DB Packet Storm
240745 7.5 危険 Digium - Asterisk-Addons の cdr_addon_mysql における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-5488 2012-06-26 15:54 2007-10-16 Show GitHub Exploit DB Packet Storm
240746 6.3 警告 シスコシステムズ (Linksys)
Atheros		 - Atheros AR5416-AC1E チップセット上の Linksys WRT350N Wi-Fi アクセスポイントのドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-5474 2012-06-26 15:54 2008-09-5 Show GitHub Exploit DB Packet Storm
240747 9.3 危険 JetAudio - COWON America jetAudio Basic におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-5487 2012-06-26 15:54 2007-10-16 Show GitHub Exploit DB Packet Storm
240748 6.4 警告 dotProject - dotProject における Companies モジュールにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-5486 2012-06-26 15:54 2007-10-16 Show GitHub Exploit DB Packet Storm
240749 5 警告 distributed checksum clearinghouse - DCC におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-5481 2012-06-26 15:54 2007-10-16 Show GitHub Exploit DB Packet Storm
240750 4.3 警告 CA Technologies - CA HIPS の Server コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-5472 2012-06-26 15:54 2007-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
291781 - ilias ilias SQL injection vulnerability in repository.php in ILIAS 3.7.4 and earlier allows remote attackers to execute arbitrary SQL commands via the ref_id parameter. CWE-89
SQL Injection 		CVE-2008-5816 2017-09-29 10:32 2009-01-3 Show GitHub Exploit DB Packet Storm
291782 - web_scribble_solutions webclassifieds Multiple SQL injection vulnerabilities in index.php in Web Scribble Solutions webClassifieds 2005 allow remote attackers to execute arbitrary SQL commands via the (1) user and (2) password fields in … CWE-89
SQL Injection 		CVE-2008-5817 2017-09-29 10:32 2009-01-3 Show GitHub Exploit DB Packet Storm
291783 - edreamers edcontainer Directory traversal vulnerability in index.php in eDreamers eDContainer 2.22, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot dot… CWE-22
Path Traversal 		CVE-2008-5818 2017-09-29 10:32 2009-01-3 Show GitHub Exploit DB Packet Storm
291784 - edreamers ednews Directory traversal vulnerability in eDNews_archive.php in eDreamers eDNews 2, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot do… CWE-22
Path Traversal 		CVE-2008-5819 2017-09-29 10:32 2009-01-3 Show GitHub Exploit DB Packet Storm
291785 - edreamers ednews SQL injection vulnerability in eDNews_view.php in eDreamers eDNews 2 allows remote attackers to execute arbitrary SQL commands via the newsid parameter. CWE-89
SQL Injection 		CVE-2008-5820 2017-09-29 10:32 2009-01-3 Show GitHub Exploit DB Packet Storm
291786 - phpicalendar phpicalendar
phpicalendar2.0 		PHP iCalendar 2.24 and earlier allows remote attackers to bypass authentication by setting the phpicalendar and phpicalendar_login cookies to 1. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-5840 2017-09-29 10:32 2009-01-6 Show GitHub Exploit DB Packet Storm
291787 - igamingcms igaming_cms Multiple SQL injection vulnerabilities in iGaming 1.5 and earlier allow remote attackers to execute arbitrary SQL commands via the browse parameter to (1) previews.php and (2) reviews.php, and the (3… CWE-89
SQL Injection 		CVE-2008-5841 2017-09-29 10:32 2009-01-6 Show GitHub Exploit DB Packet Storm
291788 - constructr constructr-cms Constructr CMS 3.02.5 and earlier stores passwords in cleartext in a MySQL database, which allows context-dependent attackers to obtain sensitive information by reading the hash column. CWE-255
Credentials Management 		CVE-2008-5847 2017-09-29 10:32 2009-01-6 Show GitHub Exploit DB Packet Storm
291789 - mypbs mypbs SQL injection vulnerability in index.php in My PHP Baseball Stats (MyPBS) allows remote attackers to execute arbitrary SQL commands via the seasonID parameter. CWE-89
SQL Injection 		CVE-2008-5851 2017-09-29 10:32 2009-01-7 Show GitHub Exploit DB Packet Storm
291790 - emefa emefa_guestbook Emefa Guestbook 3.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request for guestbook.md… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-5852 2017-09-29 10:32 2009-01-7 Show GitHub Exploit DB Packet Storm