Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240941	3.5	注意	Claroline Consortium	-	Claroline の admin/adminusers.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4741	2012-06-26 15:54	2007-09-6	Show	GitHub Exploit DB Packet Storm

240942	5	警告	Debian	-	reprepro における一見有効な Release.gpg ファイルを作成し配布される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4739	2012-06-26 15:54	2007-09-2	Show	GitHub Exploit DB Packet Storm

240943	7.5	危険	cartkeeper	-	CartKeeper CKGold Shopping Cart の category.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4736	2012-06-26 15:54	2007-09-6	Show	GitHub Exploit DB Packet Storm

240944	9.3	危険	Aztech Group Ltd	-	Aztech DSL600EU ルータにおける Web インターフェースに接続される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4733	2012-06-26 15:54	2007-09-6	Show	GitHub Exploit DB Packet Storm

240945	4.3	警告	Apache Software Foundation	-	Apache Tomcat の cal2.jsp における任意のユーザとしてイベントを追加される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-4724	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

240946	7.5	危険	jasio.net Apache Software Foundation	-	Ragnarok Online Control Panel におけるディレクトリトラバーサルの脆弱性	CWE-22 CWE-287	CVE-2007-4723	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

240947	7.5	危険	212cafe	-	212cafeBoard の read.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4719	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

240948	5.1	警告	Claroline Consortium	-	Claroline の inc/lib/language.lib.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4718	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

240949	3.5	注意	Claroline Consortium	-	Claroline におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4717	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

240950	7.5	危険	enetman	-	eNetman の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-4712	2012-06-26 15:54	2007-09-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272601	-	linux	linux_kernel	Stack consumption vulnerability in the do_page_fault function in arch/x86/mm/fault.c in the Linux kernel before 2.6.28.5 allows local users to cause a denial of service (memory corruption) or possibl…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0605	2023-11-7 11:03	2009-02-18	Show	GitHub Exploit DB Packet Storm

272602	-	barnowl ktools	barnowl owl	Multiple buffer overflows in (a) BarnOwl before 1.0.5 and (b) owl 2.1.11 allow remote attackers to execute arbitrary code via vectors involving (1) a crafted zcrypt message, related to zcrypt.c; (2) …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0363	2023-11-7 11:03	2009-02-18	Show	GitHub Exploit DB Packet Storm

272603	-	nongnu	samizdat	Multiple cross-site scripting (XSS) vulnerabilities in Samizdat before 0.6.2 allow remote authenticated users to inject arbitrary web script or HTML via the (1) message title or (2) user full name.	CWE-79 Cross-site Scripting	CVE-2009-0359	2023-11-7 11:03	2009-02-18	Show	GitHub Exploit DB Packet Storm

272604	-	pycrypto	arc2	Buffer overflow in the PyCrypto ARC2 module 2.0.1 allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large ARC2 key length.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0544	2023-11-7 11:03	2009-02-13	Show	GitHub Exploit DB Packet Storm

272605	-	android	opencore	Integer underflow in the Huffman decoding functionality (pvmp3_huffman_parsing.cpp) in OpenCORE 2.0 and earlier allows remote attackers to cause a denial of service (process crash) and possibly execu…	CWE-189 Numeric Errors	CVE-2009-0475	2023-11-7 11:03	2009-02-11	Show	GitHub Exploit DB Packet Storm

272606	-	audacityteam	audacity	Stack-based buffer overflow in the String_parse::get_nonspace_quoted function in lib-src/allegro/strparse.cpp in Audacity 1.2.6 and other versions before 1.3.6 allows remote attackers to cause a deni…	CWE-787 Out-of-bounds Write	CVE-2009-0490	2023-11-7 11:03	2009-02-10	Show	GitHub Exploit DB Packet Storm

272607	-	phorum	phorum	Cross-site scripting (XSS) vulnerability in Phorum before 5.2.10 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2009-0488	2023-11-7 11:03	2009-02-10	Show	GitHub Exploit DB Packet Storm

272608	-	-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-5838. Reason: This candidate is a duplicate of CVE-2008-5838. Notes: All CVE users should reference CVE-2008-5838 instead of…	-	CVE-2008-6067	2023-11-7 11:03	2009-02-5	Show	GitHub Exploit DB Packet Storm

272609	-	mozilla	firefox	Mozilla Firefox before 3.0.6 and SeaMonkey do not block links to the (1) about:plugins and (2) about:config URIs from .desktop files, which allows user-assisted remote attackers to bypass the Same Or…	CWE-59 Link Following	CVE-2009-0356	2023-11-7 11:03	2009-02-5	Show	GitHub Exploit DB Packet Storm

272610	-	-	-	Rejected reason: SQL injection vulnerability in index.php in TinyMCE 2.0.1 allows remote attackers to execute arbitrary SQL commands via the menuID parameter. NOTE: CVE and multiple reliable third p…	-	CVE-2008-6049	2023-11-7 11:03	2009-02-5	Show	GitHub Exploit DB Packet Storm