Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240951 9.3 危険 アップル - Apple Mac OS X の Address Book におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-4708 2012-06-26 15:54 2007-12-17 Show GitHub Exploit DB Packet Storm
240952 4 警告 Firebird Project - Firebird の Services API におけるサーバログ (firebird.log) を読まれる脆弱性 CWE-200
CWE-264
CVE-2007-4669 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240953 5 警告 Firebird Project - Firebird のサーバにおける任意のファイルの存在を特定される脆弱性 CWE-119
CWE-264
CVE-2007-4668 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240954 5 警告 Firebird Project - Firebird の Services API におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2007-4667 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240955 5 警告 Firebird Project - Firebird のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2007-4666 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240956 5 警告 Firebird Project - Firebird のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2007-4665 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240957 7.5 危険 Firebird Project - Firebird のデータベース接続機能における詳細不明な脆弱性 CWE-119
CWE-20
CWE-DesignError
CVE-2007-4664 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240958 2.1 注意 backup manager - Backup Manager の backup-manager-upload における重要な情報を取得される脆弱性 CWE-200
CWE-255
CWE-310
CVE-2007-4656 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240959 5 警告 teamf1
シスコシステムズ
OpenBSD		 - Cisco CSS シリーズ 11000 デバイスの Cisco WebNS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-4654 2012-06-26 15:54 2007-09-4 Show GitHub Exploit DB Packet Storm
240960 5 警告 アドビシステムズ - Adobe Connect Enterprise Server における管理者に限定されている特定のページを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4651 2012-06-26 15:54 2007-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292551 - gravity-gtd gravity-gtd Eval injection vulnerability in library/setup/rpc.php in Gravity Getting Things Done (GTD) 0.4.5 and earlier allows remote attackers to execute arbitrary PHP code via the objectname parameter. CWE-20
 Improper Input Validation  		CVE-2008-5963 2017-09-29 10:32 2009-01-24 Show GitHub Exploit DB Packet Storm
292552 - lokicms lokicms Directory traversal vulnerability in index.php in LokiCMS 0.3.4 and earlier, when magic_quotes_gpc is disabled, allows remote attackers to check for the existence of arbitrary files via a .. (dot dot… CWE-22
Path Traversal 		CVE-2008-5965 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292553 - globsy globsy globsy_edit.php in Globsy 1.0 and earlier allows remote attackers to create or overwrite arbitrary files via a filename in the file parameter and file contents in the data parameter. CWE-20
 Improper Input Validation  		CVE-2008-5966 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292554 - sunbyte e-flower SQL injection vulnerability in popupproduct.php in Sunbyte e-Flower allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2008-5969 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292555 - activewebsoftwares active_business_directory SQL injection vulnerability in default.asp in Active Business Directory 2 allows remote attackers to execute arbitrary SQL commands via the catid parameter. CWE-89
SQL Injection 		CVE-2008-5972 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292556 - activewebsoftwares active_web_mail SQL injection vulnerability in login.aspx in Active Web Mail 4.0 allows remote attackers to execute arbitrary SQL commands via the password parameter. CWE-89
SQL Injection 		CVE-2008-5973 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292557 - activewebsoftwares active_price_comparison Multiple SQL injection vulnerabilities in login.aspx in Active Price Comparison 4.0 allow remote attackers to execute arbitrary SQL commands via the (1) password and (2) username fields. CWE-89
SQL Injection 		CVE-2008-5974 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292558 - ocean12_technologies mailing_list_manager Multiple SQL injection vulnerabilities in Ocean12 Mailing List Manager Gold allow remote attackers to execute arbitrary SQL commands via the Email parameter to (1) default.asp and (2) s_edit.asp. CWE-89
SQL Injection 		CVE-2008-5978 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292559 - ocean12_technologies mailing_list_manager Cross-site scripting (XSS) vulnerability in default.asp in Ocean12 Mailing List Manager Gold allows remote attackers to inject arbitrary web script or HTML via the Email parameter. CWE-79
Cross-site Scripting 		CVE-2008-5979 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm
292560 - ocean12_technologies mailing_list_manager Ocean12 Mailing List Manager Gold stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for o12mail.mdb. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-5980 2017-09-29 10:32 2009-01-27 Show GitHub Exploit DB Packet Storm