Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240971	4.3	警告	abledesign	-	AbleDesign Dynamic Picture Frame の pframe.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4624	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240972	4.3	警告	dale mooney	-	Moonware の contact.php における CRLF インジェクションの脆弱性	CWE-20 不適切な入力確認	CVE-2007-4612	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240973	7.5	危険	dale mooney	-	Moonware の viewevent.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4611	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240974	6.8	警告	dale mooney	-	Moonware の config/upload.php における images/ 内の任意の PHP ファイルを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4610	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240975	6.4	警告	eyeOS Project	-	eyeOS における特定の不正な操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-4609	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240976	9.3	危険	quicksoft gate comm software	-	Quiksoft EasyMail SMTP Object のEasyMailSMTPObj ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-4607	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240977	7.5	危険	dinkumsoft.com	-	DL PayCart の viewitem.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4604	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240978	7.5	危険	altercoder	-	ACG News の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-4603	2012-06-26 15:54	2007-08-30	Show	GitHub Exploit DB Packet Storm

240979	6.4	警告	entrust	-	Entrust ESP における証明書認証を偽装される脆弱性	CWE-255 証明書・パスワード管理	CVE-2007-4594	2012-06-26 15:54	2007-08-29	Show	GitHub Exploit DB Packet Storm

240980	7.5	危険	2532gigs	-	2532\|Gig の activateuser.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4585	2012-06-26 15:54	2007-08-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
279791	-	codeworx_technologies	dcp-portal	Multiple SQL injection vulnerabilities in DCP-Portal 6.1.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the lcat, doc, or uid parameters to index.php, or (2) the mid o…	NVD-CWE-Other	CVE-2005-0454	2018-10-20 00:31	2005-05-2	Show	GitHub Exploit DB Packet Storm

279792	-	rob_flynn mandrakesoft redhat	gaim mandrake_linux mandrake_linux_corporate_server enterprise_linux enterprise_linux_desktop	Gaim before 1.1.3 allows remote attackers to cause a denial of service (infinite loop) via malformed SNAC packets from (1) AIM or (2) ICQ.	NVD-CWE-Other	CVE-2005-0472	2018-10-20 00:31	2005-03-14	Show	GitHub Exploit DB Packet Storm

279793	-	rob_flynn mandrakesoft redhat	gaim mandrake_linux mandrake_linux_corporate_server enterprise_linux enterprise_linux_desktop	The HTML parsing functions in Gaim before 1.1.3 allow remote attackers to cause a denial of service (application crash) via malformed HTML that causes "an invalid memory access," a different vulnerab…	NVD-CWE-Other	CVE-2005-0473	2018-10-20 00:31	2005-03-14	Show	GitHub Exploit DB Packet Storm

279794	-	cyrus	imapd	Multiple buffer overflows in Cyrus IMAPd before 2.2.11 may allow attackers to execute arbitrary code via (1) an off-by-one error in the imapd annotate extension, (2) an off-by-one error in "cached he…	NVD-CWE-Other	CVE-2005-0546	2018-10-20 00:31	2005-05-2	Show	GitHub Exploit DB Packet Storm

279795	-	xli altlinux suse	xli alt_linux suse_linux	xloadimage before 4.1-r2, and xli before 1.17, allows attackers to execute arbitrary commands via shell metacharacters in filenames for compressed images, which are not properly quoted when calling t…	NVD-CWE-Other	CVE-2005-0638	2018-10-20 00:31	2005-03-2	Show	GitHub Exploit DB Packet Storm

279796	-	stadtaus	tell_a_friend_script	PHP remote file inclusion vulnerability in tell_a_friend.inc.php for Tell A Friend Script 2.7 before 20050305 allows remote attackers to execute arbitrary PHP code by modifying the script_root parame…	CWE-94 Code Injection	CVE-2005-0679	2018-10-20 00:31	2005-05-2	Show	GitHub Exploit DB Packet Storm

279797	-	microsoft	windows_2003_server windows_xp	Windows Server 2003 and XP SP2, with Windows Firewall turned off, allows remote attackers to cause a denial of service (CPU consumption) via a TCP packet with the SYN flag set and the same destinatio…	NVD-CWE-Other	CVE-2005-0688	2018-10-20 00:31	2005-03-5	Show	GitHub Exploit DB Packet Storm

279798	-	argosoft	ftp_server	Buffer overflow in ArGoSoft FTP Server 1.4.2.8 allows remote authenticated users to execute arbitrary code via a long DELE command. NOTE: this issue was later reported to also affect 1.4.3.5.	NVD-CWE-Other	CVE-2005-0696	2018-10-20 00:31	2005-03-8	Show	GitHub Exploit DB Packet Storm

279799	-	mcnews	mcnews	PHP remote file inclusion vulnerability in admin/header.php in PHP mcNews 1.3 allows remote attackers to execute arbitrary PHP code by modifying the skinfile parameter to reference a URL on a remote …	CWE-94 Code Injection	CVE-2005-0720	2018-10-20 00:31	2005-03-8	Show	GitHub Exploit DB Packet Storm

279800	-	linux	linux_kernel	ptrace in Linux kernel 2.6.8.1 does not properly verify addresses on the amd64 platform, which allows local users to cause a denial of service (kernel crash).	CWE-399 Resource Management Errors	CVE-2005-0756	2018-10-20 00:31	2005-06-8	Show	GitHub Exploit DB Packet Storm