Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240971 4.3 警告 abledesign - AbleDesign Dynamic Picture Frame の pframe.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4624 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240972 4.3 警告 dale mooney - Moonware の contact.php における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2007-4612 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240973 7.5 危険 dale mooney - Moonware の viewevent.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4611 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240974 6.8 警告 dale mooney - Moonware の config/upload.php における images/ 内の任意の PHP ファイルを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4610 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240975 6.4 警告 eyeOS Project - eyeOS における特定の不正な操作を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-4609 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240976 9.3 危険 quicksoft
gate comm software		 - Quiksoft EasyMail SMTP Object のEasyMailSMTPObj ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-4607 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240977 7.5 危険 dinkumsoft.com - DL PayCart の viewitem.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4604 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240978 7.5 危険 altercoder - ACG News の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4603 2012-06-26 15:54 2007-08-30 Show GitHub Exploit DB Packet Storm
240979 6.4 警告 entrust - Entrust ESP における証明書認証を偽装される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2007-4594 2012-06-26 15:54 2007-08-29 Show GitHub Exploit DB Packet Storm
240980 7.5 危険 2532gigs - 2532|Gig の activateuser.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4585 2012-06-26 15:54 2007-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
306381 - double_precision_incorporated courier_mta Courier sqwebmail before 0.40.0 does not quickly drop privileges after startup in certain cases, which could allow local users to read arbitrary files. NVD-CWE-Other
CVE-2002-1311 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
306382 - iplanet iplanet_web_server Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote attackers to execute web script or HTML as the iPlanet administrator by injecting the… NVD-CWE-Other
CVE-2002-1315 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
306383 - iplanet iplanet_web_server importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows rem… NVD-CWE-Other
CVE-2002-1316 2016-10-18 11:25 2002-11-29 Show GitHub Exploit DB Packet Storm
306384 - university_of_washington pine Pine 4.44 and earlier allows remote attackers to cause a denial of service (core dump and failed restart) via an email message with a From header that contains a large number of quotation marks ("). NVD-CWE-Other
CVE-2002-1320 2016-10-18 11:25 2002-12-11 Show GitHub Exploit DB Packet Storm
306385 - phpwebsite phpwebsite modsecurity.php 1.10 and earlier, in phpWebSite 0.8.2 and earlier, allows remote attackers to execute arbitrary PHP source code via an inc_prefix parameter that points to the malicious code. NVD-CWE-Other
CVE-2002-1135 2016-10-18 11:24 2002-10-4 Show GitHub Exploit DB Packet Storm
306386 - hp procurve_switch_4000m The HTTP administration interface for HP Procurve 4000M Switch firmware before C.09.16, with stacking features and remote administration enabled, does not authenticate requests to reset the device, w… NVD-CWE-Other
CVE-2002-1147 2016-10-18 11:24 2002-10-11 Show GitHub Exploit DB Packet Storm
306387 - hp procurve_switch_4000m Successful exploitation requires that stacking features and remote administration are enabled. NVD-CWE-Other
CVE-2002-1147 2016-10-18 11:24 2002-10-11 Show GitHub Exploit DB Packet Storm
306388 - invision_power_services invision_board The installation procedure for Invision Board suggests that users install the phpinfo.php program under the web root, which leaks sensitive information such as absolute pathnames, OS information, and… NVD-CWE-Other
CVE-2002-1149 2016-10-18 11:24 2002-10-11 Show GitHub Exploit DB Packet Storm
306389 - microsoft netmeeting The Remote Desktop Sharing (RDS) Screen Saver Protection capability for Microsoft NetMeeting 3.01 through SP2 (4.4.3396) allows attackers with physical access to hijack remote sessions by entering ce… NVD-CWE-Other
CVE-2002-1150 2016-10-18 11:24 2002-10-11 Show GitHub Exploit DB Packet Storm
306390 - kde konqueror
kde 		The cross-site scripting protection for Konqueror in KDE 2.2.2 and 3.0 through 3.0.3 does not properly initialize the domains on sub-frames and sub-iframes, which can allow remote attackers to execut… NVD-CWE-Other
CVE-2002-1151 2016-10-18 11:24 2002-10-11 Show GitHub Exploit DB Packet Storm