Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241101	6.4	警告	AlstraSoft	-	AlstraSoft E-Friends の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4080	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241102	4.3	警告	AlstraSoft	-	AlstraSoft SMS Text Messaging Enterprise におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4079	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241103	4.3	警告	AlstraSoft	-	AlstraSoft Text Ads Enterprise におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4078	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241104	4.3	警告	AlstraSoft	-	AlstraSoft Video Share Enterprise におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4077	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241105	7.5	危険	ASP indir	-	Alisveris Sitesi Scripti の index.asp における SQL インジェクションの脆弱性	-	CVE-2007-4076	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241106	4.3	警告	ASP indir	-	Alisveris Sitesi Scripti の index.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-4075	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241107	10	危険	SUSE centre for speech technology research	-	Gentoo Linux などの CSTR Festival のディフォルト設定における任意のコマンドを実行される脆弱性	CWE-16 環境設定	CVE-2007-4074	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241108	9.3	危険	clever components	-	Clever Internet ActiveX Suite の CLINETSUITEX6.OCX の clInetSuiteX6.clWebDav ActiveX コントロールにおける絶対パストラバーサルの脆弱性	-	CVE-2007-4067	2012-06-26 15:54	2007-07-30	Show	GitHub Exploit DB Packet Storm

241109	4.3	警告	Drupal	-	Drupal におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-4064	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

241110	4.3	警告	Drupal	-	Drupal におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-4063	2012-06-26 15:54	2007-07-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
272401	-	-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-0689. Reason: This candidate is a duplicate of CVE-2009-0689. Certain codebase relationships were not originally clear. Not…	-	CVE-2009-1563	2023-11-7 11:03	2009-10-29	Show	GitHub Exploit DB Packet Storm

272402	-	prototypejs debian	prototype debian_linux	Unspecified vulnerability in Prototype JavaScript framework (prototypejs) before 1.6.0.2 allows attackers to make "cross-site ajax requests" via unknown vectors.	NVD-CWE-noinfo	CVE-2008-7220	2023-11-7 11:03	2009-09-14	Show	GitHub Exploit DB Packet Storm

272403	-	microsoft	office	Microsoft Office 2008 for Mac, when running on Macintosh systems that restrict Office access to administrators, does not enforce this restriction for user ID 502, which allows local users with that I…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-7217	2023-11-7 11:03	2009-09-14	Show	GitHub Exploit DB Packet Storm

272404	-	greensql	greensql_firewall	GreenSQL Firewall (greensql-fw), possibly before 0.9.2 or 0.9.4, allows remote attackers to bypass the SQL injection protection mechanism via a WHERE clause containing an expression such as "x=y=z", …	CWE-89 SQL Injection	CVE-2008-6992	2023-11-7 11:03	2009-08-19	Show	GitHub Exploit DB Packet Storm

272405	-	-	-	Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2009-1899. Reason: This candidate is a duplicate of CVE-2009-1899. Notes: All CVE users should reference CVE-2009-1899 instead of…	-	CVE-2009-0907	2023-11-7 11:03	2009-08-14	Show	GitHub Exploit DB Packet Storm

272406	-	ocsinventory-ng	ocs_inventory_ng ocsinventory-agent	Untrusted search path vulnerability in Agent/Backend.pm in Ocsinventory-Agent before 0.0.9.3, and 1.x before 1.0.1, in OCS Inventory allows local users to gain privileges via a Trojan horse Perl modu…	NVD-CWE-Other	CVE-2009-0667	2023-11-7 11:03	2009-07-10	Show	GitHub Exploit DB Packet Storm

272407	-	xvid	xvid	Heap-based buffer overflow in the decoder_create function in the initialization functionality in xvidcore/src/decoder.c in Xvid before 1.2.2, as used by Windows Media Player and other applications, a…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0894	2023-11-7 11:03	2009-06-3	Show	GitHub Exploit DB Packet Storm

272408	-	xvid	xvid	Multiple heap-based buffer overflows in xvidcore/src/decoder.c in the xvidcore library in Xvid before 1.2.2, as used by Windows Media Player and other applications, allow remote attackers to execute …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-0893	2023-11-7 11:03	2009-06-3	Show	GitHub Exploit DB Packet Storm

272409	-	linux debian canonical	linux_kernel debian_linux ubuntu_linux	Multiple buffer overflows in the cifs subsystem in the Linux kernel before 2.6.29.4 allow remote CIFS servers to cause a denial of service (memory corruption) and possibly have unspecified other impa…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2009-1633	2023-11-7 11:03	2009-05-29	Show	GitHub Exploit DB Packet Storm

272410	-	google	android	The PackageManagerService class in services/java/com/android/server/PackageManagerService.java in Android 1.5 through 1.5 CRB42 does not properly check developer certificates during processing of sha…	CWE-287 Improper Authentication	CVE-2009-1754	2023-11-7 11:03	2009-05-27	Show	GitHub Exploit DB Packet Storm