Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241101 6.4 警告 AlstraSoft - AlstraSoft E-Friends の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4080 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241102 4.3 警告 AlstraSoft - AlstraSoft SMS Text Messaging Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4079 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241103 4.3 警告 AlstraSoft - AlstraSoft Text Ads Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4078 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241104 4.3 警告 AlstraSoft - AlstraSoft Video Share Enterprise におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4077 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241105 7.5 危険 ASP indir - Alisveris Sitesi Scripti の index.asp における SQL インジェクションの脆弱性 - CVE-2007-4076 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241106 4.3 警告 ASP indir - Alisveris Sitesi Scripti の index.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4075 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241107 10 危険 SUSE
centre for speech technology research		 - Gentoo Linux などの CSTR Festival のディフォルト設定における任意のコマンドを実行される脆弱性 CWE-16
環境設定 		CVE-2007-4074 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241108 9.3 危険 clever components - Clever Internet ActiveX Suite の CLINETSUITEX6.OCX の clInetSuiteX6.clWebDav ActiveX コントロールにおける絶対パストラバーサルの脆弱性 - CVE-2007-4067 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241109 4.3 警告 Drupal - Drupal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-4064 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
241110 4.3 警告 Drupal - Drupal におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-4063 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273061 - - - Rejected reason: The getlock function in aimage/aimage.cpp in AFFLIB 2.2.8 and earlier allows local users to overwrite arbitrary files via a symlink attack on temporary lock files (aka "time-of-check… - CVE-2007-2056 2023-11-7 11:00 2007-05-1 Show GitHub Exploit DB Packet Storm
273062 - alexander_v._lukyanov lftp mirror --script in lftp before 3.5.9 does not properly quote shell metacharacters, which might allow remote user-assisted attackers to execute shell commands via a malicious script. NOTE: it is not … NVD-CWE-Other
CVE-2007-2348 2023-11-7 11:00 2007-04-28 Show GitHub Exploit DB Packet Storm
273063 - linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		A typo in Linux kernel 2.6 before 2.6.21-rc6 and 2.4 before 2.4.35 causes RTA_MAX to be used as an array size instead of RTN_MAX, which leads to an "out of bound access" by the (1) dn_fib_props (dn_f… CWE-20
 Improper Input Validation  		CVE-2007-2172 2023-11-7 11:00 2007-04-23 Show GitHub Exploit DB Packet Storm
273064 - apache http_server suexec in Apache HTTP Server (httpd) 2.2.3 uses a partial comparison for verifying whether the current directory is within the document root, which might allow local users to perform unauthorized ope… NVD-CWE-Other
CVE-2007-1742 2023-11-7 11:00 2007-04-14 Show GitHub Exploit DB Packet Storm
273065 - apache http_server suexec in Apache HTTP Server (httpd) 2.2.3 does not verify combinations of user and group IDs on the command line, which might allow local users to leverage other vulnerabilities to create arbitrary … NVD-CWE-Other
CVE-2007-1743 2023-11-7 11:00 2007-04-14 Show GitHub Exploit DB Packet Storm
273066 - qt qt The UTF-8 decoder in codecs/qutfcodec.cpp in Qt 3.3.8 and 4.2.3 does not reject long UTF-8 sequences as required by the standard, which allows remote attackers to conduct cross-site scripting (XSS) a… NVD-CWE-Other
CVE-2007-0242 2023-11-7 11:00 2007-04-4 Show GitHub Exploit DB Packet Storm
273067 - jsboard jsboard Directory traversal vulnerability in login.php in JSBoard before 2.0.12 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the table parameter, as demonstrated… NVD-CWE-Other
CVE-2007-1842 2023-11-7 11:00 2007-04-4 Show GitHub Exploit DB Packet Storm
273068 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1873. Reason: This candidate is a duplicate of CVE-2007-1873. Notes: All CVE users should reference CVE-2007-1873 instead of… - CVE-2007-1769 2023-11-7 11:00 2007-03-30 Show GitHub Exploit DB Packet Storm
273069 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-4843. Reason: This candidate is a duplicate of CVE-2006-4843. Notes: All CVE users should reference CVE-2006-4843 instead of… - CVE-2007-1740 2023-11-7 11:00 2007-03-29 Show GitHub Exploit DB Packet Storm
273070 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2006-4606. Reason: This candidate is a duplicate of CVE-2006-4606. Notes: All CVE users should reference CVE-2006-4606 instead of… - CVE-2007-1627 2023-11-7 11:00 2007-03-24 Show GitHub Exploit DB Packet Storm