Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241111 9 危険 frank yaul - Frank Yaul corehttp の http.c の HttpSprockMake 関数におけるバッファオーバーフローの脆弱性 - CVE-2007-4060 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241112 4.3 警告 DELL EMC (旧 EMC Corporation) - EMC VMware の vielib.dll の特定の ActiveX コントロール における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-4058 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241113 7.5 危険 adult directory - Prozilla Adult Directory の Directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-4056 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241114 7.5 危険 8pixel - SimpleBlog の comments_get.asp における SQL インジェクションの脆弱性 - CVE-2007-4055 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241115 10 危険 adempiere - ADempiere Bazaar の WebUI におけるシステムレベルのウインドウにアクセスされる脆弱性 - CVE-2007-4050 2012-06-26 15:54 2007-07-30 Show GitHub Exploit DB Packet Storm
241116 6.4 警告 geoblog - geoBlog における任意のブログを削除される脆弱性 - CVE-2007-4047 2012-06-26 15:54 2007-07-27 Show GitHub Exploit DB Packet Storm
241117 6.8 警告 crystal reality llc - CrystalPlayer Pro におけるバッファオーバーフローの脆弱性 - CVE-2007-4032 2012-06-26 15:54 2007-07-27 Show GitHub Exploit DB Packet Storm
241118 6.6 警告 areca - Areca CLI の cli32 におけるバッファオーバーフローの脆弱性 - CVE-2007-4027 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
241119 4.3 警告 cPanel - cPanel の frontend/x/htaccess/changepro.html におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4022 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
241120 4.3 警告 brain book software - Brain Book Software Secure の login.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-4021 2012-06-26 15:54 2007-07-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273071 - wordpress wordpress Cross-site scripting (XSS) vulnerability in wp-admin/vars.php in WordPress before 2.0.10 RC2, and before 2.1.3 RC2 in the 2.1 series, allows remote authenticated users with theme privileges to inject… NVD-CWE-Other
CVE-2007-1622 2023-11-7 11:00 2007-03-23 Show GitHub Exploit DB Packet Storm
273072 - linux linux_kernel net/ipv6/tcp_ipv6.c in Linux kernel 2.6.x up to 2.6.21-rc3 inadvertently copies the ipv6_fl_socklist from a listening TCP socket to child sockets, which allows local users to cause a denial of servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2007-1592 2023-11-7 11:00 2007-03-23 Show GitHub Exploit DB Packet Storm
273073 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-1438. Reason: This candidate is a duplicate of CVE-2007-1438. Notes: All CVE users should reference CVE-2007-1438 instead of… - CVE-2007-1570 2023-11-7 11:00 2007-03-22 Show GitHub Exploit DB Packet Storm
273074 - sql-ledger
ledgersmb 		sql-ledger
ledgersmb 		Directory traversal vulnerability in am.pl in (1) SQL-Ledger 2.6.27 and earlier, and (2) LedgerSMB before 1.2.0, allows remote attackers to run arbitrary executables and bypass authentication via a .… NVD-CWE-Other
CVE-2007-1540 2023-11-7 11:00 2007-03-21 Show GitHub Exploit DB Packet Storm
273075 - sql-ledger sql-ledger Directory traversal vulnerability in am.pl in SQL-Ledger 2.6.27 only checks for the presence of a NULL (%00) character to protect against directory traversal attacks, which allows remote attackers to… NVD-CWE-Other
CVE-2007-1541 2023-11-7 11:00 2007-03-21 Show GitHub Exploit DB Packet Storm
273076 - conga conga The luci server component in conga preserves the password between page loads for the Add System/Cluster task flow by storing the password in the Value attribute of a password entry field, which allow… NVD-CWE-Other
CVE-2007-1462 2023-11-7 11:00 2007-03-16 Show GitHub Exploit DB Packet Storm
273077 - mplayer mplayer The DirectShow loader (loader/dshow/DS_VideoDecoder.c) in MPlayer 1.0rc1 and earlier, as used in xine-lib, does not set the biSize before use in a memcpy, which allows user-assisted remote attackers … NVD-CWE-Other
CVE-2007-1387 2023-11-7 11:00 2007-03-14 Show GitHub Exploit DB Packet Storm
273078 - virtuemart virtuemart Cross-site scripting (XSS) vulnerability in ps_cart.php in VirtueMart before 20070116 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this issue might o… NVD-CWE-Other
CVE-2007-1096 2023-11-7 11:00 2007-02-27 Show GitHub Exploit DB Packet Storm
273079 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2007-0396. Reason: This candidate is a duplicate of CVE-2007-0396. Notes: All CVE users should reference CVE-2007-0396 instead of… - CVE-2007-0818 2023-11-7 11:00 2007-02-7 Show GitHub Exploit DB Packet Storm
273080 - phorum phorum Cross-site scripting (XSS) vulnerability in the core in Phorum before 5.1.18 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. NVD-CWE-Other
CVE-2007-0767 2023-11-7 11:00 2007-02-6 Show GitHub Exploit DB Packet Storm