Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241381	7.5	危険	F5 Networks	-	F5 FirePass 4100 SSL VPN の my.activation.php3 ファイルにおける Username 任意のシェルコマンドを実行される脆弱性	-	CVE-2007-3097	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241382	7.5	危険	gaya design	-	Comicsense の index.php における SQL インジェクションの脆弱性	-	CVE-2007-3088	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241383	4.9	警告	Agnitum	-	Agnitum Outpost Firewall PRO におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-3086	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241384	7.5	危険	comdev	-	Comdev Web Blogger の sampleblogger.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3084	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241385	7.5	危険	comdev	-	Comdev eCommerce の sampleecommerce.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-3081	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241386	7.1	危険	eqdkp	-	EQdkp の listmembers.php における重要な情報が取得される脆弱性	-	CVE-2007-3079	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241387	4.3	警告	aigaion	-	Aigaion におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3078	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241388	7.5	危険	eqdkp	-	EQdkp の listmembers.php における SQL インジェクションの脆弱性	-	CVE-2007-3077	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241389	9.3	危険	digital river	-	eSellerate SDK の eSellerateControl365.dll の特定の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	-	CVE-2007-3071	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

241390	4.3	警告	bdigital web solutions	-	BDigital Web Solutions WebStudio の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-3070	2012-06-26 15:46	2007-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
288051	-	zomplog	zomplog	admin/upload_files.php in Zomplog 3.8.1 and earlier does not check for administrative credentials, which allows remote attackers to perform administrative actions via a direct request. NOTE: this ca…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2007-5230	2017-10-19 10:30	2007-10-6	Show	GitHub Exploit DB Packet Storm

288052	-	zomplog	zomplog	Unrestricted file upload vulnerability in admin/upload_files.php in Zomplog 3.8.1 and earlier allows remote authenticated administrators to upload and execute arbitrary .php files by sending a modifi…	CWE-20 Improper Input Validation	CVE-2007-5231	2017-10-19 10:30	2007-10-6	Show	GitHub Exploit DB Packet Storm

288053	-	wzdftpd	wzdftpd	Off-by-one error in the do_login_loop function in libwzd-core/wzd_login.c in wzdftpd 0.8.0, 0.8.2, and possibly other versions allows remote attackers to cause a denial of service (daemon crash) via …	CWE-189 CWE-119 Numeric Errors Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5300	2017-10-19 10:30	2007-10-10	Show	GitHub Exploit DB Packet Storm

288054	-	verlihub-project	verlihub_control_panel	Directory traversal vulnerability in index.php in Verlihub Control Panel (VHCP) 1.7 and earlier allows remote attackers to include arbitrary files via a .. (dot dot) in the page parameter.	CWE-94 CWE-22 Code Injection Path Traversal	CVE-2007-5321	2017-10-19 10:30	2007-10-10	Show	GitHub Exploit DB Packet Storm

288055	-	verlihub-project	verlihub_control_panel	Successful exploitation requires that "magic_quotes_gpc" is disabled.	CWE-94 CWE-22 Code Injection Path Traversal	CVE-2007-5321	2017-10-19 10:30	2007-10-10	Show	GitHub Exploit DB Packet Storm

288056	-	cowon_america	jetaudio	Stack-based buffer overflow in COWON America jetAudio Basic 7.0.3 allows user-assisted remote attackers to execute arbitrary code via a long URL in an EXTM3U section of a .m3u file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2007-5487	2017-10-19 10:30	2007-10-17	Show	GitHub Exploit DB Packet Storm

288057	-	devmass	devmass_cart	PHP remote file inclusion vulnerability in admin/kfm/initialise.php in DevMass Shopping Cart 1.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the kfm_base_path param…	CWE-20 Improper Input Validation	CVE-2007-6133	2017-10-19 10:30	2007-11-28	Show	GitHub Exploit DB Packet Storm

288058	-	phpkit	phpkit	SQL injection vulnerability in pkinc/public/article.php in PHPKIT 1.6.4pl1 allows remote attackers to execute arbitrary SQL commands via the contentid parameter in an article action to include.php, a…	CWE-89 SQL Injection	CVE-2007-6134	2017-10-19 10:30	2007-11-28	Show	GitHub Exploit DB Packet Storm

288059	-	p3mbo	content_injector	SQL injection vulnerability in news.php in Content Injector 1.52 allows remote attackers to execute arbitrary SQL commands via the cat parameter to index.php. NOTE: some of these details are obtaine…	CWE-89 SQL Injection	CVE-2007-6137	2017-10-19 10:30	2007-11-28	Show	GitHub Exploit DB Packet Storm

288060	-	iaprcommence	iapr_commence	Multiple PHP remote file inclusion vulnerabilities in IAPR COMMENCE 1.3 allow remote attackers to execute arbitrary PHP code via a URL in the (a) php_root_path and sometimes the (b) privilege_root_pa…	CWE-94 Code Injection	CVE-2007-6147	2017-10-19 10:30	2007-11-28	Show	GitHub Exploit DB Packet Storm