Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241391 7.5 危険 Phorum - Phorum における SQL インジェクションの脆弱性 - CVE-2007-2339 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
241392 7.5 危険 Phorum - Phorum の include/admin/banlist.php におけるクロスサイトリクエストフォージェリの脆弱性 - CVE-2007-2338 2012-09-25 16:47 2007-04-18 Show GitHub Exploit DB Packet Storm
241393 4.3 警告 Exponent CMS project - Exponent CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-2337 2012-09-25 16:47 2007-04-27 Show GitHub Exploit DB Packet Storm
241394 7.8 危険 intervations - InterVations NaviCOPA Web Server におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-2336 2012-09-25 16:47 2007-04-27 Show GitHub Exploit DB Packet Storm
241395 7.5 危険 Nortel Networks - Nortel VPN Router における管理インターフェースにアクセスされる脆弱性 - CVE-2007-2334 2012-09-25 16:47 2007-04-27 Show GitHub Exploit DB Packet Storm
241396 10 危険 Nortel Networks - Nortel VPN Router におけるプライベートネットワークにアクセスされる脆弱性 - CVE-2007-2333 2012-09-25 16:47 2007-04-27 Show GitHub Exploit DB Packet Storm
241397 9 危険 Nortel Networks - Nortel VPN Router におけるパスワードを取得される脆弱性 - CVE-2007-2332 2012-09-25 16:47 2007-04-27 Show GitHub Exploit DB Packet Storm
241398 7.5 危険 labs4 - HTMLeditbox の _editor.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2327 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
241399 10 危険 mynewsgroup - MyNewsGroups :) の include.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2325 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
241400 7.8 危険 julmajanne - JulmaCMS の file.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2324 2012-09-25 16:47 2007-04-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269521 5.9 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin involving improper enforcement of the IP-based authentication rules. When phpMyAdmin is used with IPv6 in a proxy server environment, and the proxy server is in … CWE-254
 7PK - Security Features 		CVE-2016-6624 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269522 6.5 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. An authorized user can cause a denial-of-service (DoS) attack on a server by passing large values to a loop. All 4.6.x versions (prior to 4.6.4), 4.4.x versions… CWE-20
 Improper Input Validation  		CVE-2016-6623 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269523 5.9 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. An unauthenticated user is able to execute a denial-of-service (DoS) attack by forcing persistent connections when phpMyAdmin is running with $cfg['AllowArbitra… CWE-399
 Resource Management Errors 		CVE-2016-6622 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269524 9.8 CRITICAL
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. Some data is passed to the PHP unserialize() function without verification that it's valid serialized data. The unserialization can result in code execution bec… CWE-502
 Deserialization of Untrusted Data 		CVE-2016-6620 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269525 8.8 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. In the user interface preference feature, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.6.4… CWE-89
SQL Injection 		CVE-2016-6619 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269526 6.5 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. The transformation feature allows a user to trigger a denial-of-service (DoS) attack against the server. All 4.6.x versions (prior to 4.6.4), 4.4.x versions (pr… NVD-CWE-noinfo
CVE-2016-6618 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269527 8.1 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. A specially crafted database and/or table name can be used to trigger an SQL injection attack through the export functionality. All 4.6.x versions (prior to 4.6… CWE-89
SQL Injection 		CVE-2016-6617 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269528 7.5 HIGH
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin. In the "User group" and "Designer" features, a user can execute an SQL injection attack against the account of the control user. All 4.6.x versions (prior to 4.… CWE-89
SQL Injection 		CVE-2016-6616 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269529 6.1 MEDIUM
Network 		phpmyadmin phpmyadmin XSS issues were discovered in phpMyAdmin. This affects navigation pane and database/table hiding feature (a specially-crafted database name can be used to trigger an XSS attack); the "Tracking" featu… CWE-79
Cross-site Scripting 		CVE-2016-6615 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm
269530 6.8 MEDIUM
Network 		phpmyadmin phpmyadmin An issue was discovered in phpMyAdmin involving the %u username replacement functionality of the SaveDir and UploadDir features. When the username substitution is configured, a specially-crafted user… CWE-22
Path Traversal 		CVE-2016-6614 2024-11-21 11:56 2016-12-11 Show GitHub Exploit DB Packet Storm