Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241681	7.5	危険	Drupal	-	Drupal 用の dba モジュールにおけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-2160	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241682	4.3	警告	Drupal	-	Drupal 用の dba モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2159	2012-06-26 15:46	2007-04-11	Show	GitHub Exploit DB Packet Storm

241683	7.5	危険	cabron connector	-	Cabron Connector の services/samples/inclusionService.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2154	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241684	6.8	警告	atmail pty ltd	-	Atmail の atmail.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2153	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241685	7.8	危険	bluearc	-	BlueArc Titan デバイスの BlueArc-FTPD における他のサイトへトラフィックをリダイレクトする脆弱性	-	CVE-2007-2150	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241686	7.5	危険	bonoestente	-	Joomla! の Be2004-2 テンプレートの index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2143	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241687	7.5	危険	ajportal2php	-	AjPortal2Php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2142	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241688	7.5	危険	franklin huang	-	Franklin Huang Flip の everything.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2140	2012-06-26 15:46	2007-04-19	Show	GitHub Exploit DB Packet Storm

241689	10	危険	CA Technologies	-	複数の CA 製品で使用される CA BrightStor ARCserve Media Server の SUN RPC サービスにおけるスタックベースのバッファオーバーフローの脆弱性	-	CVE-2007-2139	2012-06-26 15:46	2007-04-25	Show	GitHub Exploit DB Packet Storm

241690	7.5	危険	BMC Software	-	BMC Patrol PerformAgent の bgs_sdservice.exe におけるバッファオーバーフローの脆弱性	-	CVE-2007-2136	2012-06-26 15:46	2007-04-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
279651	-	corenews	corenews	Multiple SQL injection vulnerabilities in Core CoreNews 2.0.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) icon_id and (2) userid parameters in preview.php.	NVD-CWE-Other	CVE-2006-2032	2018-10-19 01:37	2006-04-26	Show	GitHub Exploit DB Packet Storm

279652	-	corenews	corenews	PHP remote file inclusion vulnerability in Core CoreNews 2.0.1 and earlier allows remote authenticated users to execute arbitrary commands via the show parameter. NOTE: this is a different vector th…	NVD-CWE-Other	CVE-2006-2033	2018-10-19 01:37	2006-04-26	Show	GitHub Exploit DB Packet Storm

279653	-	flexbb	flexbb	SQL injection vulnerability in function/showprofile.php in FlexBB 0.5.5 allows remote attackers to execute arbitrary SQL commands, and view all usernames and passwords, via the id parameter to the sh…	NVD-CWE-Other	CVE-2006-2034	2018-10-19 01:37	2006-04-26	Show	GitHub Exploit DB Packet Storm

279654	-	websense	websense	Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL.	NVD-CWE-Other	CVE-2006-2035	2018-10-19 01:37	2006-04-26	Show	GitHub Exploit DB Packet Storm

279655	-	iopus	secure_email_attachments	iOpus Secure Email Attachments (SEA), probably 1.0, does not properly handle passwords that consist of repetitions of a substring, which allows attackers to decrypt files by entering only the substri…	NVD-CWE-Other	CVE-2006-2036	2018-10-19 01:37	2006-04-26	Show	GitHub Exploit DB Packet Storm

279656	-	thwboard	thwboard	Cross-site scripting (XSS) vulnerability in index.php in Thwboard 3.0 Beta 2.84 allows remote attackers to inject arbitrary web script or HTML via the navpath parameter.	NVD-CWE-Other	CVE-2006-2037	2018-10-19 01:37	2006-04-27	Show	GitHub Exploit DB Packet Storm

279657	-	photokorn	photokorn	Multiple SQL injection vulnerabilities in photokorn 1.53 and 1.542 allow remote attackers to execute arbitrary SQL commands via the (1) cat, (2) pic and (3) page parameter in index.php; (4) id parame…	NVD-CWE-Other	CVE-2006-2040	2018-10-19 01:37	2006-04-27	Show	GitHub Exploit DB Packet Storm

279658	-	ip3_networks	ip3_netaccess_75	na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 allows local users to gain Unix shell access via "`" (backtick) characters in the appliance's command line interface (CLI).	NVD-CWE-Other	CVE-2006-2043	2018-10-19 01:37	2006-04-27	Show	GitHub Exploit DB Packet Storm

279659	-	ip3_networks	ip3_netaccess_75	na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has a default username of admin and a default password of admin.	NVD-CWE-Other	CVE-2006-2044	2018-10-19 01:37	2006-04-27	Show	GitHub Exploit DB Packet Storm

279660	-	ip3_networks	ip3_netaccess_75	The (1) shadow password file in na-img-4.0.34.bin for the IP3 Networks NetAccess NA75 has world readable permissions, which allows local users to view encrypted passwords; and the (2) NetAccess datab…	NVD-CWE-Other	CVE-2006-2045	2018-10-19 01:37	2006-04-27	Show	GitHub Exploit DB Packet Storm