Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241811 7.5 危険 Activewebsoftwares - ActiveWebSoftwares Active Photo Gallery の default.asp における SQL インジェクションの脆弱性 - CVE-2007-1629 2012-06-26 15:46 2007-03-23 Show GitHub Exploit DB Packet Storm
241812 10 危険 atrium software - Atrium MERCUR IMAPD におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-1579 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241813 10 危険 atrium software - SP4 を適用した Atrium MERCUR IMAPD (mcrimap4.exe) における整数符号化エラーの脆弱性 - CVE-2007-1578 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241814 5 警告 geblog - GeBlog の index.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-1577 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241815 5 警告 care2x - CARE2X における設定情報を取得される脆弱性 - CVE-2007-1574 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241816 10 危険 daansystems - DaanSystems NewsReactor におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-1568 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241817 7.8 危険 Digium - Asterisk のチャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1561 2012-06-26 15:46 2007-03-21 Show GitHub Exploit DB Packet Storm
241818 7.2 危険 エフ・セキュア - F-Secure Anti-Virus Client Security におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-1557 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
241819 6.8 警告 guestbara - Guestbara の admin/configuration.php における任意の PHP コードを挿入される脆弱性 - CVE-2007-1554 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
241820 5 警告 guestbara - Guestbara の admin/configuration.php における管理者アカウントのパスワードを変更される脆弱性 - CVE-2007-1553 2012-06-26 15:46 2007-03-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288311 - snaps_gallery snaps_gallery Admin/users.php in Snaps! Gallery 1.4.4 allows remote attackers to change arbitrary usernames and passwords via the (1) username, or the (2) password and password2 parameters in an edit action. NVD-CWE-Other
CVE-2007-2715 2017-10-11 10:32 2007-05-16 Show GitHub Exploit DB Packet Storm
288312 - igeneric ig_shop SQL injection vulnerability in shop/page.php in iGeneric (iG) Shop 1.4 allows remote attackers to execute arbitrary SQL commands via the type_id[] parameter, a different vector than CVE-2005-0537. NVD-CWE-Other
CVE-2007-2717 2017-10-11 10:32 2007-05-17 Show GitHub Exploit DB Packet Storm
288313 - newzcrawler newzcrawler Unspecified vulnerability in NewzCrawler 1.8 allows remote attackers to cause a denial of service (application instability) via certain invalid strings in the URL attribute of an ENCLOSURE element, a… NVD-CWE-Other
CVE-2007-2722 2017-10-11 10:32 2007-05-17 Show GitHub Exploit DB Packet Storm
288314 - bitscast bitscast BitsCast 0.13.0 allows remote attackers to cause a denial of service (application crash) via an RSS 2.0 feed item with certain invalid strings in a pubDate element, as demonstrated by repeated "../A"… NVD-CWE-Other
CVE-2007-2726 2017-10-11 10:32 2007-05-17 Show GitHub Exploit DB Packet Storm
288315 - touteresa resmanager SQL injection vulnerability in edit_day.php in the ResManager 1.2.1 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the id_reserv parameter. NVD-CWE-Other
CVE-2007-2735 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm
288316 - achievo achievo PHP remote file inclusion vulnerability in index.php in Achievo 1.1.0 allows remote attackers to execute arbitrary PHP code via a URL in the config_atkroot parameter. NVD-CWE-Other
CVE-2007-2736 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm
288317 - xoops xoops_glossaire_module SQL injection vulnerability in glossaire-p-f.php in the Glossaire 1.7 and earlier module for Xoops allows remote attackers to execute arbitrary SQL commands via the sid parameter in an ImprDef action. NVD-CWE-Other
CVE-2007-2738 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm
288318 - glossword glossword PHP remote file inclusion vulnerability in custom_vars.php in GlossWord 1.8.1 allows remote attackers to execute arbitrary PHP code via a URL in the sys[path_addon] parameter. NVD-CWE-Other
CVE-2007-2743 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm
288319 - faqengine faqengine SQL injection vulnerability in question.php in FAQEngine 4.16.03 and earlier allows remote attackers to execute arbitrary SQL commands via the questionref parameter in a display action. NVD-CWE-Other
CVE-2007-2749 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm
288320 - simpnews simpnews SQL injection vulnerability in print.php in SimpNews 2.40.01 and earlier allows remote attackers to execute arbitrary SQL commands via the newsnr parameter. NVD-CWE-Other
CVE-2007-2750 2017-10-11 10:32 2007-05-18 Show GitHub Exploit DB Packet Storm