Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242031 5 警告 dgnews - DGNews における重要な情報を取得される脆弱性 - CVE-2007-0692 2012-06-26 15:46 2007-05-30 Show GitHub Exploit DB Packet Storm
242032 7.5 危険 cerulean portal system - Cerulean Portal System の portal.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0684 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242033 7.5 危険 extcalendar - ExtCalendar の profile.php における任意のパスワードを変更される脆弱性 - CVE-2007-0681 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242034 7.5 危険 fullaspsite - Fullaspsite Asp Hosting Sitesi の windows.asp における SQL インジェクションの脆弱性 - CVE-2007-0678 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242035 7.5 危険 cronosys - Cadre PHP Framework の fw/class.Quick_Config_Browser.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0677 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242036 6.8 警告 exoscripts - ExoPHPDesk の faq.php における SQL インジェクションの脆弱性 - CVE-2007-0676 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242037 7.8 危険 CA Technologies - BrightStor ARCserve Backup for Laptops & Desktops の LGSERVER.EXE におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2007-0673 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
242038 7.8 危険 CA Technologies - BrightStor Mobile Backup の LGSERVER.EXE におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0672 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
242039 5 警告 ACME Laboratories - Gentoo Linux の thttpd における任意のファイルを読まれる脆弱性 - CVE-2007-0664 2012-06-26 15:46 2007-02-2 Show GitHub Exploit DB Packet Storm
242040 7.5 危険 eclectic designs - Eclectic Designs CascadianFAQ の index.php における SQL インジェクションの脆弱性 - CVE-2007-0663 2012-06-26 15:46 2007-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
307471 - gallarific gallarific Gallarific Free Edition 1.1 does not require authentication for (1) photos.php, (2) comments.php, and (3) gallery.php in gadmin/, which allows remote attackers to edit objects via a direct request, d… CWE-287
Improper Authentication 		CVE-2008-1469 2011-07-25 13:00 2008-03-25 Show GitHub Exploit DB Packet Storm
307472 - gallarific gallarific More information available at: http://www.securityfocus.com/bid/28163/info CWE-287
Improper Authentication 		CVE-2008-1469 2011-07-25 13:00 2008-03-25 Show GitHub Exploit DB Packet Storm
307473 - linpha linpha Multiple cross-site scripting (XSS) vulnerabilities in LinPHA before 1.3.3 allow remote attackers to inject arbitrary web script or HTML via (1) ftp/index.php, (2) viewer.php, (3) functions/other.php… CWE-79
Cross-site Scripting 		CVE-2008-1487 2011-07-25 13:00 2008-03-25 Show GitHub Exploit DB Packet Storm
307474 - netbsd netbsd The accept function in NetBSD-current before 20061023, NetBSD 3.0 and 3.0.1 before 20061024, and NetBSD 2.x before 20061029 allows local users to cause a denial of service (socket consumption) via an… CWE-20
 Improper Input Validation  		CVE-2006-6653 2011-07-25 13:00 2006-12-20 Show GitHub Exploit DB Packet Storm
307475 - netbsd netbsd This vulnerability is addressed in the following product updates: NetBSD, NetBSD, current (10/23/2006) NetBSD, NetBSD, 3.0 (10/24/2006) NetBSD, NetBSD, 3.0.1 (10/24/2006) NetBSD, NetBSD, 2.0 (10… CWE-20
 Improper Input Validation  		CVE-2006-6653 2011-07-25 13:00 2006-12-20 Show GitHub Exploit DB Packet Storm
307476 - web-app.net webapp Cross-site scripting (XSS) vulnerability in Web Automated Perl Portal (WebAPP) 0.9.9.4, and 0.9.9.3.4 Network Edition (NE) (aka WebAPP.NET), allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2006-6687 2011-07-25 13:00 2006-12-22 Show GitHub Exploit DB Packet Storm
307477 - clamav clamav The cabd_find function in cabd.c of the libmspack library (mspack) for Clam AntiVirus (ClamAV) before 0.87.1 allows remote attackers to cause a denial of service (infinite loop) via a crafted CAB fil… CWE-399
 Resource Management Errors 		CVE-2005-3501 2011-07-14 13:00 2005-11-5 Show GitHub Exploit DB Packet Storm
307478 - php php The compress.bzip2:// URL wrapper provided by the bz2 extension in PHP before 4.4.7, and 5.x before 5.2.2, does not implement safemode or open_basedir checks, which allows remote attackers to read bz… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-1461 2011-07-13 13:00 2007-03-15 Show GitHub Exploit DB Packet Storm
307479 - opera opera_browser The FTP protocol implementation in Opera 9.10 allows remote attackers to allows remote servers to force the client to connect to other servers, perform a proxied port scan, or obtain sensitive inform… CWE-200
Information Exposure 		CVE-2007-1563 2011-07-8 13:00 2007-03-22 Show GitHub Exploit DB Packet Storm
307480 - wikkawiki wikkawiki The RecentChanges feature in WikkaWiki (Wikka Wiki) before 1.1.6.3 allows remote attackers to obtain the names, and possibly revision notes and dates, of private pages via RSS feeds. CWE-200
Information Exposure 		CVE-2007-2552 2011-06-16 13:00 2007-05-9 Show GitHub Exploit DB Packet Storm