Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242081 4.3 警告 Drupal - Drupal 用の Project issue tracking におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0534 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
242082 5 警告 atozed software - Borland Delphi および Kylix の AToZed IntraWeb コンポーネントおよび IntraWeb におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0533 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242083 7.5 危険 FreeWebshop - FreeWebShop の includes/login.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0531 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242084 9 危険 centrality communications - Centrality Communications A168 チップセットが実装する admin Web コンソールにおける重要な情報 (パスワードおよび設定データ) を取得される脆弱性 - CVE-2007-0528 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242085 4.3 警告 Bitweaver - Bitweaver におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-0526 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242086 7.5 危険 grigoriadis - Nickolas Grigoriadis MiniWebsvr におけるバッファオーバーフローの脆弱性 - CVE-2007-0525 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242087 10 危険 awffull - AWFFull の graphs.c におけるバッファオーバーフローの脆弱性 - CVE-2007-0510 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242088 7.5 危険 bbclone - BBClone の lib/selectlang.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0508 2012-06-26 15:46 2007-01-25 Show GitHub Exploit DB Packet Storm
242089 6 警告 Drupal - Drupal 用の Acidfree モジュールにおける任意の SQL コマンドを実行される脆弱性 - CVE-2007-0507 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
242090 6 警告 Drupal - Drupal 用の Project issue tracking モジュールにおけるアクセスコントロールモジュールを回避される脆弱性 - CVE-2007-0506 2012-06-26 15:46 2007-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287591 - phpgroupware phpgroupware Directory traversal vulnerability in about.php in phpGroupWare (phpgw) before 0.9.16.016 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the app parameter. CWE-22
Path Traversal 		CVE-2010-0403 2018-10-11 04:52 2010-05-19 Show GitHub Exploit DB Packet Storm
287592 - phpgroupware phpgroupware Multiple SQL injection vulnerabilities in phpGroupWare (phpgw) before 0.9.16.016 allow remote attackers to execute arbitrary SQL commands via unspecified parameters to (1) class.sessions_db.inc.php, … CWE-89
SQL Injection 		CVE-2010-0404 2018-10-11 04:52 2010-05-19 Show GitHub Exploit DB Packet Storm
287593 - todd_miller sudo sudo 1.6.x before 1.6.9p21 and 1.7.x before 1.7.2p4, when a pseudo-command is enabled, permits a match between the name of the pseudo-command and the name of an executable file in an arbitrary direct… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0426 2018-10-11 04:52 2010-02-25 Show GitHub Exploit DB Packet Storm
287594 - todd_miller sudo sudo 1.6.x before 1.6.9p21, when the runas_default option is used, does not properly set group memberships, which allows local users to gain privileges via a sudo command. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2010-0427 2018-10-11 04:52 2010-02-26 Show GitHub Exploit DB Packet Storm
287595 - chip_salzenberg deliver Chip Salzenberg Deliver allows local users to cause a denial of service, obtain sensitive information, and possibly change the ownership of arbitrary files via a symlink attack on an unspecified file. CWE-59
Link Following 		CVE-2010-0439 2018-10-11 04:52 2010-03-27 Show GitHub Exploit DB Packet Storm
287596 - asterisk asterisk Asterisk Open Source 1.6.0.x before 1.6.0.22, 1.6.1.x before 1.6.1.14, and 1.6.2.x before 1.6.2.2, and Business Edition C.3 before C.3.3.2, allows remote attackers to cause a denial of service (daemo… CWE-20
 Improper Input Validation  		CVE-2010-0441 2018-10-11 04:52 2010-02-5 Show GitHub Exploit DB Packet Storm
287597 - hp openview_performance_insight The helpmanager servlet in the web server in HP OpenView Performance Insight (OVPI) 5.4 and earlier does not properly authenticate and validate requests, which allows remote attackers to execute arbi… CWE-287
Improper Authentication 		CVE-2010-0447 2018-10-11 04:52 2010-03-11 Show GitHub Exploit DB Packet Storm
287598 - sun opensolaris
solaris 		The ucode_ioctl function in intel/io/ucode_drv.c in Sun Solaris 10 and OpenSolaris snv_69 through snv_133, when running on x86 architectures, allows local users to cause a denial of service (panic) v… CWE-20
 Improper Input Validation  		CVE-2010-0453 2018-10-11 04:52 2010-02-4 Show GitHub Exploit DB Packet Storm
287599 - fabricadigital publique\! SQL injection vulnerability in cgi/cgilua.exe/sys/start.htm in Publique! 2.3 allows remote attackers to execute arbitrary SQL commands via the sid parameter. CWE-89
SQL Injection 		CVE-2010-0454 2018-10-11 04:52 2010-01-29 Show GitHub Exploit DB Packet Storm
287600 - kayako esupport
supportsuite 		Multiple cross-site scripting (XSS) vulnerabilities in staff/index.php in Kayako SupportSuite 3.60.04 and earlier allow remote authenticated users to inject arbitrary web script or HTML via the (1) s… CWE-79
Cross-site Scripting 		CVE-2010-0460 2018-10-11 04:52 2010-01-29 Show GitHub Exploit DB Packet Storm