Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242141 7.5 危険 article system - Article System における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0314 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242142 9 危険 gonicus - Gosa における特定の設定を修正される脆弱性 - CVE-2007-0313 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242143 5 警告 BMC Software - BMC Remedy Action Request System における有効なアカウント名を特定される脆弱性 - CVE-2007-0310 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242144 7.5 危険 francisco burzi - Francisco Burzi PHP-Nuke の blocks/block-Old_Articles.php における SQL インジェクションの脆弱性 - CVE-2007-0309 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242145 7.5 危険 digiappz - Digiappz DigiAffiliate の visu_user.asp における SQL インジェクションの脆弱性 - CVE-2007-0306 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242146 6.8 警告 fdweb - FdWeB Espace Membre の _admin/admin_menu.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0301 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242147 7.1 危険 アップル - Mac OS X の byte_swap_sbin 関数における整数オーバーフローの脆弱性 - CVE-2007-0299 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242148 6.8 警告 dexxaboy - LunarPoll の show.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0298 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
242149 6.6 警告 アップル
FreeBSD		 - Mac OS X および FreeBSD カーネルの ufs_lookup 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-0267 2012-06-26 15:46 2007-01-16 Show GitHub Exploit DB Packet Storm
242150 7.5 危険 ezboxx - Ezboxx Portal System Beta の boxx/showAppendix.asp における SQL インジェクションの脆弱性 - CVE-2007-0266 2012-06-26 15:46 2007-01-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
287641 - pyforum pyforum Multiple cross-site scripting (XSS) vulnerabilities in models.parser in PyForum 1.0.3 and possibly earlier versions, and possibly zForum, allow remote attackers to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2009-4408 2018-10-11 04:49 2009-12-24 Show GitHub Exploit DB Packet Storm
287642 - alexander_palmo simple_php_blog Directory traversal vulnerability in languages_cgi.php in Simple PHP Blog 0.5.1 and earlier allows remote authenticated users to include and execute arbitrary local files via a .. (dot dot) in the bl… CWE-22
Path Traversal 		CVE-2009-4421 2018-10-11 04:49 2009-12-25 Show GitHub Exploit DB Packet Storm
287643 - aditus jpgraph Multiple cross-site scripting (XSS) vulnerabilities in the GetURLArguments function in jpgraph.php in Aditus Consulting JpGraph 3.0.6 allow remote attackers to inject arbitrary web script or HTML via… CWE-79
Cross-site Scripting 		CVE-2009-4422 2018-10-11 04:49 2009-12-25 Show GitHub Exploit DB Packet Storm
287644 - livezilla livezilla Multiple cross-site scripting (XSS) vulnerabilities in map.php in LiveZilla 3.1.8.3 allow remote attackers to inject arbitrary web script or HTML via the (1) lat, (2) lng, and (3) zom parameters, whi… CWE-79
Cross-site Scripting 		CVE-2009-4450 2018-10-11 04:49 2009-12-30 Show GitHub Exploit DB Packet Storm
287645 - kaspersky_lab kaspersky_anti-virus
kaspersky_anti-virus_2009
kaspersky_anti-virus_2010
kaspersky_anti-virus_personal
kaspersky_internet_security
kaspersky_internet_security_2009
kaspersky_interne… 		Kaspersky Anti-Virus 5.0 (5.0.712); Antivirus Personal 5.0.x; Anti-Virus 6.0 (6.0.3.837), 7 (7.0.1.325), 2009 (8.0.0.x), and 2010 (9.0.0.463); and Internet Security 7 (7.0.1.325), 2009 (8.0.0.x), and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4452 2018-10-11 04:49 2009-12-30 Show GitHub Exploit DB Packet Storm
287646 - saini videocache vccleaner in VideoCache 1.9.2 allows local users with Squid proxy user privileges to overwrite arbitrary files via a symlink attack on /var/log/videocache/vccleaner.log. CWE-59
Link Following 		CVE-2009-4454 2018-10-11 04:49 2009-12-30 Show GitHub Exploit DB Packet Storm
287647 - cisco adaptive_security_appliance_5500 The default configuration of Cisco ASA 5500 Series Adaptive Security Appliance (Cisco ASA) 7.0, 7.1, 7.2, 8.0, 8.1, and 8.2 allows portal traffic to access arbitrary backend servers, which might allo… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4455 2018-10-11 04:49 2009-12-30 Show GitHub Exploit DB Packet Storm
287648 - intellicom netbiterconfig Stack-based buffer overflow in the NetBiterConfig utility (NetBiterConfig.exe) 1.3.0 for Intellicom NetBiter WebSCADA allows remote attackers to execute arbitrary code via a long hn (hostname) parame… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-4462 2018-10-11 04:49 2009-12-31 Show GitHub Exploit DB Packet Storm
287649 - intellicom netbiter_webscada_firmware
netbiter_webscada_ws100
netbiter_webscada_ws200 		Intellicom NetBiter WebSCADA devices use default passwords for the HICP network configuration service, which makes it easier for remote attackers to modify network settings and cause a denial of serv… CWE-255
Credentials Management 		CVE-2009-4463 2018-10-11 04:49 2009-12-31 Show GitHub Exploit DB Packet Storm
287650 - dvbbs dvbbs SQL injection vulnerability in boardrule.php in DVBBS 2.0 allows remote attackers to execute arbitrary SQL commands via the groupboardid parameter. CWE-89
SQL Injection 		CVE-2009-4470 2018-10-11 04:49 2009-12-31 Show GitHub Exploit DB Packet Storm