Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242421 7.5 危険 Apache Software Foundation - Apache OFBiz の フォーラム実装におけるコンテンツを改ざんされる脆弱性 - CVE-2006-6588 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242422 6.8 警告 Apache Software Foundation - Apache OFBiz の ecommerce コンポーネントにおけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6587 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242423 7.5 危険 brian drawert - Brian Drawert yaplap の ldap.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-6575 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242424 6 警告 シトリックス・システムズ - Citrix Access Gateway Advanced Edition および Citrix Access Gateway Advanced Edition with AAC におけるデータへのアクセス権を取得される脆弱性 - CVE-2006-6573 2012-06-26 15:38 2006-11-4 Show GitHub Exploit DB Packet Storm
242425 6.5 警告 シトリックス・システムズ - Citrix AAC Option および Access Gateway with Advanced Access Control におけるアクセスポリシーを回避される脆弱性 - CVE-2006-6572 2012-06-26 15:38 2006-11-4 Show GitHub Exploit DB Packet Storm
242426 6.8 警告 genesistrader - GenesisTrader の form.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-6571 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242427 7.5 危険 genesistrader - GenesisTrader の upload.php における任意のファイルをアップロードされる脆弱性 - CVE-2006-6570 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242428 7.8 危険 genesistrader - GenesisTrader の form.php における重要な情報を取得される脆弱性 - CVE-2006-6569 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242429 4 警告 FileZilla - FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2006-6565 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
242430 4 警告 FileZilla - FileZilla Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2006-6564 2012-06-26 15:38 2006-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
288091 - fdweb espace_membre PHP remote file inclusion vulnerability in _admin/admin_menu.php in FdWeB Espace Membre 2.1 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the path parameter. NVD-CWE-Other
CVE-2007-0301 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288092 - fdweb espace_membre Successful exploitation requires that "register_globals" is enabled. NVD-CWE-Other
CVE-2007-0301 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288093 - mint haber_sistemi SQL injection vulnerability in duyuru.asp in MiNT Haber Sistemi 2.7 allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2007-0304 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288094 - digiappz digiaffiliate SQL injection vulnerability in visu_user.asp in Digiappz DigiAffiliate 1.4 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. NVD-CWE-Other
CVE-2007-0306 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288095 - poplar_gedcom_viewer poplar_gedcom_viewer PHP remote file inclusion vulnerability in include/common.php in Poplar Gedcom Viewer 2.0 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the env[rootPath] parameter. NVD-CWE-Other
CVE-2007-0307 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288096 - texas_imperial_software wftpd
wftpd_pro_server 		Texas Imperial Software WFTPD and WFTPD Pro Server 3.25 and earlier allow remote attackers to cause a denial of service (application crash) via a long SITE ADMIN command. NVD-CWE-Other
CVE-2007-0311 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288097 - article_system article_system Multiple PHP remote file inclusion vulnerabilities in Article System 1.0 allow remote attackers to execute arbitrary PHP code via a URL in the INCLUDE_DIR parameter to (1) forms.php, (2) issue_edit.p… NVD-CWE-Other
CVE-2007-0314 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288098 - joonas_viljanen jv2_folder_gallery download.php in Joonas Viljanen JV2 Folder Gallery allows remote attackers to read sensitive files via a relative pathname in the file parameter, as demonstrated by config/gallerysetup.php. NOTE: th… NVD-CWE-Other
CVE-2007-0329 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288099 - kgb kgb Directory traversal vulnerability in sesskglogadmin.php in KGB 1.9 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the skinnn parameter, as demo… NVD-CWE-Other
CVE-2007-0337 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm
288100 - bolintech dreamftp_server Heap-based buffer overflow in Dream FTP Server allows remote attackers to execute arbitrary code via a USER command with a large number of format string specifiers, which triggers the overflow during… NVD-CWE-Other
CVE-2007-0338 2017-10-19 10:29 2007-01-18 Show GitHub Exploit DB Packet Storm