Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 4:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
242851 7.5 危険 irola - Irola My-Time の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6217 2012-09-25 16:59 2007-12-4 Show GitHub Exploit DB Packet Storm
242852 4.3 警告 learnloop - LearnLoop の include/file_download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-6214 2012-09-25 16:59 2007-12-4 Show GitHub Exploit DB Packet Storm
242853 10 危険 ヒューレット・パッカード - HP OV NNM におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6204 2012-09-25 16:59 2007-12-5 Show GitHub Exploit DB Packet Storm
242854 6.8 警告 Neocrome - Neocrome Seditio CMS の plugins/search/search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-6202 2012-09-25 16:59 2007-12-1 Show GitHub Exploit DB Packet Storm
242855 10 危険 ヒューレット・パッカード - HP Select Identity における不特定のアクセス権を取得される脆弱性 CWE-noinfo
情報不足
CVE-2007-6194 2012-09-25 16:59 2007-12-3 Show GitHub Exploit DB Packet Storm
242856 5 警告 noah - PHP Content Architect におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2007-6187 2012-09-25 16:59 2007-11-29 Show GitHub Exploit DB Packet Storm
242857 7.5 危険 kinson chan charray - Charray の CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-20
不適切な入力確認
CVE-2007-6179 2012-09-25 16:59 2007-11-29 Show GitHub Exploit DB Packet Storm
242858 7.5 危険 php con - PHP_CON の Exchange/include.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-6177 2012-09-25 16:59 2007-11-29 Show GitHub Exploit DB Packet Storm
242859 4.3 警告 Liferay - Liferay Enterprise Portal の c/portal/login におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6173 2012-09-25 16:59 2007-11-29 Show GitHub Exploit DB Packet Storm
242860 6.8 警告 iaprcommence - IAPR COMMENCE における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2007-6147 2012-09-25 16:59 2007-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
345901 - php-stats php-stats Multiple SQL injection vulnerabilities in PHP-Stats 0.1.9.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the option[prefix] parameter in admin.php and other unspecifie… NVD-CWE-Other
CVE-2006-1084 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345902 - php-stats php-stats admin.php in PHP-Stats 0.1.9.1 and earlier allows remote attackers to bypass authentication, gain administrator privileges, and execute arbitrary PHP code by modifying the option[admin_pass] paramete… NVD-CWE-Other
CVE-2006-1085 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345903 - php-stats php-stats Direct static code injection vulnerability in the modify_config action in admin.php for PHP-Stats 0.1.9.1 and earlier allows remote authenticated administrators to execute arbitrary PHP code via the … NVD-CWE-Other
CVE-2006-1087 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345904 - php-stats php-stats PHP-Stats 0.1.9.1 and earlier allows remote attackers to obtain potentially sensitive information via a direct request to checktables.php, which lists the database table_prefix. NVD-CWE-Other
CVE-2006-1088 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345905 - sauerbraten cube
sauerbraten
Buffer overflow in the sgetstr function in shared/cube.h in Sauerbraten 2006_02_28 and earlier, as derived from the Cube engine, allows remote attackers to execute arbitrary code via long streams of … NVD-CWE-Other
CVE-2006-1100 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345906 - sauerbraten cube
sauerbraten
The (1) sgetstr and (2) getint functions in Sauerbraten 2006_02_28, as derived from the Cube engine, allow remote attackers to cause a denial of service (segmentation fault) via long streams of input… NVD-CWE-Other
CVE-2006-1101 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345907 - sauerbraten cube
sauerbraten
Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (client exit) by forcing the server to change to a map (ogz) file whose name contains "..… NVD-CWE-Other
CVE-2006-1102 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345908 - sauerbraten cube
sauerbraten
engine/server.cpp in Sauerbraten 2006_02_28, as derived from the Cube engine, allows remote attackers to cause a denial of service (segmentation fault) via a client that does not completely join the … NVD-CWE-Other
CVE-2006-1103 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345909 - pixelpost pixelpost Multiple SQL injection vulnerabilities in Pixelpost 1.5 beta 1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the showimage parameter in index.php; and the (2) USER_AGEN… NVD-CWE-Other
CVE-2006-1104 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm
345910 - pixelpost pixelpost These vulnerabilities may affect all versions of Pixelpost. NVD-CWE-Other
CVE-2006-1104 2018-10-19 01:30 2006-03-9 Show GitHub Exploit DB Packet Storm