Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250011 7.5 危険 francisco burzi - Francisco Burzi PHP-Nuke における SQL インジェクションの脆弱性 - CVE-2007-0372 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
250012 4.3 警告 common controls replacement project - CCRP BrowseDialog Server の ccrpbds6.dll におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0371 2012-06-26 15:46 2007-01-19 Show GitHub Exploit DB Packet Storm
250013 7.5 危険 comscripts - PHPMyphorum の mep/frame.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-0361 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
250014 5 警告 fritzdsl - Fritz!DSL の AVM IGD CTRL Service におけるディレクトリトラバーサルの脆弱性 - CVE-2007-0357 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
250015 5 警告 マイクロソフト
common controls replacement project		 - CCRP FTV ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0356 2012-06-26 15:46 2007-01-18 Show GitHub Exploit DB Packet Storm
250016 4.3 警告 cvstrac - CVSTrac の format.c の is_eow 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-0347 2012-06-26 15:46 2007-01-29 Show GitHub Exploit DB Packet Storm
250017 6.8 警告 アップル - Mac OS X の Activity Monitor.app/Contents/Resources/pmTool などにおける root 権限を取得される脆弱性 - CVE-2007-0345 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
250018 7.5 危険 colloquy - Colloquy の _invitedToRoom: および _invitedToDirectChat: におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2007-0344 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
250019 4.3 警告 アップル
omnigroup		 - Apple WebKit の WebCore におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-0342 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
250020 7.5 危険 bolintech - Dream FTP Server におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2007-0338 2012-06-26 15:46 2007-01-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295641 - dkorunic pam_s\/key A certain Gentoo patch for the PAM S/Key module does not properly clear credentials from memory, which allows local users to obtain sensitive information by reading system memory. CWE-255
Credentials Management 		CVE-2013-4285 2024-11-21 10:55 2014-04-28 Show GitHub Exploit DB Packet Storm
295642 - debian ppthtml Heap-based buffer overflow in the __OLEdecode function in ppthtml 0.5.1 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted .ppt… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4565 2024-11-21 10:55 2014-04-26 Show GitHub Exploit DB Packet Storm
295643 - freedesktop poppler The openTempFile function in goo/gfile.cc in Xpdf and Poppler 0.24.3 and earlier, when running on a system other than Unix, allows local users to overwrite arbitrary files via a symlink attack on tem… CWE-59
Link Following 		CVE-2013-4472 2024-11-21 10:55 2014-04-22 Show GitHub Exploit DB Packet Storm
295644 - imapsync_project imapsync imapsync 1.564 and earlier performs a release check by default, which sends sensitive information (imapsync, operating system, and Perl version) to the developer's site. CWE-200
Information Exposure 		CVE-2013-4279 2024-11-21 10:55 2014-04-19 Show GitHub Exploit DB Packet Storm
295645 - uclouvain openjpeg Stack-based buffer overflow in OpenJPEG before 1.5.2 allows remote attackers to have unspecified impact via unknown vectors to (1) lib/openjp3d/opj_jp3d_compress.c, (2) bin/jp3d/convert.c, or (3) lib… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-4290 2024-11-21 10:55 2014-04-18 Show GitHub Exploit DB Packet Storm
295646 - uclouvain openjpeg Multiple integer overflows in lib/openjp3d/jp3d.c in OpenJPEG before 1.5.2 allow remote attackers to have unspecified impact and vectors, which trigger a heap-based buffer overflow. CWE-189
Numeric Errors 		CVE-2013-4289 2024-11-21 10:55 2014-04-18 Show GitHub Exploit DB Packet Storm
295647 - hitmyserver hms_testimonials Multiple cross-site request forgery (CSRF) vulnerabilities in the HMS Testimonials plugin before 2.0.11 for WordPress allow remote attackers to hijack the authentication of administrators for request… CWE-352
 Origin Validation Error 		CVE-2013-4240 2024-11-21 10:55 2014-04-3 Show GitHub Exploit DB Packet Storm
295648 - samba
canonical 		samba
ubuntu_linux 		Samba 3.x before 3.6.23, 4.0.x before 4.0.16, and 4.1.x before 4.1.6 does not enforce the password-guessing protection mechanism for all interfaces, which makes it easier for remote attackers to obta… CWE-255
Credentials Management 		CVE-2013-4496 2024-11-21 10:55 2014-03-14 Show GitHub Exploit DB Packet Storm
295649 - vicidial vicidial Multiple SQL injection vulnerabilities in the agent interface (agc/) in VICIDIAL dialer (aka Asterisk GUI client) 2.8-403a, 2.7, 2.7RC1, and earlier allow (1) remote attackers to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2013-4467 2024-11-21 10:55 2014-03-12 Show GitHub Exploit DB Packet Storm
295650 - php xhprof Cross-site scripting (XSS) vulnerability in XHProf before 0.9.4 allows remote attackers to inject arbitrary web script or HTML via the run parameter. CWE-79
Cross-site Scripting 		CVE-2013-4433 2024-11-21 10:55 2014-03-12 Show GitHub Exploit DB Packet Storm