Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
250361 10 危険 bug software - BugHotel Reservation System の main.php における管理アクセス権を取得される脆弱性 CWE-287
不適切な認証
CVE-2007-6011 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250362 9.3 危険 ACD Systems - ACD 製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6009 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250363 9.3 危険 Autonomy - Autonomy の emlsr.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6008 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250364 6.8 警告 ACD Systems - ACD ACDSee Photo Manager の ID_PSP.apl のプラグインにおける整数オーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2007-6007 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250365 4.3 警告 bandersnatch - Bandersnatch の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-6001 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250366 7.5 危険 datecomm - datecomm Social Networking Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5992 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250367 7.5 危険 exoscripts - ExoPHPdesk の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2007-5991 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250368 4.3 警告 exoscripts - ExoPHPdesk におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2007-5990 2012-06-26 15:54 2007-11-15 Show GitHub Exploit DB Packet Storm
250369 7.5 危険 bti-tracker - BtiTracker の blocks/shoutbox_block.php における任意ユーザとしてシャウトボックスエントリを投稿される脆弱性 CWE-255
CWE-264
CWE-287
CVE-2007-5988 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
250370 6.8 警告 bti-tracker - BtiTracker の details.php における保護メカニズムを回避される脆弱性 CWE-264
CWE-287
CVE-2007-5987 2012-06-26 15:54 2007-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
305691 - node_limit_number_project node_limitnumber Cross-site request forgery (CSRF) vulnerability in the Node Limit Number module before 6.x-1.2 for Drupal allows remote attackers to hijack the authentication of users with the administer node limitn… CWE-352
 Origin Validation Error
CVE-2012-2080 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305692 - rob_loach sharethis Cross-site request forgery (CSRF) vulnerability in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote attackers to hijack the authentication of users with administer sharethis permi… CWE-352
 Origin Validation Error
CVE-2012-2077 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305693 - rob_loach sharethis Cross-site scripting (XSS) vulnerability in the administration forms in the ShareThis module 7.x-2.x before 7.x-2.3 for Drupal allows remote authenticated users with administer sharethis permissions … CWE-79
Cross-site Scripting
CVE-2012-2076 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305694 - steindom contact_save Cross-site scripting (XSS) vulnerability in the Contact Save module 6.x-1.x before 6.x-1.5 for Drupal allows remote authenticated users with the access site-wide contact form permission to inject arb… CWE-79
Cross-site Scripting
CVE-2012-2075 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305695 - ubercart_views_project uc_views Unspecified vulnerability in certain default views in the Ubercart Views module 6.x before 6.x-3.2 for Drupal allows remote attackers to obtain sensitive information via unknown attack vectors. NVD-CWE-noinfo
CVE-2012-2074 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305696 - kristof_de_jaeger bundle_copy The Bundle copy module 7.x-1.x before 7.x-1.1 for Drupal does not check for the "use PHP for settings" permission while importing settings, which allows remote authenticated users with certain permis… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-2073 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305697 - patrick_przybilla addtoany Cross-site scripting (XSS) vulnerability in the Share Buttons (AddToAny) module 6.x-3.x before 6.x-3.4 for Drupal allows remote authenticated users with the administer addtoany permission to inject a… CWE-79
Cross-site Scripting
CVE-2012-2072 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305698 - geoff_davies contact_forms Cross-site scripting (XSS) vulnerability in the Contact Forms module 6.x-1.x before 6.x-1.13 for Drupal when the core contact form is enabled, allows remote authenticated users with the administer si… CWE-79
Cross-site Scripting
CVE-2012-2071 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305699 - andrew_levine multiblock Cross-site scripting (XSS) vulnerability in the MultiBlock module 6.x-1.x before 6.x-1.4 and 7.x-1.x before 7.x-1.1 for Drupal allows remote authenticated users with the administer blocks permission … CWE-79
Cross-site Scripting
CVE-2012-2070 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm
305700 - emil_stjerneman linkit The Linkit module 7.x-2.x before 7.x-2.3 for Drupal, when using an entity access module, does not check permissions when searching for entities, which allows remote attackers to obtain sensitive info… CWE-264
Permissions, Privileges, and Access Controls
CVE-2012-2304 2024-11-21 10:38 2012-08-15 Show GitHub Exploit DB Packet Storm