Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198931 7.8 危険 bloofox - bloofoxCMS の file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0427 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198932 5 警告 frimousse - Frimousse の explorerdir.php における絶対パストラバーサルの脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0425 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198933 7.5 危険 boastmachine - boastMachine の mail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0422 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198934 5.5 警告 Belkin International - Belkin Wireless G Plus MIMO Router F5D9230-4 の Web サーバにおける設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2008-0403 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198935 4.3 警告 aflog - aflog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0398 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198936 6.8 警告 aflog - aflog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0397 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198937 7.8 危険 BitDefender - 複数の BitDefender 製品で使用される BitDefender Update Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0396 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
198938 7.5 危険 citadel - Citadel SMTP サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0394 2012-06-26 15:54 2008-01-23 Show GitHub Exploit DB Packet Storm
198939 5.8 警告 gradman - GradMan の info.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0393 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
198940 7.5 危険 alilg - aliTalk の inc/elementz.php における任意のユーザアカウントを追加される脆弱性 CWE-287
不適切な認証 		CVE-2008-0391 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 22, 2025, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
266931 - wordpress wordpress Multiple cross-site scripting (XSS) vulnerabilities in WordPress 2.2.1 allow remote authenticated administrators to inject arbitrary web script or HTML via (1) the Options Database Table in the Admin… NVD-CWE-Other
CVE-2007-4153 2017-07-29 10:32 2007-08-4 Show GitHub Exploit DB Packet Storm
266932 - wordpress wordpress SQL injection vulnerability in options.php in WordPress 2.2.1 allows remote authenticated administrators to execute arbitrary SQL commands via the page_options parameter to (1) options-general.php, (… NVD-CWE-Other
CVE-2007-4154 2017-07-29 10:32 2007-08-4 Show GitHub Exploit DB Packet Storm
266933 - sun java_system_web_server CRLF injection vulnerability in the redirect feature in Sun Java System Web Server 6.1 and 7.0 before 20070802, when the redirect Server Application Function (SAF) uses the url-prefix parameter and e… NVD-CWE-Other
CVE-2007-4164 2017-07-29 10:32 2007-08-7 Show GitHub Exploit DB Packet Storm
266934 - wordpress unamed_theme
unamed_theme_se 		Cross-site scripting (XSS) vulnerability in index.php in the Unnamed theme 1.217, and Special Edition (SE) 1.02, before 20070804 for WordPress allows remote attackers to inject arbitrary web script o… NVD-CWE-Other
CVE-2007-4166 2017-07-29 10:32 2007-08-7 Show GitHub Exploit DB Packet Storm
266935 - open_webmail open_webmail Multiple cross-site scripting (XSS) vulnerabilities in Open Webmail (OWM) 2.52 20060831 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) searchtype, (2) longpage,… CWE-79
Cross-site Scripting 		CVE-2007-4172 2017-07-29 10:32 2007-08-7 Show GitHub Exploit DB Packet Storm
266936 - tor tor Tor before 0.1.2.16, when ControlPort is enabled, does not properly restrict commands to localhost port 9051, which allows remote attackers to modify the torrc configuration file, compromise anonymit… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2007-4174 2017-07-29 10:32 2007-08-7 Show GitHub Exploit DB Packet Storm
266937 - openrat openrat_cms Multiple cross-site scripting (XSS) vulnerabilities in index.php in OpenRat CMS 0.8-beta1 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) subaction and (2) actio… NVD-CWE-Other
CVE-2007-4175 2017-07-29 10:32 2007-08-8 Show GitHub Exploit DB Packet Storm
266938 - eqdkp eqdkp_plus Multiple unspecified vulnerabilities in EQDKP Plus before 0.4.4.5 have unknown impact and attack vectors. NVD-CWE-Other
CVE-2007-4176 2017-07-29 10:32 2007-08-8 Show GitHub Exploit DB Packet Storm
266939 - interact interact Multiple cross-site scripting (XSS) vulnerabilities in Interact before 2.4 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: this might overlap CVE-2007-33… NVD-CWE-Other
CVE-2007-4177 2017-07-29 10:32 2007-08-8 Show GitHub Exploit DB Packet Storm
266940 - ide_group dvd_rental_system_drs Multiple cross-site scripting (XSS) vulnerabilities in IDE Group DVD Rental System (DRS) 5.1 before 20070801 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NO… NVD-CWE-Other
CVE-2007-4192 2017-07-29 10:32 2007-08-8 Show GitHub Exploit DB Packet Storm