Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227271	6.5	警告	TYPO3 Association	-	TYPO3 用の indexed_search システムエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6381	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227272	5	警告	WordPress.org	-	WordPress 用の PictPress プラグインにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6369	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227273	4.3	警告	sinecms	-	SineCMS の guestbook におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6367	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227274	7.5	危険	sinecms	-	SineCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-6366	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227275	7.8	危険	サン・マイクロシステムズ	-	Sun XSCF XCP におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2007-6360	2012-12-20 18:34	2007-12-4	Show	GitHub Exploit DB Packet Storm

227276	8.5	危険	scponly	-	scponly におけるコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6350	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227277	6.8	警告	SquirrelMail Project	-	SquirrelMail における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2007-6348	2012-12-20 18:34	2007-12-14	Show	GitHub Exploit DB Packet Storm

227278	6.8	警告	prowizard	-	prowiz におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2007-6510	2012-12-20 18:34	2007-12-21	Show	GitHub Exploit DB Packet Storm

227279	7.5	危険	xecms	-	xeCMS の view.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-6508	2012-12-20 18:34	2007-12-21	Show	GitHub Exploit DB Packet Storm

227280	10	危険	トレンドマイクロ	-	Windows 用の Trend Micro ServerProtect における "ファイルシステムの全アクセス権限" を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2007-6507	2012-12-20 18:34	2007-07-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
1031	6.2	MEDIUM Local	-	-	jiNa OCR Image to Text 1.0 contains a denial of service vulnerability that allows local attackers to crash the application by processing a malformed PNG file. Attackers can create a specially crafted… Update	CWE-789 Memory Allocation with Excessive Size Value	CVE-2018-25279	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1032	5.5	MEDIUM Local	-	-	Infiltrator Network Security Scanner 4.6 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized input string. Attackers can paste a 60… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25280	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1033	5.5	MEDIUM Local	-	-	iCash 7.6.5 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an oversized payload through the Connect to Server dialog. Attackers can paste a… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25281	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1034	6.2	MEDIUM Local	-	-	Nmap 7.70 contains a denial of service vulnerability that allows local attackers to crash the application by processing malicious XML files with exponential entity expansion. Attackers can create a c… Update	CWE-674 Uncontrolled Recursion	CVE-2018-25282	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1035	8.4	HIGH Local	-	-	iSmartViewPro 1.5 contains a structured exception handling (SEH) buffer overflow vulnerability in the 'Save Path for Snapshot and Record file' field that allows local attackers to execute arbitrary c… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25283	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1036	6.2	MEDIUM Local	-	-	HD Tune Pro 5.70 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the folder/file name field. Attackers can tri… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25284	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1037	5.5	MEDIUM Local	-	-	Fathom 2.4 contains a buffer overflow vulnerability in the Authorization Code field that allows local attackers to crash the application by submitting an oversized input string. Attackers can paste a… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25285	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1038	6.2	MEDIUM Local	-	-	Easy PhotoResQ 1.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Folder/filename field. Attackers can in… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25286	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1039	5.5	MEDIUM Local	-	-	Drive Power Manager 1.10 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string in the Name field. Attackers can paste a… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25287	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm

1040	6.2	MEDIUM Local	-	-	StyleWriter 1.0 contains a buffer overflow vulnerability that allows local attackers to crash the application by supplying an excessively long string. Attackers can paste a 6000-byte payload into the… Update	CWE-120 Classic Buffer Overflow	CVE-2018-25288	2026-04-28 03:55	2026-04-27	Show	GitHub Exploit DB Packet Storm