Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227461 10 危険 synce - SynCE (SynCE-dccm) の vdccm におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6703 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
227462 7.5 危険 Simple DirectMedia Layer - SDL_image の IMG_gif.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6697 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227463 2.1 注意 webcalendar - WebCalendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6696 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227464 5 警告 VideoLAN - VideoLAN VLC の RTSP モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-6684 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227465 5 警告 VideoLAN - VideoLAN VLC のブラウザプラグインにおける任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2007-6683 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227466 7.5 危険 VideoLAN - VideoLAN VLC の httpd_FileCallBack 関数 におけるフォーマットストリングの脆弱性 CWE-DesignError
CVE-2007-6682 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227467 7.5 危険 VideoLAN - VideoLAN VLC の modules/demux/subtitle.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6681 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
227468 5 警告 uber uploader - UU の初期設定におけるアップロードに危険な拡張子を使用される脆弱性 CWE-16
環境設定 		CVE-2007-6676 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
227469 4.3 警告 rapidshare - RapidShare Database の Default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6674 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
227470 7.5 危険 phpcredo - PHCDownload の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6670 2012-12-20 18:34 2008-01-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313331 - phpx phpx SQL injection vulnerability in auth.inc.php in PHPX 3.5.9 and earlier allows remote attackers to execute arbitrary SQL commands, bypass authentication, and upload arbitrary PHP code via the username … NVD-CWE-Other
CVE-2005-3968 2024-02-14 10:17 2005-12-4 Show GitHub Exploit DB Packet Storm
313332 - - - Directory traversal vulnerability in index.php in PHP Upload Center allows remote attackers to read arbitrary files via "../" sequences in the filename parameter. NVD-CWE-Other
CVE-2005-3947 2024-02-14 10:17 2005-12-1 Show GitHub Exploit DB Packet Storm
313333 - randshop randshop SQL injection vulnerability in themes/kategorie/index.php in Randshop allows remote attackers to execute arbitrary SQL commands via the (1) kategorieid and (2) katid parameters. NVD-CWE-Other
CVE-2005-3924 2024-02-14 10:17 2005-11-30 Show GitHub Exploit DB Packet Storm
313334 - orbitscripts smartppc_pro Multiple cross-site scripting (XSS) vulnerabilities in SmartPPC Pro allow remote attackers to inject arbitrary web script or HTML via the username parameter in (1) directory.php, (2) frames.php, and … NVD-CWE-Other
CVE-2005-3814 2024-02-14 10:17 2005-11-26 Show GitHub Exploit DB Packet Storm
313335 - phppost phppost Multiple cross-site scripting (XSS) vulnerabilities in PHP-Post (PHPp) 1.0 allow remote attackers to inject arbitrary web script or HTML via (1) the subject in a post, or the user parameter to (2) pr… CWE-79
Cross-site Scripting 		CVE-2005-3770 2024-02-14 10:17 2005-11-23 Show GitHub Exploit DB Packet Storm
313336 - xmb_forum xmb Cross-site scripting (XSS) vulnerability in members.php in XMB 1.9.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the "Your Current Mood" field in the registration p… NVD-CWE-Other
CVE-2005-3688 2024-02-14 10:17 2005-11-19 Show GitHub Exploit DB Packet Storm
313337 - xmb_forum xmb post.php in XMB 1.9.2 allows remote attackers to obtain the installation path via an invalid fid parameter in a newthread action. NVD-CWE-Other
CVE-2005-3689 2024-02-14 10:17 2005-11-19 Show GitHub Exploit DB Packet Storm
313338 - ekinboard ekinboard Cross-site scripting (XSS) vulnerabilities in Ekinboard 1.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) id parameter in profile.php and (2) titles of posts. NVD-CWE-Other
CVE-2005-3638 2024-02-14 10:17 2005-11-17 Show GitHub Exploit DB Packet Storm
313339 - ibproarcade ibproarcade SQL injection vulnerability in index.php of the report module in ibProArcade 2.5.2 and earlier allows remote attackers to execute arbitrary SQL commands via the user parameter. NVD-CWE-Other
CVE-2005-3545 2024-02-14 10:17 2005-11-16 Show GitHub Exploit DB Packet Storm
313340 - mambo mambo content.php in Mambo 4.5.2 through 4.5.2.3 allows remote attackers to obtain the installation path of the application via a URL that causes the application to return an error. NVD-CWE-Other
CVE-2005-3586 2024-02-14 10:17 2005-11-16 Show GitHub Exploit DB Packet Storm