Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228251	7.5	危険	php-generics	-	PHP-Generics における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2346	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

228252	7.5	危険	phpbandmanager	-	phpBandManager の suite/index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2341	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

228253	6.8	警告	phporacleview	-	phporacleview の inc/include_all.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2007-2340	2012-12-20 18:19	2007-04-27	Show	GitHub Exploit DB Packet Storm

228254	7.5	危険	shop-script	-	Shop-Script の cart.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2331	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228255	7.5	危険	searchactivity	-	Searchactivity の searchbot.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2329	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228256	7.5	危険	phpmytgp	-	phpMYTGP の addvip.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2328	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228257	10	危険	SilverStripe	-	SilverStripe の検索機能における脆弱性	-	CVE-2007-2321	2012-12-20 18:19	2007-04-17	Show	GitHub Exploit DB Packet Storm

228258	7.5	危険	VWar	-	PHP-Nuke 用の VWar モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2312	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228259	7.5	危険	webkalk2	-	WebKalk2 の engine/engine.inc.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2307	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

228260	4.3	警告	VWar	-	PHP-Nuke 用の VWar モジュールにおけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2306	2012-12-20 18:19	2007-04-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313271	7.8	HIGH Local	distrotech	cvs	Off-by-one overflow in the CVS PreservePermissions of rcs.c for CVSD before 1.11.2 allows local users to execute arbitrary code.	CWE-193 Off-by-one Error	CVE-2002-0844	2024-02-2 11:49	2002-08-12	Show	GitHub Exploit DB Packet Storm

313272	7.5	HIGH Network	ncftp	ncftpd_server	Off-by-one error in NcFTPd FTP server before 2.4.1 allows a remote attacker to cause a denial of service (crash) via a long PORT command.	CWE-193 Off-by-one Error	CVE-1999-1568	2024-02-2 11:49	1999-01-1	Show	GitHub Exploit DB Packet Storm

313273	7.8	HIGH Local	proftpd	proftpd	Off-by-one buffer overflow in _xlate_ascii_write() in ProFTPD 1.2.7 through 1.2.9rc2p allows local users to gain privileges via a 1024 byte RETR command.	CWE-193 Off-by-one Error	CVE-2004-0346	2024-02-2 11:48	2004-11-23	Show	GitHub Exploit DB Packet Storm

313274	7.8	HIGH Local	microsoft	excel office_sharepoint_server office_compatibility_pack office office_excel_viewer open_xml_file_format_converter	Microsoft Office Excel 2002 SP3, 2003 SP3, and 2007 SP1 and SP2; Office 2004 and 2008 for Mac; Open XML File Format Converter for Mac; Office Excel Viewer SP1 and SP2; and Office Compatibility Pack f…	CWE-843 Type Confusion	CVE-2010-0258	2024-02-2 11:38	2010-03-11	Show	GitHub Exploit DB Packet Storm

313275	-		linux	linux_kernel	nfs2acl.c in the Linux kernel 2.6.14.4 does not check for MAY_SATTR privilege before setting access controls (ACL) on files on exported NFS filesystems, which allows remote attackers to bypass ACLs f…	CWE-862 Missing Authorization	CVE-2005-3623	2024-02-2 11:19	2005-12-31	Show	GitHub Exploit DB Packet Storm

313276	7.5	HIGH Network	oracle	sun_one_application_server	Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.	CWE-178 Improper Handling of Case Sensitivity	CVE-2003-0411	2024-02-2 11:18	2003-06-30	Show	GitHub Exploit DB Packet Storm

313277	7.5	HIGH Network	symantec	norton_antivirus	Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some…	CWE-178 Improper Handling of Case Sensitivity	CVE-2002-0485	2024-02-2 11:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

313278	7.5	HIGH Network	netscape	fasttrack_server	Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.	CWE-178 Improper Handling of Case Sensitivity	CVE-1999-0239	2024-02-2 11:16	1998-01-1	Show	GitHub Exploit DB Packet Storm

313279	9.8	CRITICAL Network	sir	gnuboard	The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…	CWE-178 Improper Handling of Case Sensitivity	CVE-2005-0269	2024-02-2 11:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

313280	9.8	CRITICAL Network	apache	http_server	Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-0766	2024-02-2 11:13	2001-10-18	Show	GitHub Exploit DB Packet Storm