Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228651	7.5	危険	red mexico	-	Xoops 用の rmgallery モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1806	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228652	7.8	危険	PulseAudio	-	PulseAudio におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1804	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228653	7.5	危険	sblog	-	sBLOG の inc/lang.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1801	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228654	4.9	警告	シマンテック	-	Symantec Norton Personal Firewall の SPBBCDrv.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2007-1793	2012-12-20 18:19	2007-04-2	Show	GitHub Exploit DB Packet Storm

228655	7.8	危険	シマンテック	-	SMTP 用の Symantec Mail Security および Mail Security Appliance におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1792	2012-12-20 18:19	2007-06-26	Show	GitHub Exploit DB Packet Storm

228656	9.3	危険	softerra	-	Softerra Time-Assistant の lib/timesheet.class.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1787	2012-12-20 18:19	2007-03-31	Show	GitHub Exploit DB Packet Storm

228657	4.3	警告	unverse.net	-	aBitWhizzy におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-1774	2012-12-20 18:19	2007-03-29	Show	GitHub Exploit DB Packet Storm

228658	2.6	注意	unverse.net	-	aBitWhizzy におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-1773	2012-12-20 18:19	2007-03-29	Show	GitHub Exploit DB Packet Storm

228659	6.3	警告	VMware	-	VMware Workstation の Shared Folders 機能におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-1744	2012-12-20 18:19	2007-05-2	Show	GitHub Exploit DB Packet Storm

228660	6.9	警告	TrueCrypt Foundation	-	TrueCrypt におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1738	2012-12-20 18:19	2007-03-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
313171	-		-	-	Rejected reason: This is unused.	-	CVE-2023-42665	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

313172	-		-	-	Rejected reason: This is unused.	-	CVE-2023-42437	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

313173	-		-	-	Rejected reason: This is unused.	-	CVE-2023-39450	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

313174	-		-	-	Rejected reason: This is unused.	-	CVE-2023-38262	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

313175	-		-	-	Rejected reason: This is unused.	-	CVE-2023-38137	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

313176	7.8	HIGH Local	microsoft	windows_2000	Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sen…	CWE-306 Missing Authentication for Critical Function	CVE-2004-0213	2024-02-15 02:25	2004-08-6	Show	GitHub Exploit DB Packet Storm

313177	7.5	HIGH Network	dlink	dwl-900ap\+_firmware	D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the admi…	CWE-306 Missing Authentication for Critical Function	CVE-2002-1810	2024-02-15 02:25	2002-12-31	Show	GitHub Exploit DB Packet Storm

313178	-		andynorman	gnuserv	gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a bu…	CWE-120 Classic Buffer Overflow	CVE-2001-0191	2024-02-15 02:25	2001-05-3	Show	GitHub Exploit DB Packet Storm

313179	-		awstats canonical debian	awstats ubuntu_linux debian_linux	Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $u…	CWE-94 Code Injection	CVE-2005-1527	2024-02-15 01:58	2005-08-15	Show	GitHub Exploit DB Packet Storm

313180	7.5	HIGH Network	netsourcecommerce	productcart	EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via a chosen plaintext attack.	CWE-326 Inadequate Encryption Strength	CVE-2004-2172	2024-02-15 01:58	2004-12-31	Show	GitHub Exploit DB Packet Storm