Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230401	6.8	警告	tumusika evolution	-	TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2090	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

230402	7.5	危険	pl-php	-	pL-PHP の admin.php における認証を回避される脆弱性	-	CVE-2007-2007	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230403	7.5	危険	pl-php	-	pL-PHP の login.php における SQL インジェクションの脆弱性	-	CVE-2007-2006	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230404	7.5	危険	raphael limbach	-	Crea-Book の admin/admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2007-2000	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230405	4.3	警告	Youngzsoft	-	CmailServer WebMail の mail/signup.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1991	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230406	7.5	危険	sam crew	-	Sam Crew MyBlog の games.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1990	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

230407	4.3	警告	phpecho cms	-	PHPEcho CMS の kernel/filters.inc.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1988	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230408	7.5	危険	phpexplorator	-	phpexplorator の phpexplorator.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1985	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230409	7.5	危険	really simple php and ajax	-	RSPA における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1982	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

230410	7.5	危険	有限会社ブルームーン	-	XOOPS 用の PopnupBlog モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-1979	2012-12-20 18:19	2007-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
347201	-	university_of_washington	pine	URL-handling code in Pine 4.43 and earlier allows remote attackers to execute arbitrary commands via a URL enclosed in single quotes and containing shell metacharacters (&).	NVD-CWE-Other	CVE-2002-0014	2016-10-18 11:15	2002-07-26	Show	GitHub Exploit DB Packet Storm

347202	-	andrew_tridgell	rsync	Multiple signedness errors (mixed signed and unsigned numbers) in the I/O functions of rsync 2.4.6, 2.3.2, and other versions allow remote attackers to cause a denial of service and execute arbitrary…	NVD-CWE-Other	CVE-2002-0048	2016-10-18 11:15	2002-02-27	Show	GitHub Exploit DB Packet Storm

347203	-	squid redhat	squid linux	Squid 2.4 STABLE3 and earlier does not properly disable HTCP, even when "htcp_port 0" is specified in squid.conf, which could allow remote attackers to bypass intended access restrictions.	NVD-CWE-Other	CVE-2002-0067	2016-10-18 11:15	2002-03-8	Show	GitHub Exploit DB Packet Storm

347204	-	squid redhat	squid linux	Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service (core dump) and possibly execute arbitrary code with an ftp:// URL with a larger number of special characters, which…	NVD-CWE-Other	CVE-2002-0068	2016-10-18 11:15	2002-03-8	Show	GitHub Exploit DB Packet Storm

347205	-	squid redhat	squid linux	Memory leak in SNMP in Squid 2.4 STABLE3 and earlier allows remote attackers to cause a denial of service.	NVD-CWE-Other	CVE-2002-0069	2016-10-18 11:15	2002-03-8	Show	GitHub Exploit DB Packet Storm

347206	-	php	php	Buffer overflows in (1) php_mime_split in PHP 4.1.0, 4.1.1, and 4.0.6 and earlier, and (2) php3_mime_split in PHP 3.0.x allows remote attackers to execute arbitrary code via a multipart/form-data HTT…	NVD-CWE-Other	CVE-2002-0081	2016-10-18 11:15	2002-03-8	Show	GitHub Exploit DB Packet Storm

347207	-	ultraedit	ultraedit-32	UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local users who can read the file to decrypt the passwords and gain privileges.	NVD-CWE-Other	CVE-2001-0983	2016-10-18 11:14	2001-08-31	Show	GitHub Exploit DB Packet Storm

347208	-	webct	respondus	Respondus 1.1.2 for WebCT uses weak encryption to remember usernames and passwords, which allows local users who can read the WEBCT.SVR file to decrypt the passwords and gain additional privileges.	NVD-CWE-Other	CVE-2001-1003	2016-10-18 11:14	2001-08-31	Show	GitHub Exploit DB Packet Storm

347209	-	oracle	database_server	oracle program in Oracle 8.0.x, 8.1.x and 9.0.1 allows local users to overwrite arbitrary files via a symlink attack on an Oracle log trace (.trc) file that is created in an alternate home directory …	NVD-CWE-Other	CVE-2001-1041	2016-10-18 11:14	2001-08-31	Show	GitHub Exploit DB Packet Storm

347210	-	webmin	webmin	Directory traversal vulnerability in edit_action.cgi of Webmin Directory 0.91 allows attackers to gain privileges via a '..' (dot dot) in the argument.	NVD-CWE-Other	CVE-2001-1196	2016-10-18 11:14	2001-12-17	Show	GitHub Exploit DB Packet Storm