Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230871 5 警告 VideoLAN - VideoLAN VLC のブラウザプラグインにおける任意のファイルを上書きされる脆弱性 CWE-DesignError
CVE-2007-6683 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
230872 7.5 危険 VideoLAN - VideoLAN VLC の httpd_FileCallBack 関数 におけるフォーマットストリングの脆弱性 CWE-DesignError
CVE-2007-6682 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
230873 7.5 危険 VideoLAN - VideoLAN VLC の modules/demux/subtitle.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2007-6681 2012-12-20 18:34 2008-01-16 Show GitHub Exploit DB Packet Storm
230874 5 警告 uber uploader - UU の初期設定におけるアップロードに危険な拡張子を使用される脆弱性 CWE-16
環境設定 		CVE-2007-6676 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230875 4.3 警告 rapidshare - RapidShare Database の Default.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6674 2012-12-20 18:34 2008-01-8 Show GitHub Exploit DB Packet Storm
230876 7.5 危険 phpcredo - PHCDownload の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6670 2012-12-20 18:34 2008-01-7 Show GitHub Exploit DB Packet Storm
230877 4.3 警告 phpcredo - PHCDownload の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6669 2012-12-20 18:34 2008-01-7 Show GitHub Exploit DB Packet Storm
230878 7.5 危険 Zenphoto - Zenphoto の rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6666 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
230879 7.5 危険 webportal - WebPortal CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6664 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
230880 7.5 危険 pragmaticutopia - Joomla! 用の Pragmatic Utopia PU Arcade コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6663 2012-12-20 18:34 2008-01-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
209881 5.4 MEDIUM
Network 		online_hotel_booking_system_pro_project online_hotel_booking_system_pro Online Hotel Booking System Pro PHP Version 1.3 has Persistent Cross-site Scripting in Customer registration-form all-tags. CWE-79
Cross-site Scripting 		CVE-2020-23984 2024-11-21 14:14 2020-08-28 Show GitHub Exploit DB Packet Storm
209882 5.4 MEDIUM
Network 		ichat_project ichat Michael-design iChat Realtime PHP Live Support System 1.6 has persistent Cross-site Scripting via chat,text-filed tags. CWE-79
Cross-site Scripting 		CVE-2020-23983 2024-11-21 14:14 2020-08-28 Show GitHub Exploit DB Packet Storm
209883 6.1 MEDIUM
Network 		designmasterevents conference_management_cms DesignMasterEvents Conference management 1.0.0 has cross site scripting via the 'certificate.php' CWE-79
Cross-site Scripting 		CVE-2020-23982 2024-11-21 14:14 2020-08-28 Show GitHub Exploit DB Packet Storm
209884 6.1 MEDIUM
Network 		13enforme 13enforme_cms 13enforme CMS 1.0 has Cross Site Scripting via the "content.php" id parameter. CWE-79
Cross-site Scripting 		CVE-2020-23981 2024-11-21 14:14 2020-08-28 Show GitHub Exploit DB Packet Storm
209885 9.8 CRITICAL
Network 		13enforme 13enforme_cms 13enforme CMS 1.0 has SQL Injection via the 'content.php' id parameter. CWE-89
SQL Injection 		CVE-2020-23979 2024-11-21 14:14 2020-08-28 Show GitHub Exploit DB Packet Storm
209886 9.8 CRITICAL
Network 		soluzioneglobale ecommerce_cms SQL injection can occur in Soluzione Globale Ecommerce CMS v1 via the parameter " offerta.php" CWE-89
SQL Injection 		CVE-2020-23978 2024-11-21 14:14 2020-08-27 Show GitHub Exploit DB Packet Storm
209887 6.1 MEDIUM
Network 		kandnconcepts_club_cms_project kandnconcepts_club_cms KandNconcepts Club CMS 1.1 and 1.2 has cross site scripting via the 'team.php,player.php,club.php' id parameter. CWE-79
Cross-site Scripting 		CVE-2020-23977 2024-11-21 14:14 2020-08-27 Show GitHub Exploit DB Packet Storm
209888 9.8 CRITICAL
Network 		webexcels ecommerce_cms Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has SQL Injection via the 'content.php' id parameter. CWE-89
SQL Injection 		CVE-2020-23976 2024-11-21 14:14 2020-08-27 Show GitHub Exploit DB Packet Storm
209889 6.1 MEDIUM
Network 		webexcels ecommerce_cms Webexcels Ecommerce CMS 2.x, 2017, 2018, 2019, 2020 has cross site scripting via the 'search.php' id parameter. CWE-79
Cross-site Scripting 		CVE-2020-23975 2024-11-21 14:14 2020-08-27 Show GitHub Exploit DB Packet Storm
209890 5.4 MEDIUM
Network 		create-project_manager_project create-project_manager Create-Project Manager 1.07 has Multi Persistent Cross-site Scripting and HTML injection in via Online chat, Social feed,Message(title-tag), Add new client (all-tags). CWE-79
Cross-site Scripting 		CVE-2020-23974 2024-11-21 14:14 2020-08-27 Show GitHub Exploit DB Packet Storm