Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231001	6.5	警告	WordPress.org	-	WordPress の wp-login.php における認証ユーザを他の Web サイトへリダイレクトされる脆弱性	-	CVE-2007-1599	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

231002	5	警告	unclassified newsboard	-	Unclassified NewsBoard における board ログを取得される脆弱性	-	CVE-2007-1597	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

231003	5	警告	シマンテック	-	Symantec Storage Foundation 製品の Symantec VVR および VVR の管理サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2007-1593	2012-12-20 18:19	2007-06-1	Show	GitHub Exploit DB Packet Storm

231004	2.1	注意	TrueCrypt Foundation	-	TrueCrypt におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1589	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231005	10	危険	tim soderstrom	-	Tim Soderstrom StatsDawg の templates/config/mail.tpl における任意のプログラムを実行される脆弱性	-	CVE-2007-1587	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231006	7.8	危険	ZyXEL	-	ZynOS におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-1586	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231007	4.3	警告	phprojekt	-	PHProjekt におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-1576	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231008	7.5	危険	phprojekt	-	PHProjekt における SQL インジェクションの脆弱性	-	CVE-2007-1575	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231009	6.8	警告	加藤和良	-	JGBBS の search.asp における SQL インジェクションの脆弱性	-	CVE-2007-1572	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

231010	6.8	警告	radical designs	-	Radical Designs AMP の includes/base.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-1571	2012-12-20 18:19	2007-03-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
316861	-		-	-	Rejected reason: This is unused.	-	CVE-2023-42665	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

316862	-		-	-	Rejected reason: This is unused.	-	CVE-2023-42437	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

316863	-		-	-	Rejected reason: This is unused.	-	CVE-2023-39450	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

316864	-		-	-	Rejected reason: This is unused.	-	CVE-2023-38262	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

316865	-		-	-	Rejected reason: This is unused.	-	CVE-2023-38137	2024-02-15 03:15	2024-02-15	Show	GitHub Exploit DB Packet Storm

316866	7.8	HIGH Local	microsoft	windows_2000	Utility Manager in Windows 2000 launches winhlp32.exe while Utility Manager is running with raised privileges, which allows local users to gain system privileges via a "Shatter" style attack that sen…	CWE-306 Missing Authentication for Critical Function	CVE-2004-0213	2024-02-15 02:25	2004-08-6	Show	GitHub Exploit DB Packet Storm

316867	7.5	HIGH Network	dlink	dwl-900ap\+_firmware	D-Link DWL-900AP+ Access Point 2.1 and 2.2 allows remote attackers to access the TFTP server without authentication and read the config.img file, which contains sensitive information such as the admi…	CWE-306 Missing Authentication for Critical Function	CVE-2002-1810	2024-02-15 02:25	2002-12-31	Show	GitHub Exploit DB Packet Storm

316868	-		andynorman	gnuserv	gnuserv before 3.12, as shipped with XEmacs, does not properly check the specified length of an X Windows MIT-MAGIC-COOKIE cookie, which allows remote attackers to execute arbitrary commands via a bu…	CWE-120 Classic Buffer Overflow	CVE-2001-0191	2024-02-15 02:25	2001-05-3	Show	GitHub Exploit DB Packet Storm

316869	-		awstats canonical debian	awstats ubuntu_linux debian_linux	Eval injection vulnerability in awstats.pl in AWStats 6.4 and earlier, when a URLPlugin is enabled, allows remote attackers to execute arbitrary Perl code via the HTTP Referrer, which is used in a $u…	CWE-94 Code Injection	CVE-2005-1527	2024-02-15 01:58	2005-08-15	Show	GitHub Exploit DB Packet Storm

316870	7.5	HIGH Network	netsourcecommerce	productcart	EarlyImpact ProductCart uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via a chosen plaintext attack.	CWE-326 Inadequate Encryption Strength	CVE-2004-2172	2024-02-15 01:58	2004-12-31	Show	GitHub Exploit DB Packet Storm