Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231341	5	警告	poptop	-	PoPToP pptpd の pptpgre.c におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2007-0244	2012-12-20 18:19	2007-05-8	Show	GitHub Exploit DB Packet Storm

231342	4.3	警告	Zope Foundation	-	Zope におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0240	2012-12-20 18:19	2007-03-22	Show	GitHub Exploit DB Packet Storm

231343	7.5	危険	WordPress.org	-	WordPress の wp-trackback.php における任意の SQL コマンドを実行される脆弱性	-	CVE-2007-0233	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

231344	6.8	警告	シックス・アパート株式会社	-	MT におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0231	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

231345	6.8	警告	spine	-	SPINE におけるクロスサイトリクエストフォージェリの脆弱性	-	CVE-2007-0101	2012-12-20 18:19	2007-01-8	Show	GitHub Exploit DB Packet Storm

231346	6.8	警告	verliadmin	-	VerliAdmin の language.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-0098	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

231347	5	警告	The phpMyAdmin Project	-	phpMyAdmin における重要な情報を取得される脆弱性	-	CVE-2007-0095	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

231348	7.5	危険	sven moderow	-	Sven Moderow GuestBook におけるパスワードを含むデータベースをダウンロードされる脆弱性	-	CVE-2007-0094	2012-12-20 18:19	2007-01-5	Show	GitHub Exploit DB Packet Storm

231349	7.5	危険	uniforum	-	uniForum の wbsearch.aspx における SQL インジェクションの脆弱性	-	CVE-2007-0226	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

231350	6.8	警告	virtual programming	-	VP-ASP Shopping Cart の shopcustadmin.asp におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-0225	2012-12-20 18:19	2007-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349601	-	clam_anti-virus	clamav	ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers.	NVD-CWE-Other	CVE-2005-0133	2008-09-11 04:35	2005-05-2	Show	GitHub Exploit DB Packet Storm

349602	-	smartlist	smartlist	The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie…	NVD-CWE-Other	CVE-2005-0157	2008-09-11 04:35	2005-05-3	Show	GitHub Exploit DB Packet Storm

349603	-	clam_anti-virus	clamav	ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL.	NVD-CWE-Other	CVE-2005-0218	2008-09-11 04:35	2005-05-2	Show	GitHub Exploit DB Packet Storm

349604	-	phpbb_group	phpbb	Directory traversal vulnerability in (1) usercp_register.php and (2) usercp_avatar.php for phpBB 2.0.11, and possibly other versions, with gallery avatars enabled, allows remote attackers to delete (…	NVD-CWE-Other	CVE-2005-0258	2008-09-11 04:35	2005-03-14	Show	GitHub Exploit DB Packet Storm

349605	-	phpbb_group	phpbb	phpBB 2.0.11, and possibly other versions, with remote avatars and avatar uploading enabled, allows local users to read arbitrary files by providing both a local and remote location for an avatar, th…	NVD-CWE-Other	CVE-2005-0259	2008-09-11 04:35	2005-03-14	Show	GitHub Exploit DB Packet Storm

349606	-	zakon_group	openconf	Cross-site scripting (XSS) vulnerability in Openconf 1.04, and possibly other versions before 1.10, allows remote attackers to inject arbitrary HTML and web script via the paper title.	NVD-CWE-Other	CVE-2005-0407	2008-09-11 04:35	2005-05-2	Show	GitHub Exploit DB Packet Storm

349607	-	citrusdb	citrusdb	CitrusDB 0.3.6 and earlier does not verify authorization for the (1) importcc.php and (2) uploadcc.php, which allows remote attackers to upload credit card data and obtain sensitive information such …	NVD-CWE-Other	CVE-2005-0409	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

349608	-	citrusdb	citrusdb	SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file.	NVD-CWE-Other	CVE-2005-0410	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

349609	-	citrusdb	citrusdb	Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. (dot dot) sequences in the load parameter.	NVD-CWE-Other	CVE-2005-0411	2008-09-11 04:35	2005-02-14	Show	GitHub Exploit DB Packet Storm

349610	-	gentoo	poppassd_pam	poppassd_pam 1.0 and earlier, when changing a user password, does not verify that the user entered the old password correctly, which allows remote attackers to change passwords for arbitrary users.	NVD-CWE-Other	CVE-2005-0002	2008-09-11 04:34	2005-05-2	Show	GitHub Exploit DB Packet Storm