Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231631	7.5	危険	pineapple technologies	-	Pineapple Technologies Lore における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2021	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231632	7.5	危険	tomex	-	phpGalleryScript の init.gallery.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2019	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231633	4.3	警告	The phpMyAdmin Project	-	phpMyAdmin の mysql/phpinfo.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2016	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231634	6.8	警告	request it	-	Request It の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2015	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231635	6.8	警告	simpcms	-	SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2007-2009	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231636	7.5	危険	pl-php	-	pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性	-	CVE-2007-2008	2012-12-20 18:19	2007-04-12	Show	GitHub Exploit DB Packet Storm

231637	10	危険	stephen craton	-	Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性	-	CVE-2007-2147	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

231638	7.5	危険	shoutpro	-	ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性	-	CVE-2007-2141	2012-12-20 18:19	2007-04-19	Show	GitHub Exploit DB Packet Storm

231639	7.5	危険	rha7 downloads	-	XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性	-	CVE-2007-2107	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

231640	6.8	警告	wabbit	-	Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性	-	CVE-2007-2098	2012-12-20 18:19	2007-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349411	-	phpmyadmin	phpmyadmin	Multiple cross-site scripting (XSS) vulnerabilities in phpMyAdmin before 2.6.4-pl3 allow remote attackers to inject arbitrary web script or HTML via certain arguments to (1) left.php, (2) queryframe.…	NVD-CWE-Other	CVE-2005-3301	2011-03-8 11:26	2005-10-24	Show	GitHub Exploit DB Packet Storm

349412	-	clam_anti-virus	clamav	The FSG unpacker (fsg.c) in Clam AntiVirus (ClamAV) 0.80 through 0.87 allows remote attackers to cause "memory corruption" and execute arbitrary code via a crafted FSG 1.33 file.	NVD-CWE-Other	CVE-2005-3303	2011-03-8 11:26	2005-11-5	Show	GitHub Exploit DB Packet Storm

349413	-	novell	zenworks_patch_management_server	Multiple SQL injection vulnerabilities in Novell ZENworks Patch Management 6.x before 6.2.2.181 allow remote attackers to execute arbitrary SQL commands via the (1) Direction parameter to computers/d…	NVD-CWE-Other	CVE-2005-3315	2011-03-8 11:26	2005-10-31	Show	GitHub Exploit DB Packet Storm

349414	-	mantis	mantis	SQL injection vulnerability in Mantis 1.0.0RC2 and 0.19.2 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	NVD-CWE-Other	CVE-2005-3336	2011-03-8 11:26	2005-10-27	Show	GitHub Exploit DB Packet Storm

349415	-	norman_ramsey	noweb	noweb 2.10c and earlier allows local users to overwrite arbitrary files via symlink attacks on temporary files in (1) lib/toascii.nw and (2) shell/roff.mm.	NVD-CWE-Other	CVE-2005-3342	2011-03-8 11:26	2005-12-31	Show	GitHub Exploit DB Packet Storm

349416	-	trend_micro	pc-cillin_2005	The installation of Trend Micro PC-Cillin Internet Security 2005 12.00 build 1244, and probably previous versions, uses insecure default ACLs, which allows local users to cause a denial of service (d…	NVD-CWE-Other	CVE-2005-3360	2011-03-8 11:26	2005-12-15	Show	GitHub Exploit DB Packet Storm

349417	-	luca_deri	ntop	The startup script in packages/RedHat/ntop.init in ntop before 3.2, when ntop.conf is writable by users besides root, creates temporary files insecurely, which allows remote attackers to execute arbi…	NVD-CWE-Other	CVE-2005-3387	2011-03-8 11:26	2005-11-1	Show	GitHub Exploit DB Packet Storm

349418	-	snitz_communications	snitz_forums_2000	Cross-site scripting (XSS) vulnerability in post.asp in Snitz Forums 2000 3.4.05 allows remote attackers to inject arbitrary web script or HTML via the type parameter in a Topic method.	NVD-CWE-Other	CVE-2005-3411	2011-03-8 11:26	2005-11-2	Show	GitHub Exploit DB Packet Storm

349419	-	10-4_aps	asp_fast_forum	Cross-site scripting (XSS) vulnerability in error.asp in ASP Fast Forum allows remote attackers to inject arbitrary web script or HTML via the error parameter.	NVD-CWE-Other	CVE-2005-3422	2011-03-8 11:26	2005-11-2	Show	GitHub Exploit DB Packet Storm

349420	-	gnu	gnump3d	Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.5 allows remote attackers to inject arbitrary web script or HTML via 404 error pages, a different vulnerability than CVE-2005-3425.	NVD-CWE-Other	CVE-2005-3424	2011-03-8 11:26	2005-11-2	Show	GitHub Exploit DB Packet Storm