Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232411 4.3 警告 SquirrelMail Project - Squirrelmail 用の GPG Plugin の gpg_pop_init.php における PHP ローカルファイルインクルージョンの脆弱性 - CVE-2007-3779 2012-12-20 18:33 2007-07-15 Show GitHub Exploit DB Packet Storm
232412 7.5 危険 SquirrelMail Project - Squirrelmail 用の GPG Plugin における任意のコマンドを実行される脆弱性 - CVE-2007-3778 2012-12-20 18:33 2007-07-15 Show GitHub Exploit DB Packet Storm
232413 6.4 警告 psnews - PsNews の news/show.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3772 2012-12-20 18:33 2007-07-15 Show GitHub Exploit DB Packet Storm
232414 4.6 警告 シマンテック - Symantec AntiVirus Corporate Edition および Client Security におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3771 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
232415 5 警告 silcnet - SILC Client および SILC Toolkit の lib/silcclient/client_notify.c におけるバッファオーバーフローの脆弱性 - CVE-2007-3728 2012-12-20 18:33 2007-07-12 Show GitHub Exploit DB Packet Storm
232416 7.5 危険 Wafer - Webmatic における脆弱性 - CVE-2007-3727 2012-12-20 18:33 2007-07-12 Show GitHub Exploit DB Packet Storm
232417 4.3 警告 RARLAB - unrar の rarvm.cpp における整数符号エラーの脆弱性 - CVE-2007-3726 2012-12-20 18:33 2007-07-12 Show GitHub Exploit DB Packet Storm
232418 2.1 注意 サン・マイクロシステムズ - Sun Solaris カーネルのプロセススケジューラにおけるサービス運用妨害 (DoS) の脆弱性 - CVE-2007-3723 2012-12-20 18:33 2007-07-12 Show GitHub Exploit DB Packet Storm
232419 6.9 警告 サン・マイクロシステムズ - Sun Solaris の rcp における権限を取得される脆弱性 - CVE-2007-3717 2012-12-20 18:33 2007-07-10 Show GitHub Exploit DB Packet Storm
232420 6.8 警告 zenturi - Zenturi ProgramChecker の sasatl.dll におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3703 2012-12-20 18:33 2007-07-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
353801 - ben_jeavons ownterm Cross-site scripting (XSS) vulnerability in the Own Term module 6.x-1.0 for Drupal allows remote authenticated users, with "create additional terms" privileges, to inject arbitrary web script or HTML… CWE-79
Cross-site Scripting 		CVE-2010-1362 2010-04-14 22:59 2010-04-14 Show GitHub Exploit DB Packet Storm
353802 - yasirpro ms-pro_portal_scripti YP Portal MS-Pro Surumu (aka MS-Pro Portal Scripti) 1.0 and 1.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4766 2010-04-14 21:44 2010-04-14 Show GitHub Exploit DB Packet Storm
353803 - ron_jerome bibliography Cross-site scripting (XSS) vulnerability in the Bibliography (Biblio) module 5.x through 5.x-1.17 and 6.x through 6.x-1.9 for Drupal allows remote authenticated users, with "administer biblio" privil… CWE-79
Cross-site Scripting 		CVE-2010-1358 2010-04-14 13:00 2010-04-14 Show GitHub Exploit DB Packet Storm
353804 - uiga fan_club SQL injection vulnerability in index.php in Uiga Fan Club, as downloaded on 20100310, allows remote attackers to execute arbitrary SQL commands via the id parameter in a photos action. CWE-89
SQL Injection 		CVE-2010-1365 2010-04-14 13:00 2010-04-14 Show GitHub Exploit DB Packet Storm
353805 - uiga fan_club Multiple cross-site scripting (XSS) vulnerabilities in admin/admin_login.php in Uiga Fan Club, as downloaded on 20100310, allow remote attackers to inject arbitrary web script or HTML via the (1) adm… CWE-79
Cross-site Scripting 		CVE-2010-1367 2010-04-14 13:00 2010-04-14 Show GitHub Exploit DB Packet Storm
353806 - preprojects pre_classified_listings_asp SQL injection vulnerability in detailad.asp in Pre Classified Listings ASP allows remote attackers to execute arbitrary SQL commands via the siteid parameter. CWE-89
SQL Injection 		CVE-2010-1370 2010-04-14 13:00 2010-04-14 Show GitHub Exploit DB Packet Storm
353807 - cnr.somee hikaye_portal CNR Hikaye Portal 2.0 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for db/hikaye.mdb. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2009-4765 2010-04-14 13:00 2010-04-14 Show GitHub Exploit DB Packet Storm
353808 - jooforge com_jukebox Directory traversal vulnerability in the JOOFORGE Jutebox (com_jukebox) component 1.0 and 1.7 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the controller paramete… CWE-22
Path Traversal 		CVE-2010-1352 2010-04-14 06:31 2010-04-13 Show GitHub Exploit DB Packet Storm
353809 - cisco ios The SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to cause a denial of service (device reload) via a malformed SIP message, aka Bug ID CSCtb93416, the "SIP Message Handling De… NVD-CWE-Other
CVE-2010-0579 2010-04-13 14:43 2010-03-26 Show GitHub Exploit DB Packet Storm
353810 - cisco ios Unspecified vulnerability in the SIP implementation in Cisco IOS 12.3 and 12.4 allows remote attackers to execute arbitrary code via a malformed SIP message, aka Bug ID CSCsz48680, the "SIP Message P… NVD-CWE-noinfo
CVE-2010-0580 2010-04-13 14:43 2010-03-26 Show GitHub Exploit DB Packet Storm