Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245871	5.1	警告	e107.org	-	e107 の usersettings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1409	2012-06-26 16:10	2009-04-24	Show	GitHub Exploit DB Packet Storm

245872	7.5	危険	creloaded	-	CRE Loaded の product_info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1403	2012-06-26 16:10	2009-04-24	Show	GitHub Exploit DB Packet Storm

245873	10	危険	forkosh	-	mimeTeX の mimetex.cgi におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1382	2012-06-26 16:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

245874	4.3	警告	DNN	-	DNN の Website\admin\Sales\paypalipn.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1366	2012-06-26 16:10	2009-04-1	Show	GitHub Exploit DB Packet Storm

245875	6.8	警告	chcounter	-	chCounter の administration/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1362	2012-06-26 16:10	2009-04-22	Show	GitHub Exploit DB Packet Storm

245876	10	危険	gscripts	-	GScripts.net DNS Tools の dig.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1361	2012-06-26 16:10	2009-04-22	Show	GitHub Exploit DB Packet Storm

245877	9.3	危険	elecard	-	Elecard AVC HD Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1356	2012-06-26 16:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

245878	9.3	危険	dawningsoft	-	Dawningsoft PowerCHM におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1352	2012-06-26 16:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

245879	6.8	警告	chcounter	-	chCounter の stats/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1347	2012-06-26 16:10	2009-04-20	Show	GitHub Exploit DB Packet Storm

245880	7.5	危険	cpcommerce	-	cpCommerce の document.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1345	2012-06-26 16:10	2009-04-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
349621	-	amax_information_technologies	magic_winmail_server	Directory traversal vulnerability in admin/main.php in AMAX Magic Winmail Server 4.2 (build 0824) and earlier allows remote attackers to overwrite arbitrary files with session information via the sid…	NVD-CWE-Other	CVE-2005-3811	2017-07-11 10:33	2005-11-26	Show	GitHub Exploit DB Packet Storm

349622	-	softbiz	web_hosting_directory_script	Multiple SQL injection vulnerabilities in Softbiz Web Host Directory Script 1.1 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) cid parameter in search_result.php, (2…	CWE-89 SQL Injection	CVE-2005-3817	2017-07-11 10:33	2005-11-26	Show	GitHub Exploit DB Packet Storm

349623	-	nicecoder	idesk	SQL injection vulnerability in faq.php in Nicecoder iDesk 1.0 allows remote attackers to execute arbitrary SQL commands via the cat_id parameter.	NVD-CWE-Other	CVE-2005-3843	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

349624	-	ezinvoiceinc	ez_invoice_inc	SQL injection vulnerability in invoices.php in EZ Invoice Inc 2.0 allows remote attackers to execute arbitrary SQL commands via the i parameter. NOTE: the vendor has stated "EZ Invoice, Inc has a pa…	CWE-89 SQL Injection	CVE-2005-3845	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

349625	-	fscripts	fantastic_news	SQL injection vulnerability in news.php in Fantastic News 2.1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the category parameter.	NVD-CWE-Other	CVE-2005-3846	2017-07-11 10:33	2005-11-27	Show	GitHub Exploit DB Packet Storm

349626	-	unalz	unalz	Buffer overflow in unalz before 0.53 allows remote attackers to execute arbitrary code via long file names in ALZ archives.	NVD-CWE-Other	CVE-2005-3862	2017-07-11 10:33	2005-11-29	Show	GitHub Exploit DB Packet Storm

349627	-	dillo	dillo_web_browser	Format string vulnerability in the a_Interface_msg function in Dillo before 0.8.3-r4 allows remote attackers to execute arbitrary code via format string specifiers in a web page.	NVD-CWE-Other	CVE-2005-0012	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

349628	-	crosswire_bible_society	sword	diatheke.pl in Sword 1.5.7a allows remote attackers to execute arbitrary commands via shell metacharacters in a URL.	NVD-CWE-Other	CVE-2005-0015	2017-07-11 10:32	2005-05-2	Show	GitHub Exploit DB Packet Storm

349629	-	gatos	gatos	Buffer overflow in the exported_display function in xatitv in gatos before 0.0.5 allows local users to execute arbitrary code.	NVD-CWE-Other	CVE-2005-0016	2017-07-11 10:32	2005-04-14	Show	GitHub Exploit DB Packet Storm

349630	-	yongguang_zhang	hztty	Unknown vulnerability in hztty 2.0 and earlier allows local users to execute arbitrary commands.	NVD-CWE-Other	CVE-2005-0019	2017-07-11 10:32	2005-04-27	Show	GitHub Exploit DB Packet Storm