Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
249541	7.5	危険	Hudong	-	HDWiki の model/comment.class.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5076	2012-02-9 16:00	2012-02-8	Show	GitHub Exploit DB Packet Storm

249542	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1011	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

249543	7.5	危険	Likno Software Inc.	-	WordPress 用 AllWebMenus プラグインの actions.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-1010	2012-02-9 15:59	2012-02-7	Show	GitHub Exploit DB Packet Storm

249544	8.5	危険	OpenEMR	-	OpenEMR の interface/fax/fax_dispatch.php における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-0992	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

249545	3.5	注意	OpenEMR	-	OpenEMR におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2012-0991	2012-02-9 15:57	2012-02-7	Show	GitHub Exploit DB Packet Storm

249546	3.5	注意	DClassifieds	-	DClassifieds の admin/settings/update におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-0990	2012-02-9 15:56	2012-02-7	Show	GitHub Exploit DB Packet Storm

249547	4.3	警告	Zenphoto	-	Zenphoto の zp-core/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4907	2012-02-9 11:18	2011-10-8	Show	GitHub Exploit DB Packet Storm

249548	7.5	危険	Zenphoto	-	Zenphoto の zp-core/full-image.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4906	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

249549	7.5	危険	SoftbizScripts	-	Softbiz Article Directory Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4905	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

249550	7.5	危険	DrBenHur	-	DBHcms の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4869	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
314861	-		cgiscript	cschat-r-box	csChatRBox.cgi in CGIScript.net csChat-R-Box allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.	CWE-94 Code Injection	CVE-2002-1752	2024-02-15 01:57	2002-12-31	Show	GitHub Exploit DB Packet Storm

314862	-		cgiscript	csnews_professional	csNewsPro.cgi in CGIScript.net csNews Professional (csNewsPro) allows remote attackers to execute arbitrary Perl code via the setup parameter, which is processed by the Perl eval function.	CWE-94 Code Injection	CVE-2002-1753	2024-02-15 01:56	2002-12-31	Show	GitHub Exploit DB Packet Storm

314863	5.5	MEDIUM Local	daansystems	newsreactor	NewsReactor 1.0 uses a weak encryption scheme, which could allow local users to decrypt the passwords and gain access to other users' newsgroup accounts.	CWE-326 Inadequate Encryption Strength	CVE-2002-1682	2024-02-15 01:55	2002-12-31	Show	GitHub Exploit DB Packet Storm

314864	7.8	HIGH Local	mckesson	pathways_homecare	Pathways Homecare 6.5 uses weak encryption for user names and passwords, which allows local users to gain privileges by recovering the passwords from the pwhc.ini file.	CWE-326 Inadequate Encryption Strength	CVE-2001-1546	2024-02-15 01:55	2001-12-31	Show	GitHub Exploit DB Packet Storm

314865	9.8	CRITICAL Network	arkeia	arkeia	Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt() function, which makes it easier for an attacker to conduct brute force password g…	CWE-916 Use of Password Hash With Insufficient Computational Effort	CVE-2001-0967	2024-02-15 01:55	2001-08-31	Show	GitHub Exploit DB Packet Storm

314866	7.8	HIGH Local	spectrumcu	cash_receipting_system	Spectrum Cash Receipting System before 6.504 uses weak cryptography (static substitution) in the PASSFILE password file, which makes it easier for local users to gain privileges by decrypting a passw…	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2005-4860	2024-02-15 01:54	2005-12-31	Show	GitHub Exploit DB Packet Storm

314867	-		plainblack	webgui	Multiple eval injection vulnerabilities in PlainBlack Software WebGUI before 6.7.3 allow remote attackers to execute arbitrary Perl code via (1) Help.pm, (2) International.pm, or (3) WebGUI.pm.	CWE-94 Code Injection	CVE-2005-2837	2024-02-15 01:53	2005-09-8	Show	GitHub Exploit DB Packet Storm

314868	7.5	HIGH Network	vtun_project	vtun	Electronic Code Book (ECB) mode in VTun 2.0 through 2.5 uses a weak encryption algorithm that produces the same ciphertext from the same plaintext blocks, which could allow remote attackers to gain s…	CWE-326 Inadequate Encryption Strength	CVE-2002-1697	2024-02-15 00:51	2002-12-31	Show	GitHub Exploit DB Packet Storm

314869	5.5	MEDIUM Local	mdaemon	mdaemon	Alt-N Technologies Mdaemon 5.0 through 5.0.6 uses a weak encryption algorithm to store user passwords, which allows local users to crack passwords.	CWE-326 Inadequate Encryption Strength	CVE-2002-1739	2024-02-15 00:50	2002-12-31	Show	GitHub Exploit DB Packet Storm

314870	7.5	HIGH Network	microsoft	sql_server	Microsoft SQL Server 6.0 through 2000, with SQL Authentication enabled, uses weak password encryption (XOR), which allows remote attackers to sniff and decrypt the password.	CWE-326 Inadequate Encryption Strength	CVE-2002-1872	2024-02-15 00:50	2002-12-31	Show	GitHub Exploit DB Packet Storm