Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
193271	9.8	緊急 Network	BusyBox	-	BusyBox の DHCP クライアントにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2016-2148	2017-03-3 17:20	2016-02-26	Show	GitHub Exploit DB Packet Storm

193272	7.5	重要 Network	BusyBox	-	BusyBox の DHCP クライアントにおける整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2016-2147	2017-03-3 17:20	2016-03-10	Show	GitHub Exploit DB Packet Storm

193273	6.1	警告 Network	squidguard	-	squidGuard の squidGuard.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2015-8936	2017-03-3 17:16	2015-02-1	Show	GitHub Exploit DB Packet Storm

193274	5.3	警告 Network	SimpleSAMLphp	-	SimpleSAMLphp の sanitycheck モジュールにおけるシステムの PHP バージョンを取得される脆弱性	CWE-200 情報漏えい	CVE-2016-3124	2017-03-3 17:10	2016-03-1	Show	GitHub Exploit DB Packet Storm

193275	8.8	重要 Network	ATutor	-	ATutor の install_modules.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2016-2539	2017-03-3 17:05	2016-03-6	Show	GitHub Exploit DB Packet Storm

193276	5.9	警告 Network	Debian Canonical Exim Development	-	Exim における DKIM 署名の秘密鍵を取得される脆弱性	CWE-320 鍵管理のエラー	CVE-2016-9963	2017-03-3 16:59	2016-12-15	Show	GitHub Exploit DB Packet Storm

193277	7.5	重要 Network	dhcpcd project	-	dhcpcd におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2016-1504	2017-03-3 16:58	2016-01-7	Show	GitHub Exploit DB Packet Storm

193278	6.1	警告 Network	GOsa project	-	GOsa の html/index.php の displayLogin 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-9760	2017-03-3 16:46	2014-06-12	Show	GitHub Exploit DB Packet Storm

193279	7.8	重要 Local	IBM	-	IBM BigFix Platform における任意のファイルをアップロードされる脆弱性	CWE-284 不適切なアクセス制御	CVE-2016-0214	2017-03-3 16:42	2016-11-4	Show	GitHub Exploit DB Packet Storm

193280	5.3	警告 Network	IBM	-	IBM Sterling B2B Integrator Standard Edition における HTTP レスポンスの重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2016-0210	2017-03-3 16:27	2016-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293601	-	ipn-mate	ipn_pro_3	Cross-site request forgery (CSRF) vulnerability in admin/settings.php in IPN Pro 3 1.44 and earlier allows remote attackers to change the admin password via a logout action in conjunction with the ad…	CWE-352 Origin Validation Error	CVE-2008-5568	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293602	-	php_multiple_newsletters	php_multiple_newsletters	Directory traversal vulnerability in index.php in PHP Multiple Newsletters 2.7, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary local files via a .. (dot d…	CWE-22 Path Traversal	CVE-2008-5570	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293603	-	dotnetindex	professional_download_assistant	SQL injection vulnerability in admin/login.asp in Professional Download Assistant 0.1 allows remote attackers to execute arbitrary SQL commands via the (1) uname parameter (aka user field) or the (2)…	CWE-89 SQL Injection	CVE-2008-5571	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293604	-	dotnetindex	professional_download_assistant	Professional Download Assistant 0.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-5572	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293605	-	adcomplete	poll_pro	SQL injection vulnerability in the login feature in Poll Pro 2.0 allows remote attackers to execute arbitrary SQL commands via the (1) Password and (2) username parameters.	CWE-89 SQL Injection	CVE-2008-5573	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293606	-	unscripts	webmaster_marketplace	SQL injection vulnerability in member.php in Webmaster Marketplace allows remote attackers to execute arbitrary SQL commands via the u parameter.	CWE-89 SQL Injection	CVE-2008-5574	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293607	-	scssboard	scssboard	admin/forums.php in sCssBoard 1.0, 1.1, 1.11, and 1.12 allows remote attackers to bypass authentication and gain administrative access via a large value of the current_user[users_level] parameter.	CWE-287 Improper Authentication	CVE-2008-5576	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293608	-	scssboard	scssboard	PHP remote file inclusion vulnerability in index.php in sCssBoard 1.0, 1.1, 1.11, and 1.12 allows remote attackers to execute arbitrary PHP code via a URL in the inc_function parameter.	CWE-94 Code Injection	CVE-2008-5577	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293609	-	scssboard	scssboard	Multiple SQL injection vulnerabilities in index.php in sCssBoard 1.0, 1.1, 1.11, and 1.12 allow remote attackers to execute arbitrary SQL commands via (1) the f parameter in a showforum action, (2) t…	CWE-89 SQL Injection	CVE-2008-5578	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm

293610	-	nukedit	nukedit	SQL injection vulnerability in utilities/login.asp in Nukedit 4.9.x, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the email parameter.	CWE-89 SQL Injection	CVE-2008-5582	2017-09-29 10:32	2008-12-16	Show	GitHub Exploit DB Packet Storm