Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
195011	4.3	警告 Network	Google	-	Google Chrome の Blink におけるブラウザの UI の複数のパーツを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2016-5188	2016-12-28 11:43	2016-10-12	Show	GitHub Exploit DB Packet Storm

195012	6.5	警告 Network	Google	-	Android 用 Google Chrome における Omnibox のコンテンツを偽造される脆弱性	CWE-20 不適切な入力確認	CVE-2016-5187	2016-12-28 11:43	2016-10-12	Show	GitHub Exploit DB Packet Storm

195013	8.8	重要 Network	Google	-	Google Chrome の PDFium におけるサービス運用妨害 (DoS) の脆弱性	CWE-416 解放済みメモリの使用	CVE-2016-5183	2016-12-28 11:43	2016-10-12	Show	GitHub Exploit DB Packet Storm

195014	9.8	緊急 Network	xrdp Debian	-	xrdp における脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-1430	2016-12-28 11:43	2013-01-26	Show	GitHub Exploit DB Packet Storm

195015	6.1	警告 Network	SPIP	-	SPIP の /ecrire/exec/info_plugin.php における反射型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9998	2016-12-28 11:41	2016-11-30	Show	GitHub Exploit DB Packet Storm

195016	6.1	警告 Network	SPIP	-	SPIP の /ecrire/exec/puce_statut.php における反射型クロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-9997	2016-12-28 11:41	2016-11-30	Show	GitHub Exploit DB Packet Storm

195017	4.3	警告 Network	Open-Xchange	-	Open-Xchange OX App Suite におけるファイルの存在有無のヒントを開示される脆弱性	CWE-200 情報漏えい	CVE-2016-6852	2016-12-28 11:38	2016-08-29	Show	GitHub Exploit DB Packet Storm

195018	6.1	警告 Network	Open-Xchange	-	Open-Xchange OX App Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6850	2016-12-28 11:38	2016-08-29	Show	GitHub Exploit DB Packet Storm

195019	5.5	警告 Local	Open-Xchange	-	Open-Xchange OX App Suite における Reflected File Download の脆弱性	CWE-254 セキュリティ機能	CVE-2016-6848	2016-12-28 11:38	2016-08-29	Show	GitHub Exploit DB Packet Storm

195020	6.1	警告 Network	Open-Xchange	-	Open-Xchange OX App Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2016-6847	2016-12-28 11:38	2016-08-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294291	-	psychdaily	php_ring_webring_system	admin/wr_admin.php in PHP-Ring Webring System (aka uPHP_ring_website) 0.9.1 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3602	2017-09-29 10:31	2008-08-13	Show	GitHub Exploit DB Packet Storm

294292	-	vacation_rentals	vacation_rental_script	SQL injection vulnerability in index.php in Vacation Rental Script 3.0 allows remote attackers to execute arbitrary SQL commands via the id parameter in a sections action.	CWE-89 SQL Injection	CVE-2008-3603	2017-09-29 10:31	2008-08-13	Show	GitHub Exploit DB Packet Storm

294293	-	articlefriendly	article_friendly	SQL injection vulnerability in categorydetail.php in Article Friendly Standard allows remote attackers to execute arbitrary SQL commands via the Cat parameter.	CWE-89 SQL Injection	CVE-2008-3649	2017-09-29 10:31	2008-08-13	Show	GitHub Exploit DB Packet Storm

294294	-	articlefriendly	article_friendly	Regarding Access Complexity: http://secunia.com/advisories/31292: "Input passed to the "autid" parameter in authordetail.php and to the "Cat" parameter in categorydetail.php is not properly san…	CWE-89 SQL Injection	CVE-2008-3649	2017-09-29 10:31	2008-08-13	Show	GitHub Exploit DB Packet Storm

294295	-	zeescripts	zeereviews	SQL injection vulnerability in comments.php in ZeeScripts Reviews Opinions Rating Posting Engine Web-Site PHP Script (aka ZeeReviews) allows remote attackers to execute arbitrary SQL commands via the…	CWE-89 SQL Injection	CVE-2008-3669	2017-09-29 10:31	2008-08-14	Show	GitHub Exploit DB Packet Storm

294296	-	articlefriendly	article_friendly	SQL injection vulnerability in authordetail.php in Article Friendly Pro allows remote attackers to execute arbitrary SQL commands via the autid parameter.	CWE-89 SQL Injection	CVE-2008-3670	2017-09-29 10:31	2008-08-14	Show	GitHub Exploit DB Packet Storm

294297	-	pozscripts	classified_ads	SQL injection vulnerability in browsecats.php in PozScripts Classified Ads allows remote attackers to execute arbitrary SQL commands via the cid parameter, a different vector than CVE-2008-3672.	CWE-89 SQL Injection	CVE-2008-3673	2017-09-29 10:31	2008-08-14	Show	GitHub Exploit DB Packet Storm

294298	-	pozscripts	tubeguru_video_sharing_script	SQL injection vulnerability in ugroups.php in PozScripts TubeGuru Video Sharing Script allows remote attackers to execute arbitrary SQL commands via the UID parameter.	CWE-89 SQL Injection	CVE-2008-3674	2017-09-29 10:31	2008-08-14	Show	GitHub Exploit DB Packet Storm

294299	-	gelatocms	gelatocms	Directory traversal vulnerability in classes/imgsize.php in Gelato 0.95 allows remote attackers to read arbitrary files via (1) a .. (dot dot) and possibly (2) a full pathname in the img parameter. …	CWE-22 Path Traversal	CVE-2008-3675	2017-09-29 10:31	2008-08-15	Show	GitHub Exploit DB Packet Storm

294300	-	joomla	com_user	components/com_user/models/reset.php in Joomla! 1.5 through 1.5.5 does not properly validate reset tokens, which allows remote attackers to reset the "first enabled user (lowest id)" password, typica…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-3681	2017-09-29 10:31	2008-08-15	Show	GitHub Exploit DB Packet Storm