Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
195041 8.8 重要
Network 		ネットギア - 複数の NETGEAR 製ルータに脆弱性 CWE-306
CWE-352
CWE-77
CVE-2016-6277 2016-12-27 14:16 2016-12-9 Show GitHub Exploit DB Packet Storm
195042 1.7 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における Privileges に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0609 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
195043 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における UDF に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0608 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
195044 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における Encryption に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0606 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
195045 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における InnoDB に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0600 2016-12-27 10:52 2016-01-19 Show GitHub Exploit DB Packet Storm
195046 7.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Platform Security for Java における Audit Reports に関する脆弱性 CWE-Other
その他 		CVE-2016-8281 2016-12-27 10:23 2016-10-18 Show GitHub Exploit DB Packet Storm
195047 7.6 重要
Network 		オラクル - Oracle Fusion Middleware の Oracle Platform Security for Java における Audit Schema に関する脆弱性 CWE-Other
その他 		CVE-2016-5536 2016-12-27 10:22 2016-10-18 Show GitHub Exploit DB Packet Storm
195048 8.1 重要
Network 		The PHP Group
日本電気
ヒューレット・パッカード・エンタープライズ
Fedora Project
オラクル		 - PHP における任意のプロキシサーバにアプリケーションのアウトバウンド HTTP トラフィックをリダイレクトされる脆弱性 CWE-Other
CWE-Other
CVE-2016-5385 2016-12-27 10:18 2016-07-18 Show GitHub Exploit DB Packet Storm
195049 3.5 注意 MySQL AB
openSUSE project
Canonical
Debian
MariaDB Corporation Ab.
オラクル
レッドハット		 - Oracle MySQL の MySQL Server および MariaDB における DML に関する脆弱性 CWE-noinfo
情報不足 		CVE-2016-0598 2016-12-27 10:14 2016-01-19 Show GitHub Exploit DB Packet Storm
195050 9.8 緊急
Network 		The PHP Group
openSUSE project
Fedora Project		 - PHP の ext/exif/exif.c の exif_process_IFD_in_JPEG 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2016-4543 2016-12-27 10:02 2016-04-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294131 - phpmotion phpmotion RETIRED: Information from the vendor and further analysis show that the application is not affected by these issues. CWE-89
SQL Injection 		CVE-2008-3118 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294132 - dreamlevels dream_pics_builder SQL injection vulnerability in index.php in DreamPics Builder allows remote attackers to execute arbitrary SQL commands via the page parameter. CWE-89
SQL Injection 		CVE-2008-3119 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294133 - mole_group real_estate_script SQL injection vulnerability in index.php in Mole Group Real Estate Script 1.1 and earlier allows remote attackers to execute arbitrary SQL commands via the listing_id parameter in a listings action. CWE-89
SQL Injection 		CVE-2008-3123 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294134 - mole_group hotel_script SQL injection vulnerability in index.php in Mole Group Hotel Script 1.0 allows remote attackers to execute arbitrary SQL commands via the file parameter. CWE-89
SQL Injection 		CVE-2008-3124 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294135 - hiox_india banner_rotator PHP remote file inclusion vulnerability in hioxBannerRotate.php in HIOX Banner Rotator (HBR) 1.3, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in … CWE-20
 Improper Input Validation  		CVE-2008-3127 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294136 - pivot pivot Directory traversal vulnerability in search.php in Pivot 1.40.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the t parameter. CWE-22
Path Traversal 		CVE-2008-3128 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294137 - powie psys SQL injection vulnerability in chatbox.php in pSys 0.7.0 Alpha, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the showid parameter. CWE-89
SQL Injection 		CVE-2008-3131 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294138 - joomla com_beamospetition SQL injection vulnerability in the beamospetition (com_beamospetition) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the pet parameter to index.php. CWE-89
SQL Injection 		CVE-2008-3132 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294139 - barenuked barenuked_cms SQL injection vulnerability in admin/index.php in BareNuked CMS 1.1.0, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the password parameter. CWE-89
SQL Injection 		CVE-2008-3133 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm
294140 - ashopsoftware ashop_deluxe SQL injection vulnerability in catalogue.php in AShop Deluxe 4.x allows remote attackers to execute arbitrary SQL commands via the cat parameter. CWE-89
SQL Injection 		CVE-2008-3136 2017-09-29 10:31 2008-07-11 Show GitHub Exploit DB Packet Storm