Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
209561 5.4 警告 buronya - Android 用 Dil Bilgisi Kurallari アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7398 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209562 5.4 警告 byfes - Android 用 ileri Gazetesi - Yozgat アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7397 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209563 5.4 警告 pocketknife bravo super project - Android 用 PocketKnife Bravo Super アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7396 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209564 5.4 警告 usfbcm - Android 用 USF BCM アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7395 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209565 5.4 警告 alaaliwat - Android 用 www.alaaliwat.com アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7394 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209566 5.4 警告 mbtcreations - Android 用 100 Beauty Tips アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7393 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209567 5.4 警告 avto-russia - Android 用 Russian Federation Traffic Rules アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7392 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209568 5.4 警告 pintsized - Android 用 Synx addictive puzzle game アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7391 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209569 5.4 警告 tabtale - Android 用 Enchanted Fashion Crush アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7390 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
209570 5.4 警告 nobexrc - Android 用 Amnesia Groove アプリケーションにおけるサーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2014-7389 2014-12-17 09:57 2014-09-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293181 - kasseler-cms kasseler_cms Multiple SQL injection vulnerabilities in Kasseler CMS 1.1.0 and 1.2.0 allow remote attackers to execute arbitrary SQL commands via (1) the nid parameter to index.php in a View action to the News mod… CWE-89
SQL Injection 		CVE-2008-4356 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293182 - powie plink SQL injection vulnerability in linkto.php in Powie pLink 2.07 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2008-4357 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293183 - powerportal powerportal Directory traversal vulnerability in PowerPortal 2.0.13 allows remote attackers to list and possibly read arbitrary files via a .. (dot dot) in the path parameter to the default URI. CWE-22
Path Traversal 		CVE-2008-4361 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293184 - deslock deslock The Virtual Token driver (vdlptokn.sys) 1.0.2.43 in DESlock+ 3.2.7 allows local users to cause a denial of service (system crash) via a crafted IOCTL request to \Device\DLPTokenWalter0. CWE-399
 Resource Management Errors 		CVE-2008-4362 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293185 - deslock deslock DLMFENC.sys 1.0.0.28 in DESlock+ 3.2.7 allows local users to cause a denial of service (system crash) or potentially execute arbitrary code via a certain DLMFENC_IOCTL request to \\.\DLKPFSD_Device t… CWE-20
 Improper Input Validation  		CVE-2008-4363 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293186 - camera_life camera_life Unrestricted file upload vulnerability in the image upload component in Camera Life 2.6.2b4 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extensio… CWE-20
 Improper Input Validation  		CVE-2008-4366 2017-09-29 10:32 2008-10-1 Show GitHub Exploit DB Packet Storm
293187 - availscript availscript_photo_album SQL injection vulnerability in pics.php in Availscript Photo Album allows remote attackers to execute arbitrary SQL commands via the sid parameter. CWE-89
SQL Injection 		CVE-2008-4369 2017-09-29 10:32 2008-10-2 Show GitHub Exploit DB Packet Storm
293188 - availscript availscript_photo_album Multiple cross-site scripting (XSS) vulnerabilities in Availscript Photo Album allow remote attackers to inject arbitrary web script or HTML via the (1) sid parameter to pics.php and the (2) a parame… CWE-79
Cross-site Scripting 		CVE-2008-4370 2017-09-29 10:32 2008-10-2 Show GitHub Exploit DB Packet Storm
293189 - availscript availscript_article_script SQL injection vulnerability in articles.php in AvailScript Article Script allows remote attackers to execute arbitrary SQL commands via the aIDS parameter. CWE-89
SQL Injection 		CVE-2008-4371 2017-09-29 10:32 2008-10-2 Show GitHub Exploit DB Packet Storm
293190 - availscript availscript_article_script Cross-site scripting (XSS) vulnerability in articles.php in AvailScript Article Script allows remote attackers to inject arbitrary web script or HTML via the aIDS parameter. CWE-79
Cross-site Scripting 		CVE-2008-4372 2017-09-29 10:32 2008-10-2 Show GitHub Exploit DB Packet Storm