Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
210621	7.2	危険	富士通	-	ARROWS Me F-11D における任意の領域にアクセス可能な脆弱性	CWE-DesignError	CVE-2014-7254	2014-12-8 16:06	2014-12-2	Show	GitHub Exploit DB Packet Storm

210622	2.6	注意	株式会社スクウェア・エニックス	-	Android 版拡散性ミリオンアーサーにおける情報管理不備の脆弱性	CWE-255 証明書・パスワード管理	CVE-2014-7259	2014-12-8 16:05	2014-12-4	Show	GitHub Exploit DB Packet Storm

210623	4.3	警告	KENT-WEB	-	KENT-WEB 製 Clip Board におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-7258	2014-12-8 16:02	2014-12-4	Show	GitHub Exploit DB Packet Storm

210624	7.5	危険	Axel Kittenberger	-	lsyncd の default-rsyncssh.lua における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2014-8990	2014-12-8 16:00	2014-10-29	Show	GitHub Exploit DB Packet Storm

210625	5	警告	Text and software	-	Antiword の wordole.c 内の bGetPPS 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2014-8123	2014-12-8 16:00	2014-12-1	Show	GitHub Exploit DB Packet Storm

210626	2.1	注意	Nagios Enterprises, LLC	-	Nagios Plugins の lib/parse_ini.c における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2014-4703	2014-12-8 15:51	2014-06-26	Show	GitHub Exploit DB Packet Storm

210627	2.1	注意	Nagios Enterprises, LLC	-	Nagios Plugins の check_icmp プラグインにおける INI 設定ファイルから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4702	2014-12-8 15:49	2014-05-20	Show	GitHub Exploit DB Packet Storm

210628	2.1	注意	Nagios Enterprises, LLC	-	Nagios Plugins の check_dhcp プラグインにおける INI 設定ファイルから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-4701	2014-12-8 15:48	2014-05-20	Show	GitHub Exploit DB Packet Storm

210629	10	危険	CreativeMinds	-	WordPress 用 CreativeMinds CM Downloads Manager プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2014-8877	2014-12-8 15:42	2014-11-10	Show	GitHub Exploit DB Packet Storm

210630	5	警告	GNU Project	-	GNU C Library におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2014-6040	2014-12-8 15:04	2014-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293091	-	spacial_audio_solutions	samphpweb	SQL injection vulnerability in songinfo.php in SAM Broadcaster samPHPweb, possibly 4.2.2 and earlier, allows remote attackers to execute arbitrary SQL commands via the songid parameter.	CWE-89 SQL Injection	CVE-2008-0187	2017-09-29 10:30	2008-01-10	Show	GitHub Exploit DB Packet Storm

293092	-	uebimiau	webmail	Uebimiau Webmail 2.7.10 and 2.7.2 does not protect authentication state variables from being set through HTTP requests, which allows remote attackers to bypass authentication via a sess[auth]=1 param…	CWE-287 Improper Authentication	CVE-2008-0210	2017-09-29 10:30	2008-01-10	Show	GitHub Exploit DB Packet Storm

293093	-	php_webquest	php_webquest	SQL injection vulnerability in soporte_horizontal_w.php in PHP Webquest 2.6 allows remote attackers to execute arbitrary SQL commands via the id_actividad parameter, a different vector than CVE-2007-…	CWE-89 SQL Injection	CVE-2008-0219	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293094	-	gateway	cweblaunchctl_activex_control weblaunch	Multiple stack-based buffer overflows in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allow remote attackers to execute arbitrary cod…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-0220	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293095	-	gateway	weblaunch	Directory traversal vulnerability in the WebLaunch.WeblaunchCtl.1 (aka CWebLaunchCtl) ActiveX control in weblaunch.ocx 1.0.0.1 in Gateway Weblaunch allows remote attackers to execute arbitrary progra…	CWE-22 Path Traversal	CVE-2008-0221	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293096	-	wordpress	filemanager	Unrestricted file upload vulnerability in ajaxfilemanager.php in the Wp-FileManager 1.2 plugin for WordPress allows remote attackers to upload and execute arbitrary PHP code via unspecified vectors.	CWE-94 Code Injection	CVE-2008-0222	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293097	-	osdate	osdate	PHP remote file inclusion vulnerability in php121db.php in osDate 2.0.8 and possibly earlier versions allows remote attackers to execute arbitrary PHP code via a URL in the php121dir parameter.	CWE-94 Code Injection	CVE-2008-0230	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293098	-	zero_cms	zero_cms	Multiple SQL injection vulnerabilities in Zero CMS 1.0 Alpha allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to index.php, or the (2) f or t parameters to forums/ind…	CWE-89 SQL Injection	CVE-2008-0232	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293099	-	zero_cms	zero_cms	Unrestricted file upload vulnerability in Zero CMS 1.0 Alpha and earlier allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files by uploading an avatar f…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-0233	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm

293100	-	microsoft	vfp_ole_server_activex_control	The Microsoft VFP_OLE_Server ActiveX control allows remote attackers to execute arbitrary code by invoking the foxcommand method.	CWE-94 Code Injection	CVE-2008-0235	2017-09-29 10:30	2008-01-11	Show	GitHub Exploit DB Packet Storm