Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
214301	9.3	危険	D-Link Systems, Inc.	-	D-Link DIR-505L SharePort Mobile Companion および DIR-826L Wireless N600 Cloud Router における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2013-4772	2014-05-13 14:30	2013-07-8	Show	GitHub Exploit DB Packet Storm

214302	6.8	警告	GitLab.org	-	GitLab および gitlab-shell における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-4581	2014-05-13 14:09	2013-11-14	Show	GitHub Exploit DB Packet Storm

214303	6.8	警告	GitLab.org	-	GitLab における任意のユーザになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2013-4580	2014-05-13 14:08	2013-11-14	Show	GitHub Exploit DB Packet Storm

214304	2.1	注意	GNU Project	-	GNU GRUB 用の特定の Debian パッチにおけるパスワードハッシュを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4577	2014-05-13 13:53	2013-11-14	Show	GitHub Exploit DB Packet Storm

214305	4.3	警告	MediaWiki	-	MediaWiki 用 TimeMediaHandler 拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4574	2014-05-13 12:21	2013-11-6	Show	GitHub Exploit DB Packet Storm

214306	7.5	危険	MediaWiki	-	MediaWiki 用 Scribuntu 拡張機能の php-luasandbox におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-4571	2014-05-13 12:20	2013-06-17	Show	GitHub Exploit DB Packet Storm

214307	5	警告	MediaWiki	-	MediaWiki 用 Scribuntu 拡張機能の php-luasandbox におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-4570	2014-05-13 12:20	2013-09-24	Show	GitHub Exploit DB Packet Storm

214308	4.3	警告	IBM	-	IBM Operational Decision Manager の Rule Execution Server における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2014-0946	2014-05-12 18:42	2014-04-30	Show	GitHub Exploit DB Packet Storm

214309	3.5	注意	IBM	-	IBM Operational Decision Manager の Rule Execution Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2014-0945	2014-05-12 18:38	2014-04-30	Show	GitHub Exploit DB Packet Storm

214310	6	警告	IBM	-	IBM Operational Decision Manager の Rule Execution Server の Rule Execution Server コンソールにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2014-0944	2014-05-12 18:33	2014-04-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
297711	-	quickersite	quickersite	QuickerSite 1.8.5 allows remote attackers to obtain sensitive information via a request to showThumb.aspx without any parameters, which reveals the installation path in an error message.	CWE-20 Improper Input Validation	CVE-2008-6676	2017-08-17 10:29	2009-04-8	Show	GitHub Exploit DB Packet Storm

297712	-	quickersite	quickersite	SQL injection vulnerability in asp/includes/contact.asp in QuickerSite 1.8.5 allows remote attackers to execute arbitrary SQL commands via the sNickName parameter in a profile action to default.asp.	CWE-89 SQL Injection	CVE-2008-6678	2017-08-17 10:29	2009-04-8	Show	GitHub Exploit DB Packet Storm

297713	-	clamav	clamav	libclamav/pe.c in ClamAV before 0.95 allows remote attackers to cause a denial of service (crash) via a crafted EXE file that triggers a divide-by-zero error.	CWE-189 Numeric Errors	CVE-2008-6680	2017-08-17 10:29	2009-04-9	Show	GitHub Exploit DB Packet Storm

297714	-	dojotoolkit	dojo	Cross-site scripting (XSS) vulnerability in dijit.Editor in Dojo before 1.1 allows remote attackers to inject arbitrary web script or HTML via XML entities in a TEXTAREA element.	CWE-79 Cross-site Scripting	CVE-2008-6681	2017-08-17 10:29	2009-04-10	Show	GitHub Exploit DB Packet Storm

297715	-	jan_bednarik	cooluri	SQL injection vulnerability in CoolURI (cooluri) 1.0.11 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	CWE-89 SQL Injection	CVE-2008-6686	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm

297716	-	david_cadu	dcdgooglemap	Cross-site scripting (XSS) vulnerability in DCD GoogleMap (dcdgooglemap) 1.1.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	CWE-79 Cross-site Scripting	CVE-2008-6687	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm

297717	-	kevin_renskers	dmmjobcontrol	Cross-site scripting (XSS) vulnerability in JobControl (dmmjobcontrol) 1.15.0 and earlier extension for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.	CWE-79 Cross-site Scripting	CVE-2008-6688	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm

297718	-	kevin_renskers	dmmjobcontrol	SQL injection vulnerability in JobControl (dmmjobcontrol) 1.15.0 and earlier extension for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	CWE-89 SQL Injection	CVE-2008-6689	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm

297719	-	typo3	nd_antispam	Unspecified vulnerability in nepa-design.de Spam Protection (nd_antispam) extension 1.0.3 for TYPO3 allows remote attackers to modify configuration via unknown vectors.	NVD-CWE-noinfo	CVE-2008-6690	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm

297720	-	diocese_of_portsmouth	pd_calendar_today	SQL injection vulnerability in Diocese of Portsmouth Calendar Today (pd_calendar_today) extension 0.0.3 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unknown vectors.	CWE-89 SQL Injection	CVE-2008-6691	2017-08-17 10:29	2009-04-11	Show	GitHub Exploit DB Packet Storm