Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
215931	5	警告	オラクル	-	Oracle Java SE の Java Runtime Environment における Deployment に関する脆弱性	CWE-noinfo 情報不足	CVE-2013-2400	2014-02-27 17:31	2013-06-18	Show	GitHub Exploit DB Packet Storm

215932	2.1	注意	Linux	-	Linux Kernel の net/key/af_key.c 内の key_notify_policy_flush 関数における重要な情報を取得される脆弱性	CWE-119 バッファエラー	CVE-2013-2237	2014-02-27 17:29	2013-02-20	Show	GitHub Exploit DB Packet Storm

215933	4.9	警告	Linux	-	Linux Kernel の net/ipv6/ip6_output.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2232	2014-02-27 17:27	2013-06-26	Show	GitHub Exploit DB Packet Storm

215934	6.9	警告	レッドハット	-	特定の Red Hat パッチを適用した Red Hat Enterprise Linux におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2013-2224	2014-02-27 17:26	2013-06-30	Show	GitHub Exploit DB Packet Storm

215935	5.4	警告	Linux	-	Linux Kernel の SCTP の実装の net/sctp/sm_statefuns.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2013-2206	2014-02-27 17:25	2013-03-13	Show	GitHub Exploit DB Packet Storm

215936	5	警告	IRCD-Hybrid	-	IRCD-Hybrid におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0238	2014-02-27 17:23	2013-02-13	Show	GitHub Exploit DB Packet Storm

215937	2.1	注意	Linux	-	Linux Kernel の HP Smart Array および Compaq SMART2 コントローラディスクアレイドライバにおける重要な情報を取得される脆弱性	CWE-399 リソース管理の問題	CVE-2013-2147	2014-02-27 17:22	2013-06-6	Show	GitHub Exploit DB Packet Storm

215938	4.7	警告	Linux	-	Linux Kernel の arch/x86/kernel/cpu/perf_event_intel.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2146	2014-02-27 17:22	2013-04-25	Show	GitHub Exploit DB Packet Storm

215939	4.9	警告	Linux	-	Linux Kernel の net/ipv4/tcp.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2013-2128	2014-02-27 17:20	2013-03-30	Show	GitHub Exploit DB Packet Storm

215940	5	警告	マイクロソフト	-	Microsoft Windows 8.1 などの Windows 製品の Microsoft.XMLDOM ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2013-7332	2014-02-27 16:39	2013-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298621	-	logz	logz	Cross-site scripting (XSS) vulnerability in fichiers/add_url.php in Logz CMS 1.3.1 allows remote attackers to inject arbitrary web script or HTML via the art parameter. NOTE: the provenance of this …	CWE-79 Cross-site Scripting	CVE-2008-4896	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298622	-	planetluc	rateme	Cross-site scripting (XSS) vulnerability in planetluc RateMe 1.3.3 allows remote attackers to inject arbitrary web script or HTML via the rate parameter in a submit rate action.	CWE-79 Cross-site Scripting	CVE-2008-4898	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298623	-	planetluc	rateme	Cross-site request forgery (CSRF) vulnerability in Planetluc RateMe 1.3.3 allows remote attackers to perform unauthorized actions as other users via unspecified vectors.	CWE-352 Origin Validation Error	CVE-2008-4899	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298624	-	typosphere	typo	Cross-site scripting (XSS) vulnerability in the leave comment (feedback) feature in Typo 5.1.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the (1) comment[author] (…	CWE-79 Cross-site Scripting	CVE-2008-4903	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298625	-	typosphere	typo	SQL injection vulnerability in the "Manage pages" feature (admin/pages) in Typo 5.1.3 and earlier allows remote authenticated users with "blog publisher" rights to execute arbitrary SQL commands via …	CWE-89 SQL Injection	CVE-2008-4904	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298626	-	dovecot	dovecot	The message parsing feature in Dovecot 1.1.4 and 1.1.5, when using the FETCH ENVELOPE command in the IMAP client, allows remote attackers to cause a denial of service (persistent crash) via an email …	CWE-20 Improper Input Validation	CVE-2008-4907	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298627	-	crossfire	crossfire	maps/Info/combine.pl in CrossFire crossfire-maps 1.11.0 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.	CWE-59 Link Following	CVE-2008-4908	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298628	-	compact_cms	compact_cms	Cross-site request forgery (CSRF) vulnerability in CompactCMS 1.1 and earlier allows remote attackers to perform unauthorized actions as legitimate users via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2008-4909	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298629	-	chattaitaliano	istant-replay	PHP remote file inclusion vulnerability in read.php in Chattaitaliano Istant-Replay allows remote attackers to execute arbitrary PHP code via a URL in the data parameter.	CWE-94 Code Injection	CVE-2008-4911	2017-08-8 10:32	2008-11-4	Show	GitHub Exploit DB Packet Storm

298630	-	gforge	gforge	SQL injection vulnerability in the create function in common/include/GroupJoinRequest.class in GForge 4.5 and 4.6 allows remote attackers to execute arbitrary SQL commands via the comments variable.	CWE-89 SQL Injection	CVE-2008-2381	2017-08-8 10:31	2009-01-3	Show	GitHub Exploit DB Packet Storm