Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216431 5 警告 Bitweaver - Bitweaver の gmap/view_overlay.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-5192 2014-01-29 14:02 2012-10-23 Show GitHub Exploit DB Packet Storm
216432 5 警告 シトリックス・システムズ - Android 用 Citrix GoToMeeting アプリケーションにおけるユーザ ID を取得される脆弱性 CWE-200
情報漏えい 		CVE-2014-1664 2014-01-29 13:40 2014-01-23 Show GitHub Exploit DB Packet Storm
216433 4.3 警告 Joomla! - Joomla! 用 JV Comment におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0794 2014-01-29 12:37 2014-01-14 Show GitHub Exploit DB Packet Storm
216434 5 警告 Tntnet - tntnet の framework/common/messageheaderparser.cpp における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-7299 2014-01-29 12:27 2013-12-11 Show GitHub Exploit DB Packet Storm
216435 5 警告 Tntnet - cxxtools の query_params.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-7298 2014-01-29 12:04 2013-12-14 Show GitHub Exploit DB Packet Storm
216436 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7143 2014-01-28 18:24 2013-12-18 Show GitHub Exploit DB Packet Storm
216437 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7142 2014-01-28 18:22 2013-12-18 Show GitHub Exploit DB Packet Storm
216438 3.3 注意 CMU Speech Software - Flite の audio/auserver.c 内の play_wave_from_socket 関数における任意のファイルを変更される脆弱性 CWE-59
リンク解釈の問題 		CVE-2014-0027 2014-01-28 18:21 2014-01-6 Show GitHub Exploit DB Packet Storm
216439 4.3 警告 Open-Xchange - Open-Xchange AppSuite におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7141 2014-01-28 18:21 2013-12-18 Show GitHub Exploit DB Packet Storm
216440 4 警告 Open-Xchange - Open-Xchange AppSuite の CalDAV インターフェースにおける XML 外部エンティティの脆弱性 CWE-Other
その他 		CVE-2013-7140 2014-01-28 18:19 2013-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298641 - opera opera_browser Unspecified vulnerability in Opera before 9.5 allows remote attackers to read cross-domain images via HTML CANVAS elements that use the images as patterns. CWE-200
Information Exposure 		CVE-2008-2715 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298642 - menalto gallery Cross-site scripting (XSS) vulnerability in Menalto Gallery before 2.2.5 allows remote attackers to inject arbitrary web script or HTML via the (1) host and (2) path components of a URL. CWE-79
Cross-site Scripting 		CVE-2008-2720 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298643 - menalto gallery Unspecified vulnerability in the album-select module in Menalto Gallery before 2.2.5 allows remote attackers to obtain titles of hidden albums by attempting to add a new album to a hidden album. CWE-200
Information Exposure 		CVE-2008-2721 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298644 - menalto gallery Menalto Gallery before 2.2.5 allows remote attackers to bypass permissions for sub-albums via a ZIP archive. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2722 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298645 - menalto gallery embed.php in Menalto Gallery before 2.2.5 allows remote attackers to obtain the full path via unknown vectors related to "spoofing the remote address." CWE-200
Information Exposure 		CVE-2008-2723 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298646 - menalto gallery Menalto Gallery before 2.2.5 does not enforce permissions for non-album items that have been protected by a password, which might allow remote attackers to bypass intended access restrictions. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2724 2017-08-8 10:31 2008-06-17 Show GitHub Exploit DB Packet Storm
298647 - cisco unified_communications_manager The Real-Time Information Server (RIS) Data Collector service in Cisco Unified Communications Manager (CUCM) 5.x before 5.1(3) and 6.x before 6.1(1) allows remote attackers to bypass authentication, … CWE-287
Improper Authentication 		CVE-2008-2730 2017-08-8 10:31 2008-06-27 Show GitHub Exploit DB Packet Storm
298648 - cisco adaptive_security_appliance_5500
pix 		Multiple unspecified vulnerabilities in the SIP inspection functionality in Cisco PIX and Adaptive Security Appliance (ASA) 5500 devices 7.0 before 7.0(7)16, 7.1 before 7.1(2)71, 7.2 before 7.2(4)7, … NVD-CWE-noinfo
CVE-2008-2732 2017-08-8 10:31 2008-09-5 Show GitHub Exploit DB Packet Storm
298649 - cisco adaptive_security_appliance_5500
pix 		Cisco PIX and Adaptive Security Appliance (ASA) 5500 devices 7.2 before 7.2(4)2, 8.0 before 8.0(3)14, and 8.1 before 8.1(1)4, when configured as a client VPN endpoint, do not properly process IPSec c… NVD-CWE-noinfo
CVE-2008-2733 2017-08-8 10:31 2008-09-5 Show GitHub Exploit DB Packet Storm
298650 - cisco adaptive_security_appliance_5500 Memory leak in the crypto functionality in Cisco Adaptive Security Appliance (ASA) 5500 devices 7.2 before 7.2(4)2, 8.0 before 8.0(3)14, and 8.1 before 8.1(1)4, when configured as a clientless SSL VP… NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2008-2734 2017-08-8 10:31 2008-09-5 Show GitHub Exploit DB Packet Storm