Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
217101	4.3	警告	ZNC	-	Windows 用 ZNC で使用される ZNC の Fish プラグインにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-7049	2013-12-25 15:10	2013-12-11	Show	GitHub Exploit DB Packet Storm

217102	4.3	警告	レッドハット	-	Red Hat JBoss Portal の GateIn Portal コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4424	2013-12-25 14:51	2013-12-16	Show	GitHub Exploit DB Packet Storm

217103	3.5	注意	IBM	-	IBM Security Access Manager for Enterprise Single Sign-On の IMS サーバにおけるログファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5420	2013-12-25 14:34	2013-12-20	Show	GitHub Exploit DB Packet Storm

217104	7.5	危険	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4461	2013-12-25 14:05	2013-12-17	Show	GitHub Exploit DB Packet Storm

217105	4.3	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4414	2013-12-25 14:04	2013-12-17	Show	GitHub Exploit DB Packet Storm

217106	6.8	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-4405	2013-12-25 14:04	2013-12-17	Show	GitHub Exploit DB Packet Storm

217107	6.5	警告	レッドハット	-	Red Hat Enterprise MRG Grid の cumin におけるロールの制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4404	2013-12-25 14:03	2013-12-17	Show	GitHub Exploit DB Packet Storm

217108	5	警告	Idleman	-	Leed における認証を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2013-2629	2013-12-25 14:03	2013-12-18	Show	GitHub Exploit DB Packet Storm

217109	2.1	注意	VMware	-	VMware ESX および ESXi において任意のファイルにアクセス可能な問題	CWE-noinfo 情報不足	CVE-2013-5973	2013-12-25 13:56	2013-12-24	Show	GitHub Exploit DB Packet Storm

217110	5	警告	アップル	-	Apple Motion の OZDocument::parseElement 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-6114	2013-12-25 13:53	2013-10-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299111	-	clam_anti-virus	clamav	Heap-based buffer overflow in pe.c in libclamav in ClamAV 0.92.1 allows remote attackers to execute arbitrary code via a crafted WWPack compressed PE binary.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-1833	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299112	-	clam_anti-virus	clamav	ClamAV before 0.93 allows remote attackers to bypass the scanning enging via a RAR file with an invalid version number, which cannot be parsed by ClamAV but can be extracted by Winrar.	CWE-20 Improper Input Validation	CVE-2008-1835	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299113	-	clam_anti-virus	clamav	The rfc2231 function in message.c in libclamav in ClamAV before 0.93 allows remote attackers to cause a denial of service (crash) via a crafted message that produces a string that is not null termina…	NVD-CWE-Other	CVE-2008-1836	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299114	-	clam_anti-virus	clamav	libclamunrar in ClamAV before 0.93 allows remote attackers to cause a denial of service (crash) via crafted RAR files that trigger "memory problems," as demonstrated by the PROTOS GENOME test suite f…	NVD-CWE-noinfo CWE-399 Resource Management Errors	CVE-2008-1837	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299115	-	work_system_e-commerce	work_system_e-commerce	Multgiple cross-site scripting (XSS) vulnerabilities in module/main.php in WORK system e-commerce 4.0.9 allow remote attackers to inject arbitrary web script or HTML via the (1) day, (2) month, and (…	CWE-79 Cross-site Scripting	CVE-2008-1839	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299116	-	w2b	dating_club	SQL injection vulnerability in browse.php in W2B DatingClub (aka Dating Club) allows remote attackers to execute arbitrary SQL commands via the age_to parameter in a browsebyCat action.	CWE-89 SQL Injection	CVE-2008-1843	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299117	-	w2b	phphotresources	SQL injection vulnerability in cat.php in W2B phpHotResources allows remote attackers to execute arbitrary SQL commands via the kind parameter.	CWE-89 SQL Injection	CVE-2008-1844	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299118	-	mirbsd	miros	The Korn shell (aka mksh) before R33d on MirOS (aka MirBSD) does not flush the tty's I/O when invoking mksh in a new terminal, which allows local users to gain privileges by opening a virtual termina…	NVD-CWE-Other	CVE-2008-1845	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299119	-	osiaffiliate	osiaffiliate	Multiple cross-site scripting (XSS) vulnerabilities in login.php in Omnistar Interactive OSI Affiliate allow remote attackers to inject arbitrary web script or HTML via the (1) login, (2) profile, (3…	CWE-79 Cross-site Scripting	CVE-2008-1850	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm

299120	-	hp	openview_network_node_manager	ovalarmsrv in HP OpenView Network Node Manager (OV NNM) 7.51, 7.53, and possibly other versions allows remote attackers to cause a denial of service (hang) via certain requests that do not provide al…	CWE-399 Resource Management Errors	CVE-2008-1851	2017-08-8 10:30	2008-04-17	Show	GitHub Exploit DB Packet Storm