Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
219541	7.5	危険	Appnitro Software	-	Machform の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4948	2013-07-31 15:27	2013-07-2	Show	GitHub Exploit DB Packet Storm

219542	7.5	危険	Sawmill	-	Sawmill のデータベースのページの更新および作成における脆弱性	CWE-noinfo 情報不足	CVE-2013-4947	2013-07-31 15:18	2013-07-9	Show	GitHub Exploit DB Packet Storm

219543	4.3	警告	BMC Software	-	BMC Service Desk Express におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4946	2013-07-31 15:11	2013-06-12	Show	GitHub Exploit DB Packet Storm

219544	7.5	危険	BMC Software	-	BMC Service Desk Express における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4945	2013-07-31 15:08	2013-06-12	Show	GitHub Exploit DB Packet Storm

219545	2.1	注意	Drupal Indonesia	-	Drupal 用 TinyBox モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4140	2013-07-31 14:44	2013-07-10	Show	GitHub Exploit DB Packet Storm

219546	2.6	注意	BuddyDev.com	-	WordPress 用 BuddyPress Extended Friendship Request プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4944	2013-07-31 14:36	2013-07-2	Show	GitHub Exploit DB Packet Storm

219547	4.3	警告	OpenX	-	OpenX Source におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-3515	2013-07-31 14:08	2013-05-8	Show	GitHub Exploit DB Packet Storm

219548	4.3	警告	Monkey Project	-	Monkey HTTP Daemon の Directory Listing プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2181	2013-07-31 13:55	2013-06-14	Show	GitHub Exploit DB Packet Storm

219549	9.3	危険	キングソフト株式会社	-	Kingsoft Spreadsheets 2012 におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0723	2013-07-31 13:47	2013-07-29	Show	GitHub Exploit DB Packet Storm

219550	5	警告	ヒューレット・パッカードレッドハット	-	複数の Red Hat JBoss 製品の JBossWS Native におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2011-1483	2013-07-30 17:40	2011-04-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278591	-	scoznet	scozbook	Cross-site scripting (XSS) vulnerability in scozbook/add.php in ScozNet ScozBook 1.1 BETA allows remote attackers to inject arbitrary web script or HTML via the (1) username, (2) useremail, (3) aim, …	CWE-79 Cross-site Scripting	CVE-2003-1554	2018-10-20 00:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

278592	-	scoznet	scozbook	ScozNet ScozBook 1.1 BETA allows remote attackers to obtain sensitive information via an invalid PG parameter in view.php, which reveals the installation path in an error message.	CWE-200 Information Exposure	CVE-2003-1555	2018-10-20 00:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

278593	-	cgi_city	cc_guestbook	Cross-site scripting (XSS) vulnerability in cc_guestbook.pl in CGI City CC GuestBook allows remote attackers to inject arbitrary web script or HTML via the (1) name and (2) homepage_title (webpage ti…	CWE-79 Cross-site Scripting	CVE-2003-1556	2018-10-20 00:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

278594	-	spamassassin	spamassassin	Off-by-one buffer overflow in spamc of SpamAssassin 2.40 through 2.43, when using BSMTP mode ("-B"), allows remote attackers to execute arbitrary code via email containing headers with leading "." ch…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1557	2018-10-20 00:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

278595	-	fefe	fnord	Buffer overflow in httpd.c of fnord 1.6 allows remote attackers to create a denial of service (crash) and possibly execute arbitrary code via a long CGI request passed to the do_cgi function.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1558	2018-10-20 00:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

278596	-	microsoft	frontpage	Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program.	NVD-CWE-Other	CVE-2000-0122	2018-10-20 00:29	2000-02-3	Show	GitHub Exploit DB Packet Storm

278597	-	microsoft	frontpage personal_web_server windows_nt	Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Sid…	NVD-CWE-Other	CVE-2000-0256	2018-10-20 00:29	2000-04-19	Show	GitHub Exploit DB Packet Storm

278598	-	dansie	shopping_cart	Privacy leak in Dansie Shopping Cart 3.04, and probably earlier versions, sends sensitive information such as user credentials to an e-mail address controlled by the product developers.	NVD-CWE-Other	CVE-2000-1243	2018-10-20 00:29	2000-12-31	Show	GitHub Exploit DB Packet Storm

278599	-	gnu	tar	Directory traversal vulnerability in GNU tar 1.13.19 through 1.13.25, and possibly later versions, allows attackers to overwrite arbitrary files during archive extraction via a (1) "/.." or (2) "./..…	NVD-CWE-Other	CVE-2002-0399	2018-10-20 00:29	2002-10-10	Show	GitHub Exploit DB Packet Storm

278600	-	microsoft	data_engine sql_server	Multiple buffer overflows in the Resolution Service for Microsoft SQL Server 2000 and Microsoft Desktop Engine 2000 (MSDE) allow remote attackers to cause a denial of service or execute arbitrary cod…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2002-0649	2018-10-20 00:29	2002-08-12	Show	GitHub Exploit DB Packet Storm