Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223071 4.3 警告 phpscriptsnow - PHP Scripts Now World's Tallest Buildings の bios.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2884 2012-12-20 19:10 2009-08-20 Show GitHub Exploit DB Packet Storm
223072 3.5 注意 サン・マイクロシステムズ - Sun VDI における VDI 設定データを平文で読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-2856 2012-12-20 19:10 2009-08-14 Show GitHub Exploit DB Packet Storm
223073 6.4 警告 WordPress.org - Wordpress における許可されていない編集などをされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2854 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
223074 10 危険 WordPress.org - Wordpress における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-2853 2012-12-20 19:10 2009-08-3 Show GitHub Exploit DB Packet Storm
223075 6.8 警告 ryan.mcgeary - Wordpress 用の WP-Syntax プラグインにおける任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-2852 2012-12-20 19:10 2009-08-18 Show GitHub Exploit DB Packet Storm
223076 4.3 警告 WordPress.org - WordPress の管理者インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-2851 2012-12-20 19:10 2009-07-20 Show GitHub Exploit DB Packet Storm
223077 7.5 危険 webdynamite - WebDynamite ProjectButler の pda_projects.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2791 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223078 7.5 危険 softbiz - SoftBiz Dating Script の cat_products.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2790 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223079 6.8 警告 reputation - PunBB 用の Reputation プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-2787 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
223080 7.5 危険 reputation - PunBB 用の Reputation プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-2786 2012-12-20 19:10 2009-08-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
314291 - s9y serendipity Multiple cross-site scripting (XSS) vulnerabilities in Serendipity 0.8 allow remote attackers to inject arbitrary web script or HTML via the (1) templatedropdown and (2) shoutbox plugins. NVD-CWE-Other
CVE-2005-1713 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314292 - ej3 topo Cross-site scripting (XSS) vulnerability in index.php for TOPo 2.2 (2.2.178) allows remote attackers to inject arbitrary web script or HTML via the (1) m, (2) s, (3) ID, or (4) t parameters, or the (… NVD-CWE-Other
CVE-2005-1715 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314293 - ej3 topo TOPo 2.2 (2.2.178) stores data files in the data directory under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as client I… NVD-CWE-Other
CVE-2005-1716 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314294 - zyxel prestige_650r-31 ZyXEL Prestige 650R-31 router running ZyNOS FW v3.40(KO.1) allows remote attackers to cause a denial of service (CPU consumption and network loss) via crafted fragmented IP packets. NVD-CWE-Other
CVE-2005-1717 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314295 - ls_games war_times Buffer overflow in LS Games War Times 1.03 and earlier allows remote attackers to cause a denial of service (server crash) via a long nickname. NVD-CWE-Other
CVE-2005-1718 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314296 - alwil avast_antivirus Unknown vulnerability in ALWIL avast! antivirus 4 (4.6.6230) and earlier, when running on Windows NT 4.0, does not properly detect certain viruses. NVD-CWE-Other
CVE-2005-1719 2008-09-6 05:49 2005-05-24 Show GitHub Exploit DB Packet Storm
314297 - apple afp_server AFP Server for Mac OS X 10.4.1, when using an ACL enabled volume, does not properly remove an ACL when a file is copied to a directory that does not use ACLs, which will override the POSIX file permi… NVD-CWE-Other
CVE-2005-1720 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm
314298 - apple afp_server Buffer overflow in the legacy client support for AFP Server for Mac OS X 10.4.1 allows attackers to execute arbitrary code. NVD-CWE-Other
CVE-2005-1721 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm
314299 - apple mac_os_x
mac_os_x_server 		Unknown vulnerability in the CoreGraphics Window Server for Mac OS X 10.4.x up to 10.4.1 allows local users to inject arbitrary commands into root sessions. NVD-CWE-Other
CVE-2005-1722 2008-09-6 05:49 2005-06-16 Show GitHub Exploit DB Packet Storm
314300 - apple mac_os_x_server LaunchServices in Apple Mac OS X 10.4.x up to 10.4.1 does not properly mark file extensions and MIME types as unsafe if an Apple Uniform Type Identifier (UTI) is not created when the type is added to… NVD-CWE-Other
CVE-2005-1723 2008-09-6 05:49 2005-06-8 Show GitHub Exploit DB Packet Storm