Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223631	7.5	危険	site2nite	-	Site2Nite Real Estate Web における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7030	2012-12-20 19:10	2009-08-24	Show	GitHub Exploit DB Packet Storm

223632	10	危険	skalinks	-	Skalfa Software SkaLinks Exchange Script における管理者を追加される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7010	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223633	7.5	危険	phpversion	-	Free PHP VX Guestbook における管理者アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-7007	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223634	5	警告	phpversion	-	Free PHP VX Guestbook におけるデータベースのバックアップをダウンロードされる脆弱性	CWE-287 不適切な認証	CVE-2008-7006	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223635	7.5	危険	the-rat-cms	-	The Rat CMS の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7003	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223636	7.5	危険	phpauction	-	PHPAuction の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-7000	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223637	5	警告	phpauction	-	phpAuction における設定情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-6999	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223638	10	危険	シーメンス	-	Siemens Gigaset WLAN Camera における許可されていない操作を実行される脆弱性	CWE-310 暗号の問題	CVE-2008-6993	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223639	6.8	警告	Zen Cart	-	Zen Cart の includes/classes/shopping_cart.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6986	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

223640	6.8	警告	Zen Cart	-	Zen Cart の includes/classes/shopping_cart.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6985	2012-12-20 19:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278041	-	microsoft	windows_vista windows_server_2003	Race condition in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (crash or hang) via a multi-threaded application that makes many calls to UnhookWindowsHookEx…	CWE-362 Race Condition	CVE-2008-5044	2019-02-26 23:04	2008-11-13	Show	GitHub Exploit DB Packet Storm

278042	-	apple	safari	Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-2540	2019-02-26 23:04	2008-06-4	Show	GitHub Exploit DB Packet Storm

278043	-	linux-pam	linux-pam	Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-0579	2019-01-4 00:01	2009-04-17	Show	GitHub Exploit DB Packet Storm

278044	-	lighttpd debian	lighttpd debian_linux	lighttpd before 1.4.20 compares URIs to patterns in the (1) url.redirect and (2) url.rewrite configuration settings before performing URL decoding, which might allow remote attackers to bypass intend…	CWE-200 Information Exposure	CVE-2008-4359	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278045	-	lighttpd debian	lighttpd debian_linux	mod_userdir in lighttpd before 1.4.20, when a case-insensitive operating system or filesystem is used, performs case-sensitive comparisons on filename components in configuration options, which might…	CWE-200 Information Exposure	CVE-2008-4360	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278046	-	yate	yet_another_telephony_engine	The SIP channel module in Yet Another Telephony Engine (Yate) before 1.2.0 sets the caller_info_uri parameter using an incorrect variable that can be NULL, which allows remote attackers to cause a de…	CWE-20 Improper Input Validation	CVE-2007-1693	2018-11-30 00:46	2007-05-18	Show	GitHub Exploit DB Packet Storm

278047	-	omegaboard_project	omegaboard	PHP remote file inclusion vulnerability in includes/functions.php in Omegaboard 1.0beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.	CWE-20 Improper Input Validation	CVE-2007-0683	2018-11-30 00:45	2007-02-3	Show	GitHub Exploit DB Packet Storm

278048	-	apache debian	libapreq2 debian_linux	Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) before 2.07 allows remote attackers to cause a denial of service (CPU con…	NVD-CWE-noinfo	CVE-2006-0042	2018-11-30 00:45	2006-02-19	Show	GitHub Exploit DB Packet Storm

278049	-	spytech-web	spyanywhere	Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2001-0771	2018-11-30 00:45	2001-10-18	Show	GitHub Exploit DB Packet Storm

278050	-	bb4	big_brother	Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files.	CWE-200 Information Exposure	CVE-1999-1462	2018-11-30 00:44	1999-12-31	Show	GitHub Exploit DB Packet Storm