Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223681	7.5	危険	zeeways	-	Zeeways SHAADICLONE における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6912	2012-12-20 19:10	2009-08-7	Show	GitHub Exploit DB Packet Storm

223682	10	危険	ソフォス	-	Linux 用の Sophos SAVScan におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-6904	2012-12-20 19:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

223683	4.3	警告	ソフォス	-	Sophos Anti-Virus などにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-6903	2012-12-20 19:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

223684	9.3	危険	SaschArt	-	SaschArt SasCam Webcam Server 用の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6898	2012-12-20 19:10	2009-08-5	Show	GitHub Exploit DB Packet Storm

223685	4.3	警告	PreProject.com	-	Pre Classified Listings の signup.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6888	2012-12-20 19:10	2009-08-3	Show	GitHub Exploit DB Packet Storm

223686	7.5	危険	PreProject.com	-	Pre Classified Listings の detailad.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6887	2012-12-20 19:10	2009-08-3	Show	GitHub Exploit DB Packet Storm

223687	5	警告	RSAセキュリティ	-	RSA EnVision における管理者のパスワードハッシュを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6886	2012-12-20 19:10	2009-08-3	Show	GitHub Exploit DB Packet Storm

223688	7.5	危険	scripts-for-sites	-	SFS EZ Career の content.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6867	2012-12-20 19:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

223689	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Current_Issue モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6866	2012-12-20 19:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

223690	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sectionsnew モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6865	2012-12-20 19:10	2009-07-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278041	-	microsoft	windows_vista windows_server_2003	Race condition in Microsoft Windows Server 2003 and Vista allows local users to cause a denial of service (crash or hang) via a multi-threaded application that makes many calls to UnhookWindowsHookEx…	CWE-362 Race Condition	CVE-2008-5044	2019-02-26 23:04	2008-11-13	Show	GitHub Exploit DB Packet Storm

278042	-	apple	safari	Apple Safari on Mac OS X, and before 3.1.2 on Windows, does not prompt the user before downloading an object that has an unrecognized content type, which allows remote attackers to place malware into…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-2540	2019-02-26 23:04	2008-06-4	Show	GitHub Exploit DB Packet Storm

278043	-	linux-pam	linux-pam	Linux-PAM before 1.0.4 does not enforce the minimum password age (MINDAYS) as specified in /etc/shadow, which allows local users to bypass intended security policy and change their passwords sooner t…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-0579	2019-01-4 00:01	2009-04-17	Show	GitHub Exploit DB Packet Storm

278044	-	lighttpd debian	lighttpd debian_linux	lighttpd before 1.4.20 compares URIs to patterns in the (1) url.redirect and (2) url.rewrite configuration settings before performing URL decoding, which might allow remote attackers to bypass intend…	CWE-200 Information Exposure	CVE-2008-4359	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278045	-	lighttpd debian	lighttpd debian_linux	mod_userdir in lighttpd before 1.4.20, when a case-insensitive operating system or filesystem is used, performs case-sensitive comparisons on filename components in configuration options, which might…	CWE-200 Information Exposure	CVE-2008-4360	2018-11-30 00:46	2008-10-4	Show	GitHub Exploit DB Packet Storm

278046	-	yate	yet_another_telephony_engine	The SIP channel module in Yet Another Telephony Engine (Yate) before 1.2.0 sets the caller_info_uri parameter using an incorrect variable that can be NULL, which allows remote attackers to cause a de…	CWE-20 Improper Input Validation	CVE-2007-1693	2018-11-30 00:46	2007-05-18	Show	GitHub Exploit DB Packet Storm

278047	-	omegaboard_project	omegaboard	PHP remote file inclusion vulnerability in includes/functions.php in Omegaboard 1.0beta4 and earlier allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.	CWE-20 Improper Input Validation	CVE-2007-0683	2018-11-30 00:45	2007-02-3	Show	GitHub Exploit DB Packet Storm

278048	-	apache debian	libapreq2 debian_linux	Unspecified vulnerability in (1) apreq_parse_headers and (2) apreq_parse_urlencoded functions in Apache2::Request (Libapreq2) before 2.07 allows remote attackers to cause a denial of service (CPU con…	NVD-CWE-noinfo	CVE-2006-0042	2018-11-30 00:45	2006-02-19	Show	GitHub Exploit DB Packet Storm

278049	-	spytech-web	spyanywhere	Spytech SpyAnywhere 1.50 allows remote attackers to gain administrator access via a single character in the "loginpass" field.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2001-0771	2018-11-30 00:45	2001-10-18	Show	GitHub Exploit DB Packet Storm

278050	-	bb4	big_brother	Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files.	CWE-200 Information Exposure	CVE-1999-1462	2018-11-30 00:44	1999-12-31	Show	GitHub Exploit DB Packet Storm