Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
223851	4.3	警告	refbase	-	refbase におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6400	2012-12-20 19:10	2009-03-5	Show	GitHub Exploit DB Packet Storm

223852	10	危険	psi-im	-	PSI Jabber クライアントにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-6393	2012-12-20 19:10	2009-03-3	Show	GitHub Exploit DB Packet Storm

223853	4.3	警告	w3matter	-	W3matter RevSense の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6385	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223854	7.5	危険	phpbb-seo	-	Multi SEO phpBB の include/global.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6377	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223855	8.5	危険	socialgroupie	-	Social Groupie の Photos/create_album.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6367	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223856	4.3	警告	phpf1	-	Max's Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6359	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223857	7.5	危険	socialgroupie	-	Social Groupie の group_index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6358	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223858	5	警告	the net guys	-	The Net Guys ASPired2Protect におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6355	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223859	5	警告	the net guys	-	The Net Guys ASPired2poll におけるユーザ名などを含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6354	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

223860	7.5	危険	xpoze	-	Xpoze Pro の home.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6352	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
278241	-	sun	jdk jre sdk	Unspecified vulnerability in Sun Java SE in JDK and JRE 5.0 before Update 22, JDK and JRE 6 before Update 17, SDK and JRE 1.3.x before 1.3.1_27, and SDK and JRE 1.4.x before 1.4.2_24 allows remote at…	CWE-399 Resource Management Errors	CVE-2009-3877	2018-10-31 01:26	2009-11-6	Show	GitHub Exploit DB Packet Storm

278242	-	sun	openjdk jre jdk	Multiple unspecified vulnerabilities in the Swing implementation in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, have unknown impact and remote attack vectors, related to "in…	CWE-200 Information Exposure	CVE-2009-3882	2018-10-31 01:26	2009-11-10	Show	GitHub Exploit DB Packet Storm

278243	-	sun	openjdk jre jdk	Multiple unspecified vulnerabilities in the Windows Pluggable Look and Feel (PL&F) feature in the Swing implementation in Sun Java SE 5.0 before Update 22 and 6 before Update 17, and OpenJDK, have un…	CWE-200 Information Exposure	CVE-2009-3883	2018-10-31 01:26	2009-11-10	Show	GitHub Exploit DB Packet Storm

278244	-	adobe	adobe_air flash_player	Unspecified vulnerability in the Flash Player ActiveX control in Adobe Flash Player before 10.0.42.34 and Adobe AIR before 1.5.3 on Windows allows remote attackers to obtain the names of local files …	CWE-200 Information Exposure	CVE-2009-3951	2018-10-31 01:26	2009-12-11	Show	GitHub Exploit DB Packet Storm

278245	-	php	php	The proc_open function in ext/standard/proc_open.c in PHP before 5.2.11 and 5.3.x before 5.3.1 does not enforce the (1) safe_mode_allowed_env_vars and (2) safe_mode_protected_env_vars directives, whi…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2009-4018	2018-10-31 01:26	2009-11-29	Show	GitHub Exploit DB Packet Storm

278246	-	opera	opera_browser	Opera before 10.10, when exception stacktraces are enabled, places scripting error messages from a web site into variables that can be read by a different web site, which allows remote attackers to o…	CWE-16 Configuration	CVE-2009-4071	2018-10-31 01:26	2009-11-25	Show	GitHub Exploit DB Packet Storm

278247	-	opera	opera_browser	Unspecified vulnerability in Opera before 10.10 has unknown impact and attack vectors, related to a "moderately severe issue."	NVD-CWE-noinfo	CVE-2009-4072	2018-10-31 01:26	2009-11-25	Show	GitHub Exploit DB Packet Storm

278248	-	php	php	The htmlspecialchars function in PHP before 5.2.12 does not properly handle (1) overlong UTF-8 sequences, (2) invalid Shift_JIS sequences, and (3) invalid EUC-JP sequences, which allows remote attack…	CWE-79 Cross-site Scripting	CVE-2009-4142	2018-10-31 01:26	2009-12-22	Show	GitHub Exploit DB Packet Storm

278249	-	php	php	PHP before 5.2.12 does not properly handle session data, which has unspecified impact and attack vectors related to (1) interrupt corruption of the SESSION superglobal array and (2) the session.save_…	NVD-CWE-Other	CVE-2009-4143	2018-10-31 01:26	2009-12-22	Show	GitHub Exploit DB Packet Storm

278250	-	microsoft	webdav_mini-redirector	Heap-based buffer overflow in the WebDAV Mini-Redirector in Microsoft Windows XP SP2, Server 2003 SP1 and SP2, and Vista allows remote attackers to execute arbitrary code via a crafted WebDAV respons…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-0080	2018-10-31 01:26	2008-02-13	Show	GitHub Exploit DB Packet Storm