Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
223941 7.5 危険 socialengine - SocialEngine の profile_comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6120 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
223942 7.5 危険 pilotgroup - PG Job Site Pro の homepage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6117 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
223943 7.5 危険 prozilla - Prozilla Hosting Index の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6115 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
223944 4.3 警告 SemanticScuttle - SemanticScuttle におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6113 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
223945 5 警告 Scriptsez.net - Ez Ringtone Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6112 2012-12-20 19:10 2009-02-11 Show GitHub Exploit DB Packet Storm
223946 10 危険 SemanticScuttle - SemanticScuttle における脆弱性 CWE-noinfo
情報不足 		CVE-2008-6110 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
223947 4.6 警告 shelter manager - Robin Rawson-Tetley ASM におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6109 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
223948 7.5 危険 rportal - RPortal の index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6099 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
223949 4.3 警告 wikyblog - WikyBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6097 2012-12-20 19:10 2009-02-9 Show GitHub Exploit DB Packet Storm
223950 7.5 危険 phpscripts - phpscripts Ranking Script における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6092 2012-12-20 19:10 2009-02-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278341 - sun solaris
sunos 		Unknown vulnerability in the libgss Generic Security Services Library in Solaris 7, 8, and 9 allows local users to gain privileges by loading their own GSS-API. NVD-CWE-Other
CVE-2005-1124 2018-10-31 01:26 2005-05-2 Show GitHub Exploit DB Packet Storm
278342 - apple keynote Apple Keynote 2.0 and 2.0.1 allows remote attackers to read arbitrary files via the keynote: URI handler in a crafted Keynote presentation. NVD-CWE-Other
CVE-2005-1408 2018-10-31 01:26 2005-05-26 Show GitHub Exploit DB Packet Storm
278343 - sun solaris
sunos 		Unknown vulnerability in Solaris 7 through 9, when using Federated Naming Services (FNS), autofs, and FNS X.500 configuration, allows local users to cause a denial of service (automountd crash) when … NVD-CWE-Other
CVE-2005-1518 2018-10-31 01:26 2005-05-11 Show GitHub Exploit DB Packet Storm
278344 - sun solaris
sunos 		Unknown vulnerability in NIS+ on Solaris 7, 8, and 9 allows remote attackers to cause a denial of service (rpc.nisd disabled and NIS+ unavailable) via unknown vectors. NVD-CWE-Other
CVE-2005-1591 2018-10-31 01:26 2005-05-16 Show GitHub Exploit DB Packet Storm
278345 - bea
oracle 		weblogic_server
weblogic_portal 		BEA WebLogic Server and WebLogic Express 8.1 SP2 and SP3 allows users with the Monitor security role to "shrink or reset JDBC connection pools." NVD-CWE-Other
CVE-2005-1742 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm
278346 - bea
oracle 		weblogic_server
weblogic_portal 		BEA WebLogic Server and WebLogic Express 8.1 through Service Pack 3 and 7.0 through Service Pack 5 does not properly handle when a security provider throws an exception, which may cause WebLogic to u… NVD-CWE-Other
CVE-2005-1743 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm
278347 - bea
oracle 		weblogic_server
weblogic_portal 		The UserLogin control in BEA WebLogic Portal 8.1 through Service Pack 3 prints the password to standard output when an incorrect login attempt is made, which could make it easier for attackers to gue… NVD-CWE-Other
CVE-2005-1745 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm
278348 - bea
oracle 		weblogic_server
weblogic_portal 		The cluster cookie parsing code in BEA WebLogic Server 7.0 through Service Pack 5 attempts to contact any host or port specified in a cookie, even when it is not in the cluster, which allows remote a… NVD-CWE-Other
CVE-2005-1746 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm
278349 - bea
oracle 		weblogic_server
weblogic_portal 		Multiple cross-site scripting (XSS) vulnerabilities in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 6, allow remote attackers to inject arbitrary web scrip… NVD-CWE-Other
CVE-2005-1747 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm
278350 - bea
oracle 		weblogic_server
weblogic_portal 		The embedded LDAP server in BEA WebLogic Server and Express 8.1 through Service Pack 4, and 7.0 through Service Pack 5, allows remote anonymous binds, which may allow remote attackers to view user en… NVD-CWE-Other
CVE-2005-1748 2018-10-31 01:26 2005-05-24 Show GitHub Exploit DB Packet Storm