Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224231 7.5 危険 w1n78 - e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4906 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224232 5 警告 typosphere - Typo におけるパスワードを推測される脆弱性 CWE-310
暗号の問題 		CVE-2008-4905 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224233 6 警告 typosphere - Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4904 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224234 4.3 警告 typosphere - Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4903 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224235 7.5 危険 scripts frenzy - Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4902 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224236 7.5 危険 scripts frenzy - Article Publisher Pro の admin/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4901 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224237 9.3 危険 SAP - SAP GUI の KWEdit ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-4830 2012-12-20 18:52 2009-04-16 Show GitHub Exploit DB Packet Storm
224238 7.5 危険 YourFreeWorld.com - YourFreeWorld Classifieds Blaster Script の tr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4900 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224239 6.8 警告 planetluc - Planetluc RateMe におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4899 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
224240 4.3 警告 planetluc - planetluc RateMe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4898 2012-12-20 18:52 2008-11-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
279001 - avaya
sun 		call_management_system_server
dtmail
solaris
sunos 		Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value. NVD-CWE-Other
CVE-2004-0800 2018-10-31 01:25 2004-08-24 Show GitHub Exploit DB Packet Storm
279002 - samba samba The process_logon_packet function in the nmbd server for Samba 3.0.6 and earlier, when domain logons are enabled, allows remote attackers to cause a denial of service via a SAM_UAS_CHANGE request wit… NVD-CWE-Other
CVE-2004-0808 2018-10-31 01:25 2004-12-31 Show GitHub Exploit DB Packet Storm
279003 - samba samba The unix_clean_name function in Samba 2.2.x through 2.2.11, and 3.0.x before 3.0.2a, trims certain directory names down to absolute paths, which could allow remote attackers to bypass the specified s… NVD-CWE-Other
CVE-2004-0815 2018-10-31 01:25 2004-11-3 Show GitHub Exploit DB Packet Storm
279004 - samba
conectiva
redhat
ubuntu 		samba
linux
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
ubuntu_linux 		Buffer overflow in the QFILEPATHINFO request handler in Samba 3.0.x through 3.0.7 may allow remote attackers to execute arbitrary code via a TRANSACT2_QFILEPATHINFO request with a small "maximum data… NVD-CWE-Other
CVE-2004-0882 2018-10-31 01:25 2005-01-27 Show GitHub Exploit DB Packet Storm
279005 - hp ignite-ux The make_recovery command for the TFTP server in HP Ignite-UX before C.6.2.241 makes a copy of the password file in the TFTP directory tree, which allows remote attackers to obtain sensitive informat… NVD-CWE-Other
CVE-2004-0951 2018-10-31 01:25 2004-12-31 Show GitHub Exploit DB Packet Storm
279006 - apple apple_remote_desktop Apple Remote Desktop Client 1.2.4 executes a GUI application as root when it is started by an Apple Remote Desktop Administrator application, which allows remote authenticated users to execute arbitr… NVD-CWE-Other
CVE-2004-0962 2018-10-31 01:25 2005-02-9 Show GitHub Exploit DB Packet Storm
279007 - yard_radius
yard_radius_project 		yard_radius Buffer overflow in the process_menu function in yardradius 1.0.20 allows remote attackers to execute arbitrary code. NVD-CWE-Other
CVE-2004-0987 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
279008 - openpkg
php
trustix
ubuntu 		openpkg
php
secure_linux
ubuntu_linux 		The deserialization code in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to cause a denial of service and execute arbitrary code via untrusted data to the unserialize function th… CWE-20
 Improper Input Validation  		CVE-2004-1019 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
279009 - openpkg
php
trustix
ubuntu 		openpkg
php
secure_linux
ubuntu_linux 		Buffer overflow in the exif_read_data function in PHP before 4.3.10 and PHP 5.x up to 5.0.2 allows remote attackers to execute arbitrary code via a long section name in an image file. NVD-CWE-Other
CVE-2004-1065 2018-10-31 01:25 2005-01-10 Show GitHub Exploit DB Packet Storm
279010 - apache
apple
avaya
hp
ibm
openbsd
sco
sun 		http_server
apache_mod_digest_apple
communication_manager
intuity_audix_lx
virtualvault
webproxy
mn100
network_routing
modular_messaging_message_storage_server
openbsd
o… 		mod_digest_apple for Apache 1.3.31 and 1.3.32 on Mac OS X Server does not properly verify the nonce of a client response, which allows remote attackers to replay credentials. NVD-CWE-Other
CVE-2004-1082 2018-10-31 01:25 2004-02-3 Show GitHub Exploit DB Packet Storm