Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224271 5 警告 php-daily - PHP-Daily の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4758 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224272 7.5 危険 php-daily - PHP-Daily における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4757 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224273 4.3 警告 php-daily - PHP-Daily の add_prest_date.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4756 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224274 7.5 危険 pozscripts - PozScripts Classified Auctions Script の gotourl.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4755 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224275 5.8 警告 scripts-for-sites - SFS Ez Forum の forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4754 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224276 7.5 危険 tech logic - TlNews における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4752 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224277 7.5 危険 uniwin - Uniwin eCart Professional における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4746 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224278 4.3 警告 uniwin - Uniwin eCart Professional の emailFriend.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4745 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224279 7.5 危険 quidascript - QuidaScript FAQ Management Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4743 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
224280 4.3 警告 timetrex - TimeTrex の interface/Login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4742 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278791 - sun ray_server_software Sun Sun Ray Server Software 3.1 through 4.0 does not properly restrict access, which allows remote attackers to discover the Sun Ray administration password, and obtain admin access to the Data Store… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-5422 2018-10-31 01:25 2008-12-12 Show GitHub Exploit DB Packet Storm
278792 - sun ray_server_software
ray_windows_connector 		Sun Sun Ray Server Software 3.x and 4.0 and Sun Ray Windows Connector 1.1 and 2.0 expose the LDAP password during a configuration step, which allows local users to discover the Sun Ray administration… CWE-200
Information Exposure 		CVE-2008-5423 2018-10-31 01:25 2008-12-12 Show GitHub Exploit DB Packet Storm
278793 - mozilla thunderbird Mozilla Thunderbird 2.0.14 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many "Content-type: message/rfc822;" headers, which … NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2008-5430 2018-10-31 01:25 2008-12-13 Show GitHub Exploit DB Packet Storm
278794 - php php Array index error in the imageRotate function in PHP 5.2.8 and earlier allows context-dependent attackers to read the contents of arbitrary memory locations via a crafted value of the third argument … CWE-200
Information Exposure 		CVE-2008-5498 2018-10-31 01:25 2008-12-27 Show GitHub Exploit DB Packet Storm
278795 - sun java_web_console
solaris
sunos 		Open redirect vulnerability in console/faces/jsp/login/BeginLogin.jsp in Sun Java Web Console 3.0.2 through 3.0.5 and Solaris 10 allows remote attackers to redirect users to arbitrary web sites and c… NVD-CWE-Other
CVE-2008-5550 2018-10-31 01:25 2008-12-13 Show GitHub Exploit DB Packet Storm
278796 - php-fusion team_impact_ti_blog_system_module SQL injection vulnerability in blog.php in the Team Impact TI Blog System mod for PHP-Fusion allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2008-5733 2018-10-31 01:25 2008-12-27 Show GitHub Exploit DB Packet Storm
278797 - microsoft money An ActiveX control in prtstb06.dll in Microsoft Money 2006, when used with WScript in Windows Script Host (WSH) on Windows Vista, allows remote attackers to cause a denial of service (access violatio… CWE-189
Numeric Errors 		CVE-2008-5823 2018-10-31 01:25 2009-01-3 Show GitHub Exploit DB Packet Storm
278798 - citrix
avaya 		broadcast_server SQL injection vulnerability in login.asp in Citrix Application Gateway - Broadcast Server (BCS) before 6.1, as used by Avaya AG250 - Broadcast Server before 2.0 and possibly other products, allows re… CWE-89
SQL Injection 		CVE-2008-5882 2018-10-31 01:25 2009-01-10 Show GitHub Exploit DB Packet Storm
278799 - oracle database_server Oracle Database Server 10.1, 10.2, and 11g grants directory WRITE permissions for arbitrary pathnames that are aliased in a CREATE OR REPLACE DIRECTORY statement, which allows remote authenticated us… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-6065 2018-10-31 01:25 2009-02-5 Show GitHub Exploit DB Packet Storm
278800 - f5 tmos The management interface in F5 BIG-IP 9.4.3 allows remote authenticated users with Resource Manager privileges to inject arbitrary Perl code via unspecified configuration settings related to Perl EP3… CWE-94
Code Injection 		CVE-2008-6474 2018-10-31 01:25 2009-03-17 Show GitHub Exploit DB Packet Storm