Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224331 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224332 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224333 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224334 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224335 4.3 警告 portalapp - PortalApp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4612 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
224336 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224337 7.5 危険 steve dawson - PokerMax Poker League Tournament Script の configure.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4600 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224338 10 危険 slaytanic scripts - Slaytanic Scripts Content Plus における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4595 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
224339 10 危険 sportspanel - Sports Clubs Web Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4592 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
224340 4.3 警告 phpwebgallery - PhpWebGallery の admin/include/isadmin.inc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4591 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
278841 - microsoft office
office_compatibility_pack_for_word_excel_ppt_2007
office_word_viewer
open_xml_file_format_converter
works
office_outlook
office_word 		Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 Fil… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-4028 2018-10-31 01:25 2008-12-10 Show GitHub Exploit DB Packet Storm
278842 - microsoft office
office_compatibility_pack_for_word_excel_ppt_2007
office_word_viewer
open_xml_file_format_converter
works
office_outlook
office_word 		Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; and Office Compatibility Pack for Word, Excel, and PowerPoint 2007… CWE-399
 Resource Management Errors 		CVE-2008-4030 2018-10-31 01:25 2008-12-10 Show GitHub Exploit DB Packet Storm
278843 - microsoft office
office_compatibility_pack_for_word_excel_ppt_2007
office_word_viewer
open_xml_file_format_converter
works
office_outlook
office_word 		Microsoft Office Word 2000 SP3, 2002 SP3, 2003 SP3, and 2007 Gold and SP1; Outlook 2007 Gold and SP1; Word Viewer 2003 Gold and SP3; Office Compatibility Pack for Word, Excel, and PowerPoint 2007 Fil… CWE-399
 Resource Management Errors 		CVE-2008-4031 2018-10-31 01:25 2008-12-10 Show GitHub Exploit DB Packet Storm
278844 - adobe acrobat A certain ActiveX control in Adobe Acrobat 9, when used with Microsoft Windows Vista and Internet Explorer 7, allows remote attackers to cause a denial of service (browser crash) via an src property … NVD-CWE-noinfo
CWE-20
 Improper Input Validation  		CVE-2008-4071 2018-10-31 01:25 2008-09-16 Show GitHub Exploit DB Packet Storm
278845 - microsoft windows_xp gdiplus.dll in GDI+ in Microsoft Windows XP SP3 does not properly handle crafted .ico files, which allows remote attackers to cause a denial of service (divide-by-zero error and application crash) vi… CWE-189
Numeric Errors 		CVE-2008-4327 2018-10-31 01:25 2008-10-1 Show GitHub Exploit DB Packet Storm
278846 - debian
mozilla
canonical 		debian_linux
firefox
ubuntu_linux
seamonkey 		Mozilla Firefox 3.0.1 through 3.0.3, Firefox 2.x before 2.0.0.18, and SeaMonkey 1.x before 1.1.13, when running on Windows, do not properly identify the context of Windows .url shortcut files, which … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-4582 2018-10-31 01:25 2008-10-16 Show GitHub Exploit DB Packet Storm
278847 - sun sunos The RPC subsystem in Sun Solaris 9 allows remote attackers to cause a denial of service (daemon crash) via a crafted request to procedure 8 in program 100000 (rpcbind), related to the XDR_DECODE oper… NVD-CWE-noinfo
CVE-2008-4619 2018-10-31 01:25 2008-10-21 Show GitHub Exploit DB Packet Storm
278848 - adobe acrobat
acrobat_reader 		Array index error in Adobe Reader and Acrobat, and the Explorer extension (aka AcroRd32Info), 8.1.2, 8.1.1, and earlier allows remote attackers to execute arbitrary code via a crafted PDF document th… CWE-20
 Improper Input Validation  		CVE-2008-4812 2018-10-31 01:25 2008-11-6 Show GitHub Exploit DB Packet Storm
278849 - adobe acrobat
acrobat_reader 		Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allow remote attackers to execute arbitrary code via a crafted PDF document that (1) performs unspecified actions on a Collab object that… CWE-399
 Resource Management Errors 		CVE-2008-4813 2018-10-31 01:25 2008-11-6 Show GitHub Exploit DB Packet Storm
278850 - adobe acrobat
acrobat_reader 		Unspecified vulnerability in a JavaScript method in Adobe Reader and Acrobat 8.1.2 and earlier, and before 7.1.1, allows remote attackers to execute arbitrary code via unknown vectors, related to an … CWE-20
 Improper Input Validation  		CVE-2008-4814 2018-10-31 01:25 2008-11-6 Show GitHub Exploit DB Packet Storm