Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225971 7.5 危険 TYPO3 Association - TYPO3 用の TU-Clausthal Staff エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6344 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225972 4.3 警告 TYPO3 Association - TYPO3 用の TU-Clausthal ODIN エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6343 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225973 4.3 警告 TYPO3 Association - TYPO3 用の SB Universal Plugin エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6341 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225974 7.5 危険 weber-ebusiness - TYPO3 用の WEBERkommunal Facilities エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6338 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225975 4.3 警告 rightscripts - Text Lines Rearrange Script の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6336 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225976 7.5 危険 simplecustomer - Simple Customer の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6332 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225977 6 警告 streber-pm - Streber におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6331 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225978 7.5 危険 PreProject.com - Pre ASP Job Board の Employee/login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6329 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225979 7.5 危険 simplecustomer - Simple Customer の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6326 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
225980 4.3 警告 SoftbizScripts - Softbiz Classifieds Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6325 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
348811 - t._hauck jana_web_server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, generates different responses for valid and invalid usernames, which allows remote attackers to identify valid users on the server. NVD-CWE-Other
CVE-2002-1064 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348812 - t._hauck jana_web_server Thomas Hauck Jana Server 2.x through 2.2.1, and 1.4.6 and earlier, does not restrict the number of unsuccessful login attempts, which makes it easier for remote attackers to gain privileges via brute… NVD-CWE-Other
CVE-2002-1065 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348813 - t._hauck jana_web_server Thomas Hauck Jana Server 1.4.6 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large message index value in a (1) RETR or (2) DELE command t… NVD-CWE-Other
CVE-2002-1066 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348814 - seh ic9_pocket_print_server_firmware Administrative web interface for IC9 Pocket Print Server Firmware 7.1.30 and 7.1.36f allows remote attackers to cause a denial of service (reboot and reset) via a long password, possibly due to a buf… NVD-CWE-Other
CVE-2002-1067 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348815 - php-wiki php-wiki Cross-site scripting vulnerability in PHPWiki Postnuke wiki module allows remote attackers to execute script as other PHPWiki users via the pagename parameter. NVD-CWE-Other
CVE-2002-1070 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348816 - zyxel prestige ZyXEL Prestige 642R allows remote attackers to cause a denial of service in the Telnet, FTP, and DHCP services (crash) via a TCP packet with both the SYN and ACK flags set. NVD-CWE-Other
CVE-2002-1071 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348817 - zyxel prestige ZyXEL Prestige 642R 2.50(FA.1) and Prestige 310 V3.25(M.01), allows remote attackers to cause a denial of service via an oversized, fragmented "jolt" style ICMP packet. NVD-CWE-Other
CVE-2002-1072 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348818 - atrium_software mercur_mailserver Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password. NVD-CWE-Other
CVE-2002-1073 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348819 - david_harris pegasus_mail Buffer overflow in Pegasus mail client 4.01 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) To or (2) From headers. NVD-CWE-Other
CVE-2002-1075 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
348820 - ipswitch imail Buffer overflow in the Web Messaging daemon for Ipswitch IMail before 7.12 allows remote attackers to execute arbitrary code via a long HTTP GET request for HTTP/1.0. NVD-CWE-Other
CVE-2002-1076 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm