Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229531	10	危険	Condor Project	-	Condor における脆弱性	CWE-noinfo 情報不足	CVE-2012-5197	2012-10-2 14:34	2012-09-19	Show	GitHub Exploit DB Packet Storm

229532	10	危険	Condor Project	-	Condor におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-5196	2012-10-2 14:31	2012-09-19	Show	GitHub Exploit DB Packet Storm

229533	6.4	警告	Condor Project	-	Condor のファイルシステム認証におけるユーザになりすまされる脆弱性	CWE-287 不適切な認証	CVE-2012-3492	2012-10-2 14:20	2012-09-19	Show	GitHub Exploit DB Packet Storm

229534	4	警告	Condor Project	-	Condor におけるアイドル状態の任意のジョブを削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-3491	2012-10-2 14:09	2012-09-19	Show	GitHub Exploit DB Packet Storm

229535	6.8	警告	トレンドマイクロ	-	Trend Micro InterScan Messaging Security Suite におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-2996	2012-10-1 18:29	2012-09-17	Show	GitHub Exploit DB Packet Storm

229536	4.3	警告	トレンドマイクロ	-	Trend Micro InterScan Messaging Security Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2995	2012-10-1 18:16	2012-09-17	Show	GitHub Exploit DB Packet Storm

229537	10	危険	IBM アップルサイバートラスト株式会社ヒューレット・パッカードターボリナックス OpenSSL Project 日立レッドハット	-	OpenSSL における複数の関数に関する脆弱性	CWE-20 不適切な入力確認	CVE-2009-3245	2012-10-1 17:11	2010-03-5	Show	GitHub Exploit DB Packet Storm

229538	5	警告	IBM アップルサイバートラスト株式会社 The PHP Group サン・マイクロシステムズターボリナックス OpenSSL Project VMware レッドハット	-	OpenSSL の ASN1_STRING_print_ex 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-0590	2012-10-1 17:10	2009-03-27	Show	GitHub Exploit DB Packet Storm

229539	5	警告	アップルサイバートラスト株式会社サン・マイクロシステムズターボリナックスヒューレット・パッカード OpenSSL Project	-	OpenSSL における証明書チェーンの有効性を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-5077	2012-10-1 17:07	2009-01-7	Show	GitHub Exploit DB Packet Storm

229540	9.3	危険	マイクロソフト	-	Internet Explorer に任意のコードが実行される脆弱性	CWE-Other その他	CVE-2012-4969	2012-10-1 16:30	2012-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298051	-	phparanoid	phparanoid	PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-5673	2017-08-8 10:33	2008-12-19	Show	GitHub Exploit DB Packet Storm

298052	-	breach	modsecurity	Multiple unspecified vulnerabilities in the ModSecurity (aka mod_security) module 2.5.0 through 2.5.5 for the Apache HTTP Server, when SecCacheTransformations is enabled, allow remote attackers to ca…	NVD-CWE-noinfo	CVE-2008-5676	2017-08-8 10:33	2008-12-19	Show	GitHub Exploit DB Packet Storm

298053	-	mediawiki	mediawiki	MediaWiki 1.11, and other versions before 1.13.3, does not properly protect against the download of backups of deleted images, which might allow remote attackers to obtain sensitive information via r…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-5687	2017-08-8 10:33	2008-12-20	Show	GitHub Exploit DB Packet Storm

298054	-	novell	netware	Novell NetWare 6.5 before Support Pack 8, when an OES2 Linux server is installed into the NDS tree, does not require a password for the ApacheAdmin console, which allows remote attackers to reconfigu…	CWE-255 Credentials Management	CVE-2008-5696	2017-08-8 10:33	2008-12-20	Show	GitHub Exploit DB Packet Storm

298055	-	avaya	communication_manager	Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1 before 3.1.4 SP2, 4.0 before 4.0.3 SP1, and 5.0 before 5.0 SP3 allow remote authenticated …	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2008-5709	2017-08-8 10:33	2008-12-25	Show	GitHub Exploit DB Packet Storm

298056	-	avaya	communication_manager	Multiple unspecified vulnerabilities in the web management interface in Avaya Communication Manager (CM) 3.1.x, 4.0.3, and 5.x allow remote attackers to read (1) configuration files, (2) log files, (…	CWE-16 Configuration	CVE-2008-5710	2017-08-8 10:33	2008-12-25	Show	GitHub Exploit DB Packet Storm

298057	-	qemu	qemu	Off-by-one error in monitor.c in Qemu 0.9.1 might make it easier for remote attackers to guess the VNC password, which is limited to seven characters where eight was intended.	CWE-189 Numeric Errors	CVE-2008-5714	2017-08-8 10:33	2008-12-25	Show	GitHub Exploit DB Packet Storm

298058	-	citrix	xen	xend in Xen 3.3.0 does not properly restrict a guest VM's write access within the /local/domain xenstore directory tree, which allows guest OS users to cause a denial of service and possibly have uns…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-5716	2017-08-8 10:33	2008-12-25	Show	GitHub Exploit DB Packet Storm

298059	-	seasar	mayaa	Cross-site scripting (XSS) vulnerability in Mayaa before 1.1.23 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving the default error page for the org.sea…	CWE-79 Cross-site Scripting	CVE-2008-5720	2017-08-8 10:33	2008-12-27	Show	GitHub Exploit DB Packet Storm

298060	-	cgi-rescue	kannibbs2000 kannibbs2000i	Directory traversal vulnerability in CGI RESCUE KanniBBS2000 (aka KanniBBS2000i, MiniBBS2000, and MiniBBS2000i) before 1.03 allows remote attackers to read arbitrary files via unspecified vectors.	CWE-22 Path Traversal	CVE-2008-5723	2017-08-8 10:33	2008-12-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed