Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229761 4.3 警告 マイクロソフト - Microsoft Internet Explorer におけるキーストロークを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2442 2012-09-25 17:38 2010-06-24 Show GitHub Exploit DB Packet Storm
229762 9.3 危険 moreforge - MoreAmp におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2439 2012-09-25 17:38 2010-06-24 Show GitHub Exploit DB Packet Storm
229763 7.5 危険 laubrotel - G.CMS ジェネレータにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2438 2012-09-25 17:38 2010-06-24 Show GitHub Exploit DB Packet Storm
229764 4.3 警告 IBM - IBM WebSphere ILOG JRules におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2433 2012-09-25 17:38 2010-06-21 Show GitHub Exploit DB Packet Storm
229765 5.1 警告 jeffkilroy - Nakid CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2358 2012-09-25 17:38 2010-06-21 Show GitHub Exploit DB Packet Storm
229766 5 警告 Content Construction Kit project - Drupal 用の CCK の Node Reference モジュールにおけるコントロールされたノードを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2352 2012-09-25 17:38 2010-06-16 Show GitHub Exploit DB Packet Storm
229767 10 危険 Novell - Novell Netware の Netware SMB におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-2351 2012-09-25 17:38 2010-06-15 Show GitHub Exploit DB Packet Storm
229768 6.8 警告 odcms - odCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-2345 2012-09-25 17:38 2010-06-21 Show GitHub Exploit DB Packet Storm
229769 4.3 警告 odcms - odCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2344 2012-09-25 17:38 2010-06-21 Show GitHub Exploit DB Packet Storm
229770 5 警告 LiteSpeed Technologies - LiteSpeed Technologies LiteSpeed Web Server におけるスクリプトのソースコードを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2010-2333 2012-09-25 17:38 2010-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
285651 - phpeasydata phpeasydata Multiple SQL injection vulnerabilities in PHPEasyData 1.5.4 allow remote attackers to execute arbitrary SQL commands via (1) the annuaire parameter to annuaire.php or (2) the username field in admin/… CWE-89
SQL Injection 		CVE-2008-2995 2018-10-12 05:45 2008-07-4 Show GitHub Exploit DB Packet Storm
285652 - rss_aggregator rss_aggregator RSS-aggregator 1.0 does not require administrative authentication for the admin/fonctions/ directory, which allows remote attackers to access admin functions and have unspecified other impact, as dem… CWE-287
Improper Authentication 		CVE-2008-3033 2018-10-12 05:45 2008-07-8 Show GitHub Exploit DB Packet Storm
285653 - rss_aggregator rss_aggregator Multiple SQL injection vulnerabilities in RSS-aggregator 1.0 allow remote attackers to execute arbitrary SQL commands via the (1) IdFlux parameter to admin/fonctions/supprimer_flux.php and the (2) Id… CWE-89
SQL Injection 		CVE-2008-3034 2018-10-12 05:45 2008-07-8 Show GitHub Exploit DB Packet Storm
285654 - microsoft access
excel
frontpage
groove
infopath
office
office_communicator
onenote
outlook
powerpoint
project_professional
project_standard
publisher
sharepoint_designer… 		Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by using an arbitrary URL from a certificat… NVD-CWE-Other
CVE-2008-3068 2018-10-12 05:45 2008-07-8 Show GitHub Exploit DB Packet Storm
285655 - fuzzylime fuzzylime_cms Cross-site scripting (XSS) vulnerability in admin/usercheck.php in fuzzylime (cms) before 3.03 allows remote attackers to inject arbitrary web script or HTML via the user parameter to the login form. CWE-79
Cross-site Scripting 		CVE-2008-3098 2018-10-12 05:45 2008-09-24 Show GitHub Exploit DB Packet Storm
285656 - owl intranet_knowledgebase Cross-site scripting (XSS) vulnerability in lib/owl.lib.php in Steve Bourgeois and Chris Vincent Owl Intranet Knowledgebase 0.95 and earlier allows remote attackers to inject arbitrary web script or … CWE-79
Cross-site Scripting 		CVE-2008-3100 2018-10-12 05:45 2008-07-30 Show GitHub Exploit DB Packet Storm
285657 - mantisbt mantisbt Mantis 1.1.x through 1.1.2 and 1.2.x through 1.2.0a2 does not set the secure flag for the session cookie in an https session, which can cause the cookie to be sent in http requests and make it easier… CWE-310
Cryptographic Issues 		CVE-2008-3102 2018-10-12 05:45 2008-09-24 Show GitHub Exploit DB Packet Storm
285658 - sun jdk
jre 		Unspecified vulnerability in the Java Management Extensions (JMX) management agent in Sun Java Runtime Environment (JRE) in JDK and JRE 6 Update 6 and earlier and JDK and JRE 5.0 Update 15 and earlie… NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3103 2018-10-12 05:45 2008-07-10 Show GitHub Exploit DB Packet Storm
285659 - mozilla firefox
seamonkey
thunderbird 		Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 on Mac OS X allow remote attackers to bypass the Same Origin Policy and create arbitrary socket connections via a crafted Java applet, rela… NVD-CWE-noinfo
CWE-20
 Improper Input Validation  		CVE-2008-2806 2018-10-12 05:44 2008-07-8 Show GitHub Exploit DB Packet Storm
285660 - mozilla firefox
seamonkey 		Mozilla Firefox before 2.0.0.15 and SeaMonkey before 1.1.10 do not properly handle an invalid .properties file for an add-on, which allows remote attackers to read uninitialized memory, as demonstrat… CWE-200
Information Exposure 		CVE-2008-2807 2018-10-12 05:44 2008-07-8 Show GitHub Exploit DB Packet Storm