Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229781	7.5	危険	TYPO3 Association	-	TYPO3 用の cm_rdfexport エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6594	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

229782	6.8	警告	Vuze, Inc.	-	Vuze の index.tmpl におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6587	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

229783	6.8	警告	BitTorrent, Inc.	-	uTorrent WebUI の gui/index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6586	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

229784	6.8	警告	TorrentFlux	-	TorrentFlux の html/admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6585	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

229785	6	警告	TorrentFlux	-	TorrentFlux の html/index.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6584	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

229786	6.8	警告	yehe	-	Yehe における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6568	2012-12-20 19:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

229787	10	危険	puppetmaster	-	The Puppet Master WebUtil の cgi-bin/webutil.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6557	2012-12-20 19:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

229788	10	危険	puppetmaster	-	The Puppet Master WebUtil の cgi-bin/webutil.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6556	2012-12-20 19:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

229789	10	危険	puppetmaster	-	The Puppet Master WebUtil の cgi-bin/webutil.pl における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6555	2012-12-20 19:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

229790	7.1	危険	vwsolutions	-	NULL FTP Server における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6534	2012-12-20 19:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292271	-	open-xchange	open-xchange_appsuite	The Hazelcast cluster API in Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 does not properly restrict the set of network interfaces that can receive API calls, which mak…	CWE-200 Information Exposure	CVE-2013-5935	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292272	-	open-xchange	open-xchange_appsuite	Open-Xchange AppSuite 7.0.x before 7.0.2-rev15 and 7.2.x before 7.2.2-rev16 has a hardcoded password for node join operations, which allows remote attackers to expand a cluster by finding this passwo…	CWE-255 Credentials Management	CVE-2013-5934	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292273	-	google motorola	android defy_xt	Stack-based buffer overflow in the sub_E110 function in init in a certain configuration of Android 2.3.7 on the Motorola Defy XT phone for Republic Wireless allows local users to gain privileges or c…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-5933	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292274	-	friends_of_symfony_project	fosuserbundle	The login form in the FriendsOfSymfony FOSUserBundle bundle before 1.3.3 for Symfony allows remote attackers to cause a denial of service (CPU consumption) via a long password that triggers an expens…	CWE-399 Resource Management Errors	CVE-2013-5750	2024-11-21 10:58	2013-09-25	Show	GitHub Exploit DB Packet Storm

292275	-	tenable	securitycenter	Cross-site scripting (XSS) vulnerability in devform.php in Tenable SecurityCenter 4.6 through 4.7 allows remote attackers to inject arbitrary web script or HTML via the message parameter.	CWE-79 Cross-site Scripting	CVE-2013-5911	2024-11-21 10:58	2013-09-24	Show	GitHub Exploit DB Packet Storm

292276	-	sophos	unified_threat_management_software	Unspecified vulnerability in WebAdmin in Sophos UTM (aka Astaro Security Gateway) before 9.105 has unknown impact and attack vectors.	NVD-CWE-noinfo	CVE-2013-5932	2024-11-21 10:58	2013-09-24	Show	GitHub Exploit DB Packet Storm

292277	-	real-estate-php-script	real_estate_php_script	SQL injection vulnerability in property_listings_detail.php in Real Estate PHP Script allows remote attackers to execute arbitrary SQL commands via the listingid parameter.	CWE-89 SQL Injection	CVE-2013-5931	2024-11-21 10:58	2013-09-24	Show	GitHub Exploit DB Packet Storm

292278	-	real-estate-php-script	real_estate_php_script	Cross-site scripting (XSS) vulnerability in search_residential.php in Real Estate PHP Script allows remote attackers to inject arbitrary web script or HTML via the bos parameter.	CWE-79 Cross-site Scripting	CVE-2013-5930	2024-11-21 10:58	2013-09-24	Show	GitHub Exploit DB Packet Storm

292279	-	platinum_seo_project	platinum_seo_plugin	Cross-site scripting (XSS) vulnerability in platinum_seo_pack.php in the Platinum SEO plugin before 1.3.8 for WordPress allows remote attackers to inject arbitrary web script or HTML via the s parame…	CWE-79 Cross-site Scripting	CVE-2013-5918	2024-11-21 10:58	2013-09-23	Show	GitHub Exploit DB Packet Storm

292280	-	rodrigo_coimbra	nospam_pti	SQL injection vulnerability in wp-comments-post.php in the NOSpam PTI plugin 2.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the comment_post_ID parameter.	CWE-89 SQL Injection	CVE-2013-5917	2024-11-21 10:58	2013-09-23	Show	GitHub Exploit DB Packet Storm