Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229801	7.5	危険	http-solution	-	Project Man の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2134	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

229802	7.5	危険	my little homepage	-	my little forum の contact.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2133	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

229803	7.5	危険	Mario Matzulla	-	TYPO3 用の Calendar Base エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-2131	2012-09-25 17:38	2010-06-2	Show	GitHub Exploit DB Packet Storm

229804	6.8	警告	Jextensions	-	Joomla! 用の com_jeajaxeventcalendar コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2129	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229805	7.5	危険	Jextensions	-	Joomla! 用の com_jequoteform コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2128	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229806	7.5	危険	jv2design	-	JV2 Folder Gallery の gallery.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-2127	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229807	6.8	警告	joelrowley	-	Joomla! 用の simpledownload コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2122	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229808	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2119	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229809	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 および 8 におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2118	2012-09-25 17:38	2010-06-1	Show	GitHub Exploit DB Packet Storm

229810	6.5	警告	マカフィー	-	McAfee Email Gateway の Web インターフェースにおける書き込み権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2116	2012-09-25 17:38	2010-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284781	-	telartis_bv	awstats_totals	awstatstotals.php in AWStats Totals 1.0 through 1.14 allows remote attackers to execute arbitrary code via PHP sequences in the sort parameter, which is used by the multisort function when dynamicall…	CWE-94 Code Injection	CVE-2008-3922	2018-10-12 05:50	2008-09-5	Show	GitHub Exploit DB Packet Storm

284782	-	wireshark	wireshark	Wireshark (formerly Ethereal) 0.10.14 through 1.0.2 allows attackers to cause a denial of service (crash) via a packet with crafted zlib-compressed data that triggers an invalid read in the tvb_uncom…	CWE-20 Improper Input Validation	CVE-2008-3933	2018-10-12 05:50	2008-09-5	Show	GitHub Exploit DB Packet Storm

284783	-	wireshark	wireshark	Unspecified vulnerability in Wireshark (formerly Ethereal) 0.99.6 through 1.0.2 allows attackers to cause a denial of service (crash) via a crafted Tektronix .rf5 file.	NVD-CWE-noinfo CWE-20 Improper Input Validation	CVE-2008-3934	2018-10-12 05:50	2008-09-5	Show	GitHub Exploit DB Packet Storm

284784	-	dreambox	dm500c	The web interface in Dreambox DM500C allows remote attackers to cause a denial of service (application hang) via a long URI.	CWE-20 Improper Input Validation	CVE-2008-3936	2018-10-12 05:50	2008-09-6	Show	GitHub Exploit DB Packet Storm

284785	-	xrms	xrms_crm	SQL injection vulnerability in admin/users/self-2.php in XRMS allows remote attackers to execute arbitrary SQL commands and modify name and email fields via unspecified vectors.	CWE-89 SQL Injection	CVE-2008-3948	2018-10-12 05:50	2008-09-6	Show	GitHub Exploit DB Packet Storm

284786	-	apple	iphone ipod_touch safari	Off-by-one error in the _web_drawInRect:withFont:ellipsis:alignment:measureOnly function in WebKit in Safari in Apple iPhone 1.1.4 and 2.0 and iPod touch 1.1.4 and 2.0 allows remote attackers to caus…	CWE-189 Numeric Errors	CVE-2008-3950	2018-10-12 05:50	2008-09-17	Show	GitHub Exploit DB Packet Storm

284787	-	oracle	database_10g	Unspecified vulnerability in the Oracle Spatial component in Oracle Database 10.1.0.5 and 10.2.0.2 allows remote authenticated users to affect confidentiality and integrity via unknown vectors. NOTE…	NVD-CWE-noinfo	CVE-2008-3979	2018-10-12 05:50	2009-01-14	Show	GitHub Exploit DB Packet Storm

284788	-	jdedwards oracle	enterpriseone jd_edwards_enterpriseone peoplesoft_enterprise peoplesoft_peopletools	Unspecified vulnerability in the PeopleTools component in Oracle PeopleSoft Enterprise and JD Edwards EnterpriseOne 8.48.18 and 8.49.14 allows remote attackers to affect confidentiality and integrity…	NVD-CWE-noinfo	CVE-2008-4000	2018-10-12 05:50	2008-10-15	Show	GitHub Exploit DB Packet Storm

284789	-	softalk_mail_server	softalk_mail_server	The IMAP server in Softalk Mail Server (formerly WorkgroupMail) 8.5.1.431 allows remote authenticated users to cause a denial of service (resource consumption and daemon crash) via a long IMAP APPEND…	CWE-20 Improper Input Validation	CVE-2008-4041	2018-10-12 05:50	2008-09-12	Show	GitHub Exploit DB Packet Storm

284790	-	phsdev	phsblog	Multiple SQL injection vulnerabilities in index.php in phsBlog 0.2 allow remote attackers to execute arbitrary SQL commands via (1) the sid parameter in a pickup action or (2) the sql_cid parameter, …	CWE-89 SQL Injection	CVE-2008-4072	2018-10-12 05:50	2008-09-16	Show	GitHub Exploit DB Packet Storm