Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229811	8.8	危険	intervations	-	FileCOPA の FTP サービスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2112	2012-09-25 17:38	2010-05-28	Show	GitHub Exploit DB Packet Storm

229812	4.3	警告	pacifictimesheet	-	Pacific Timesheet の user/user-set.do におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2111	2012-09-25 17:38	2010-05-28	Show	GitHub Exploit DB Packet Storm

229813	4.3	警告	orbitdownloader	-	Orbit Downloader におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2104	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229814	5	警告	The PHP Group	-	PHP の htmlentities における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2100	2012-09-25 17:38	2010-05-21	Show	GitHub Exploit DB Packet Storm

229815	5	警告	The PHP Group	-	PHP の iconv_mime_decode における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-2097	2012-09-25 17:38	2010-05-18	Show	GitHub Exploit DB Packet Storm

229816	5	警告	The PHP Group	-	PHP のリクエストシャットダウン機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-2093	2012-09-25 17:38	2010-05-12	Show	GitHub Exploit DB Packet Storm

229817	4.3	警告	マイクロソフト	-	Microsoft OWA におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2091	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229818	5	警告	IBM	-	sna.rte の npb_protocol_error 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2010-2090	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229819	4.3	警告	マイクロソフト	-	Microsoft .NET の ASP.NET におけるフォームコントロールに対してクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2088	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229820	4.3	警告	オラクル	-	IBM WebSphere Application Server などで使用される Oracle Mojarra におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2087	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 16, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284941	-	mozilla	firefox	Mozilla Firefox before 2.0.0.16, and 3.x before 3.0.1, interprets '\|' (pipe) characters in a command-line URI as requests to open multiple tabs, which allows remote attackers to access chrome:i URIs,…	CWE-20 Improper Input Validation	CVE-2008-2933	2018-10-12 05:45	2008-07-17	Show	GitHub Exploit DB Packet Storm

284942	-	mozilla	firefox	This attack only works if the user is using another internet-connected application with Firefox not running. Using Firefox, or making sure it is at least running, prevents this attack.	CWE-20 Improper Input Validation	CVE-2008-2933	2018-10-12 05:45	2008-07-17	Show	GitHub Exploit DB Packet Storm

284943	-	xmlsoft	libxslt	Multiple heap-based buffer overflows in the rc4 (1) encryption (aka exsltCryptoRc4EncryptFunction) and (2) decryption (aka exsltCryptoRc4DecryptFunction) functions in crypto.c in libexslt in libxslt …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2935	2018-10-12 05:45	2008-08-1	Show	GitHub Exploit DB Packet Storm

284944	-	postfix	postfix	Postfix 2.5 before 2.5.4 and 2.6 before 2.6-20080814 delivers to a mailbox file even when this file is not owned by the recipient, which allows local users to read e-mail messages by creating a mailb…	CWE-200 Information Exposure	CVE-2008-2937	2018-10-12 05:45	2008-08-19	Show	GitHub Exploit DB Packet Storm

284945	-	postfix	postfix	Please refer to the following links for additional version information (vendor release notes): Postfix 2.5 - ftp://mirrors.loonybin.net/pub/postfix/official/postfix-2.5.4.RELEASE_NOTES Postfix …	CWE-200 Information Exposure	CVE-2008-2937	2018-10-12 05:45	2008-08-19	Show	GitHub Exploit DB Packet Storm

284946	-	mercurial	mercurial	Directory traversal vulnerability in patch.py in Mercurial 1.0.1 allows user-assisted attackers to modify arbitrary files via ".." (dot dot) sequences in a patch file.	CWE-22 Path Traversal	CVE-2008-2942	2018-10-12 05:45	2008-07-1	Show	GitHub Exploit DB Packet Storm

284947	-	poppler	poppler	The Page destructor in Page.cc in libpoppler in Poppler 0.8.4 and earlier deletes a pageWidgets object even if it is not initialized by a Page constructor, which allows remote attackers to execute ar…	CWE-94 Code Injection	CVE-2008-2950	2018-10-12 05:45	2008-07-8	Show	GitHub Exploit DB Packet Storm

284948	-	pidgin	pidgin	Pidgin 2.4.1 allows remote attackers to cause a denial of service (crash) via a long filename that contains certain characters, as demonstrated using an MSN message that triggers the crash in the msn…	CWE-20 Improper Input Validation	CVE-2008-2955	2018-10-12 05:45	2008-07-2	Show	GitHub Exploit DB Packet Storm

284949	-	yektaweb	academic_web_tools	Multiple cross-site scripting (XSS) vulnerabilities in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and earlier, allow remote attackers to inject arbitrary web script or HTML via the (1) query…	CWE-79 Cross-site Scripting	CVE-2008-2967	2018-10-12 05:45	2008-07-3	Show	GitHub Exploit DB Packet Storm

284950	-	yektaweb	academic_web_tools	SQL injection vulnerability in rating.php in Academic Web Tools (AWT YEKTA) 1.4.3.1, and 1.4.2.8 and earlier, allows remote attackers to execute arbitrary SQL commands via the book_id parameter.	CWE-89 SQL Injection	CVE-2008-2968	2018-10-12 05:45	2008-07-3	Show	GitHub Exploit DB Packet Storm