Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229821	4.3	警告	マイクロソフト	-	ASP.NET in Microsoft .NET のデフォルト設定におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2085	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229822	4.3	警告	マイクロソフト	-	Microsoft ASP.NET におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2084	2012-09-25 17:38	2010-05-27	Show	GitHub Exploit DB Packet Storm

229823	4	警告	マイクロソフト	-	Microsoft Dynamics GP におけるアクセス制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2010-2083	2012-09-25 17:38	2010-05-26	Show	GitHub Exploit DB Packet Storm

229824	5	警告	magnoware	-	DataTrack System におけるファイルを読まれる脆弱性	CWE-20 不適切な入力確認	CVE-2010-2079	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229825	5	警告	magnoware	-	DataTrack System におけるルートディレクトリを一覧される脆弱性	CWE-20 不適切な入力確認	CVE-2010-2078	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229826	4.6	警告	Linux	-	Linux kernel の fs/btrfs/acl.c におけるファイルパーミッションを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-2071	2012-09-25 17:38	2010-05-18	Show	GitHub Exploit DB Packet Storm

229827	6.8	警告	LibTIFF	-	LibTIFF の tif_dirread.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2067	2012-09-25 17:38	2010-06-3	Show	GitHub Exploit DB Packet Storm

229828	7.5	危険	m0r0n	-	Moron Solutions MS Comment におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-2050	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229829	4.3	警告	Zoho Corporation	-	ManageEngine ADAudit Plus におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2049	2012-09-25 17:38	2010-05-25	Show	GitHub Exploit DB Packet Storm

229830	3.5	注意	menhir	-	Drupal 用の Heartbeat モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-2048	2012-09-25 17:38	2010-05-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285741	-	pancake	zina	Cross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.	CWE-79 Cross-site Scripting	CVE-2008-2494	2018-10-12 05:41	2008-05-29	Show	GitHub Exploit DB Packet Storm

285742	-	pancake	zina	Directory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.	CWE-22 Path Traversal	CVE-2008-2495	2018-10-12 05:41	2008-05-29	Show	GitHub Exploit DB Packet Storm

285743	-	brown_bear_software	calcium	Cross-site scripting (XSS) vulnerability in Calcium40.pl in Brown Bear Software Calcium 3.10 and 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the CalendarName parameter in…	CWE-79 Cross-site Scripting	CVE-2008-2507	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285744	-	excuse_online	excuse_online	SQL injection vulnerability in pwd.asp in Excuse Online allows remote attackers to execute arbitrary SQL commands via the pID parameter.	CWE-89 SQL Injection	CVE-2008-2509	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285745	-	wordpress	upload_file_plugin	SQL injection vulnerability in wp-uploadfile.php in the Upload File plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the f_id parameter.	CWE-89 SQL Injection	CVE-2008-2510	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285746	-	ca	internet_security_suite_plus_2008	Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create…	CWE-22 Path Traversal	CVE-2008-2511	2018-10-12 05:41	2008-06-3	Show	GitHub Exploit DB Packet Storm

285747	-	actualscripts	actualanalyzer_gold actualanalyzer_lite actualanalyzer_pro actualanalyzer_server	Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnal…	CWE-79 Cross-site Scripting	CVE-2008-2527	2018-10-12 05:41	2008-06-4	Show	GitHub Exploit DB Packet Storm

285748	-	ca	etrust_secure_content_manager	Multiple stack-based buffer overflows in the HTTP Gateway Service (icihttp.exe) in CA eTrust Secure Content Manager 8.0 allow remote attackers to execute arbitrary code or cause a denial of service v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2541	2018-10-12 05:41	2008-06-5	Show	GitHub Exploit DB Packet Storm

285749	-	nasa_ames_research_center	bigview	Stack-based buffer overflow in the getline function in Ppm/ppm.C in NASA Ames Research Center BigView 1.8 allows user-assisted remote attackers to execute arbitrary code via a crafted PNM file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2542	2018-10-12 05:41	2008-06-6	Show	GitHub Exploit DB Packet Storm

285750	-	microsoft	windows_installer	Stack-based buffer overflow in msiexec.exe 3.1.4000.1823 and 4.5.6001.22159 in Microsoft Windows Installer allows context-dependent attackers to execute arbitrary code via a long GUID value for the /…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2547	2018-10-12 05:41	2008-06-5	Show	GitHub Exploit DB Packet Storm