Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 4:05 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229821 4.3 警告 scripts4profit - Scripts4Profit DXShopCart の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5119 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
229822 4 警告 WordPress.org - WordPress におけるクロスサイトリクエストフォージェリ (CSRF) 攻撃を実行される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5113 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
229823 4 警告 Zope Foundation - Zope の PythonScripts におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5102 2012-12-20 18:52 2008-11-17 Show GitHub Exploit DB Packet Storm
229824 5 警告 TYPO3 Association - TYPO3 File List エクステンションにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-5096 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229825 7.5 危険 TYPO3 Association - TYPO3 Another Backend Login エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5087 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229826 6.8 警告 scripts frenzy - E-Uploader Pro における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5075 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229827 7.5 危険 PHP-Fusion - PHP-Fusion 用の Freshlinks モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5074 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229828 9 危険 yoxel - Yoxel の itpm_estimate.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5071 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229829 7.5 危険 Pro Chat Rooms - Pro Chat Rooms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5070 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229830 5 警告 smolinari - mwcal の php/cal_pdf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5062 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292951 - ds3 authentication_server ServerAdmin/ErrorViewer.jsp in DS3 Authentication Server allow remote attackers to inject arbitrary error-page text via the message parameter. CWE-20
 Improper Input Validation  		CVE-2013-4098 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292952 - ds3 authentication_server ServerAdmin/TestDRConnection.jsp in DS3 Authentication Server allows remote attackers to obtain sensitive information via a direct request, which reveals the installation path in a -REG-E-OPEN error … CWE-22
Path Traversal 		CVE-2013-4097 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292953 - ds3 authentication_server ServerAdmin/TestTelnetConnection.jsp in DS3 Authentication Server allows remote authenticated users to execute arbitrary commands via shell metacharacters in the HOST_NAME field. CWE-20
 Improper Input Validation  		CVE-2013-4096 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292954 - imperva securesphere plain/actionsets.html in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to execute arbitrary commands via a task with a … CWE-20
 Improper Input Validation  		CVE-2013-4095 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292955 - imperva securesphere The Key Management feature in the SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote authenticated users to upload executable files via the (1) priv… CWE-20
 Improper Input Validation  		CVE-2013-4094 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292956 - imperva securesphere The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows remote attackers to obtain sensitive information via (1) a direct request to dwr/call/plaincall/Asyn… CWE-22
Path Traversal 		CVE-2013-4093 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292957 - imperva securesphere The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 allows context-dependent attackers to obtain sensitive information by leveraging the presence of (1) a sess… CWE-255
Credentials Management 		CVE-2013-4092 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292958 - imperva securesphere The SecureSphere Operations Manager (SOM) Management Server in Imperva SecureSphere 9.0.0.5 does not have an off autocomplete attribute for the password (aka j_password) field on the secsphLogin.jsp … CWE-255
Credentials Management 		CVE-2013-4091 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292959 - kent-web clip-mail Cross-site scripting (XSS) vulnerability in KENT-WEB CLIP-MAIL before 3.4, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecifi… CWE-79
Cross-site Scripting 		CVE-2013-3649 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm
292960 - kent-web post-mail Cross-site scripting (XSS) vulnerability in KENT-WEB POST-MAIL before 6.7, when Internet Explorer 7 or earlier is used, allows remote attackers to inject arbitrary web script or HTML via an unspecifi… CWE-79
Cross-site Scripting 		CVE-2013-3648 2024-11-21 10:54 2013-06-29 Show GitHub Exploit DB Packet Storm