Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229931	7.5	危険	Moodle	-	Moodle における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1615	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229932	4.3	警告	Moodle	-	Moodle におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1614	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229933	6.8	警告	Moodle	-	Moodle におけるセッション固定攻撃を実行される脆弱性	CWE-287 不適切な認証	CVE-2010-1613	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229934	5	警告	IBM	-	IBM WebSphere DataPower XML Accelerator XA35 などの製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-1612	2012-09-25 17:38	2010-04-25	Show	GitHub Exploit DB Packet Storm

229935	6.8	警告	OpenCart	-	OpenCart の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-1610	2012-09-25 17:38	2010-02-1	Show	GitHub Exploit DB Packet Storm

229936	10	危険	IBM	-	IBM Lotus Notes におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-1608	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229937	6.8	警告	paysyspro	-	Joomla! 用の Webmoney Web Marchant Interfacce コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1607	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229938	4.3	警告	ncrypted	-	NCT Jobs Portal Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1606	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229939	7.5	危険	ncrypted	-	NCT Jobs Portal Script の isearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1605	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

229940	6.8	警告	ncrypted	-	NCT Jobs Portal Script の admin_login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-1604	2012-09-25 17:38	2010-04-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285791	-	vmware	esx esxi	Buffer overflow in the openwsman management service in VMware ESXi 3.5 and ESX 3.5 allows remote authenticated users to gain privileges via an "invalid Content-Length."	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2097	2018-10-12 05:39	2008-06-6	Show	GitHub Exploit DB Packet Storm

285792	-	vmware	ace_2 fusion vmware_player_2 vmware_workstation workstation	Heap-based buffer overflow in the VMware Host Guest File System (HGFS) in VMware Workstation 6 before 6.0.4 build 93057, VMware Player 2 before 2.0.4 build 93057, VMware ACE 2 before 2.0.2 build 9305…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2098	2018-10-12 05:39	2008-06-3	Show	GitHub Exploit DB Packet Storm

285793	-	vmware	ace_2 vmware_player_2 vmware_workstation workstation	Unspecified vulnerability in VMCI in VMware Workstation 6 before 6.0.4 build 93057, VMware Player 2 before 2.0.4 build 93057, and VMware ACE 2 before 2.0.2 build 93057 on Windows allows guest OS user…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2099	2018-10-12 05:39	2008-06-3	Show	GitHub Exploit DB Packet Storm

285794	-	vmware	esx	The VMware Consolidated Backup (VCB) command-line utilities in VMware ESX 3.0.1 through 3.0.3 and ESX 3.5 place a password on the command line, which allows local users to obtain sensitive informatio…	CWE-200 Information Exposure	CVE-2008-2101	2018-10-12 05:39	2008-09-3	Show	GitHub Exploit DB Packet Storm

285795	-	activision	call_of_duty_4	Call of Duty 4 (CoD4) 1.5 and earlier allows remote authenticated users to cause a denial of service (crash) via a type 7 stats packet, which triggers a memcpy with a negative value.	CWE-20 Improper Input Validation	CVE-2008-2106	2018-10-12 05:39	2008-05-8	Show	GitHub Exploit DB Packet Storm

285796	-	php	php	The GENERATE_SEED macro in PHP 4.x before 4.4.8 and 5.x before 5.2.5, when running on 32-bit systems, performs a multiplication using values that can produce a zero seed in rare circumstances, which …	CWE-189 Numeric Errors	CVE-2008-2107	2018-10-12 05:39	2008-05-8	Show	GitHub Exploit DB Packet Storm

285797	-	qto	qtofilemanager	Unrestricted file upload vulnerability in qtofm.php in QTOFileManager 1.0 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it via…	CWE-20 Improper Input Validation	CVE-2008-2110	2018-10-12 05:39	2008-05-8	Show	GitHub Exploit DB Packet Storm

285798	-	scriptsez	power_editor	Multiple cross-site scripting (XSS) vulnerabilities in editor.php in ScriptsEZ.net Power Editor 2.0 allow remote attackers to inject arbitrary web script or HTML via the (1) te and (2) dir parameters…	CWE-79 Cross-site Scripting	CVE-2008-2115	2018-10-12 05:39	2008-05-9	Show	GitHub Exploit DB Packet Storm

285799	-	scriptsez	power_editor	Multiple directory traversal vulnerabilities in editor.php in ScriptsEZ.net Power Editor 2.0 allow remote attackers to read arbitrary local files via a .. (dot dot) in the (1) te and (2) dir paramete…	CWE-22 Path Traversal	CVE-2008-2116	2018-10-12 05:39	2008-05-9	Show	GitHub Exploit DB Packet Storm

285800	-	project_alumni	project_alumni	Cross-site scripting (XSS) vulnerability in pages/news.page.inc in Project Alumni 1.0.9 allows remote attackers to inject arbitrary web script or HTML via the year parameter in a news action to index…	CWE-79 Cross-site Scripting	CVE-2008-2117	2018-10-12 05:39	2008-05-9	Show	GitHub Exploit DB Packet Storm