Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229941	6.8	警告	source workshop	-	Web Directory Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4091	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229942	7.5	危険	source workshop	-	Reciprocal Links Manager の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4086	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229943	4.4	警告	stephenjungels	-	Plait の plaiter における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4085	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229944	7.5	危険	stash	-	Stash の admin/login.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4081	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229945	6.8	警告	stash	-	Stash における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4080	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229946	7.5	危険	zanfi solutions	-	Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4074	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229947	7.5	危険	zanfi solutions	-	Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4073	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229948	7.5	危険	phsdev	-	phsBlog の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4072	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

229949	7.5	危険	texmedia	-	Million Pixel Script の tops_top.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4055	2012-12-20 18:52	2008-09-11	Show	GitHub Exploit DB Packet Storm

229950	4.6	警告	トレンドマイクロ	-	Trend Micro NSC モジュールの Trend Micro Personal Firewall サービスにおけるアクセス制限を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-3866	2012-12-20 18:52	2009-01-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292451	8.1	HIGH Network	vtiger	vtiger_crm	vtiger CRM 5.4.0 and earlier contain local file-include vulnerabilities in 'customerportal.php' which allows remote attackers to view files and execute local script code.	CWE-74 Injection	CVE-2013-3212	2024-11-21 10:53	2020-01-29	Show	GitHub Exploit DB Packet Storm

292452	9.8	CRITICAL Network	xnview	xnview	XnView 2.03 has an integer overflow vulnerability	CWE-190 Integer Overflow or Wraparound	CVE-2013-3493	2024-11-21 10:53	2020-01-28	Show	GitHub Exploit DB Packet Storm

292453	9.8	CRITICAL Network	xnview	xnview	XnView 2.03 has a stack-based buffer overflow vulnerability	CWE-787 Out-of-bounds Write	CVE-2013-3492	2024-11-21 10:53	2020-01-28	Show	GitHub Exploit DB Packet Storm

292454	9.6	CRITICAL Network	irfanview	flashpix_plugin	IrfanView FlashPix Plugin 4.3.4 0 has an Integer Overflow Vulnerability	CWE-190 Integer Overflow or Wraparound	CVE-2013-3486	2024-11-21 10:53	2020-01-28	Show	GitHub Exploit DB Packet Storm

292455	7.8	HIGH Local	xnview	xnview	Heap-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted RLE compressed layer in an XCF file.	CWE-787 Out-of-bounds Write	CVE-2013-3247	2024-11-21 10:53	2020-01-3	Show	GitHub Exploit DB Packet Storm

292456	7.8	HIGH Local	xnview	xnview	Stack-based buffer overflow in xnview.exe in XnView before 2.03 allows remote attackers to execute arbitrary code via a crafted image layer in an XCF file.	CWE-787 Out-of-bounds Write	CVE-2013-3246	2024-11-21 10:53	2020-01-3	Show	GitHub Exploit DB Packet Storm

292457	8.1	HIGH Network	supermicro citrix	smt_x9_firmware smt_x8_firmware netscaler_sdx_firmware netscaler_firmware netscaler_sd-wan_firmware	Intelligent Platform Management Interface (IPMI) with firmware for Supermicro X9 generation motherboards before SMT_X9_317 and firmware for Supermicro X8 generation motherboards before SMT X8 312 con…	CWE-798 Use of Hard-coded Credentials	CVE-2013-3619	2024-11-21 10:53	2020-01-3	Show	GitHub Exploit DB Packet Storm

292458	10.0	CRITICAL Network	grandstream	gxv3501_firmware gxv3504_firmware gxv3601_firmware gxv3601hd_firmware gxv3601ll_firmware gxv3611hd_firmware gxv3611ll_firmware gxv3615w_firmware gxv3615p_firmware gxv3651fh…	Grandstream GXV3501, GXV3504, GXV3601, GXV3601HD/LL, GXV3611HD/LL, GXV3615W/P, GXV3651FHD, GXV3662HD, GXV3615WP_HD, GXV3500, and possibly other camera models with firmware 1.0.4.11, have a hardcoded …	CWE-798 Use of Hard-coded Credentials	CVE-2013-3542	2024-11-21 10:53	2019-12-12	Show	GitHub Exploit DB Packet Storm

292459	7.5	HIGH Network	loftek	nexus_543_firmware	The Loftek Nexus 543 IP Camera allows remote attackers to obtain (1) IP addresses via a request to get_realip.cgi or (2) firmware versions (ui and system), timestamp, serial number, p2p port number, …	CWE-200 Information Exposure	CVE-2013-3314	2024-11-21 10:53	2019-11-22	Show	GitHub Exploit DB Packet Storm

292460	7.5	HIGH Network	loftek	nexus_543_firmware	The Loftek Nexus 543 IP Camera stores passwords in cleartext, which allows remote attackers to obtain sensitive information via an HTTP GET request to check_users.cgi. NOTE: cleartext passwords can a…	CWE-522 Insufficiently Protected Credentials	CVE-2013-3313	2024-11-21 10:53	2019-11-22	Show	GitHub Exploit DB Packet Storm