Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229941	7.5	危険	realm project	-	Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2679	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229942	7.5	危険	telephone	-	Telephone Directory 2008 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2678	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229943	4.3	警告	telephone	-	Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2677	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229944	4.3	警告	softcomplex	-	PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2675	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229945	7.5	危険	Powie	-	Powie pNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2673	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229946	7.5	危険	y-blog	-	yBlog における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2669	2012-12-20 18:52	2008-06-11	Show	GitHub Exploit DB Packet Storm

229947	4.3	警告	y-blog	-	yBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2668	2012-12-20 18:52	2008-06-11	Show	GitHub Exploit DB Packet Storm

229948	7.5	危険	smeweb	-	SMEWeb の catalog.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2652	2012-12-20 18:52	2008-06-10	Show	GitHub Exploit DB Packet Storm

229949	4.3	警告	smeweb	-	SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2644	2012-12-20 18:52	2008-06-10	Show	GitHub Exploit DB Packet Storm

229950	7.5	危険	theflashblog	-	FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2572	2012-12-20 18:52	2008-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292841	-	oracle sun	jre jdk	The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbit…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-1493	2024-11-21 10:49	2013-03-6	Show	GitHub Exploit DB Packet Storm

292842	-	mit opensuse	kerberos_5 opensuse	The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1…	CWE-476 NULL Pointer Dereference	CVE-2013-1415	2024-11-21 10:49	2013-03-5	Show	GitHub Exploit DB Packet Storm

292843	-	oracle sun	jre jdk	Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity,…	NVD-CWE-noinfo	CVE-2013-1487	2024-11-21 10:49	2013-02-21	Show	GitHub Exploit DB Packet Storm

292844	-	oracle sun	jre jdk	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to …	NVD-CWE-noinfo	CVE-2013-1486	2024-11-21 10:49	2013-02-21	Show	GitHub Exploit DB Packet Storm

292845	-	oracle	jre jdk	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Librarie…	NVD-CWE-noinfo	CVE-2013-1485	2024-11-21 10:49	2013-02-21	Show	GitHub Exploit DB Packet Storm

292846	-	oracle	jre jdk	Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via …	NVD-CWE-noinfo	CVE-2013-1484	2024-11-21 10:49	2013-02-21	Show	GitHub Exploit DB Packet Storm

292847	-	vmware	vcenter_server virtualcenter vsphere_client vi-client esxi esx	VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3…	CWE-287 Improper Authentication	CVE-2013-1405	2024-11-21 10:49	2013-02-15	Show	GitHub Exploit DB Packet Storm

292848	-	digitiliti	digilibe	DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_…	CWE-200 Information Exposure	CVE-2013-1402	2024-11-21 10:49	2013-02-15	Show	GitHub Exploit DB Packet Storm

292849	-	microsoft	windows_xp	Object Linking and Embedding (OLE) Automation in Microsoft Windows XP SP3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted RTF document, aka "O…	CWE-399 Resource Management Errors	CVE-2013-1313	2024-11-21 10:49	2013-02-13	Show	GitHub Exploit DB Packet Storm

292850	-	microsoft	windows_server_2008 windows_server_2012	The NFS server in Microsoft Windows Server 2008 R2 and R2 SP1 and Server 2012 allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via an attempted renaming of a…	CWE-399 Resource Management Errors	CVE-2013-1281	2024-11-21 10:49	2013-02-13	Show	GitHub Exploit DB Packet Storm