Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229971 4.3 警告 TYPO3 Association - TYPO3 用の KJ Image Lightbox 2 エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2490 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229972 7.5 危険 TYPO3 Association - TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2489 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229973 6.8 警告 xomol - Xomol CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2484 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229974 6.8 警告 xomol - Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2483 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229975 10 危険 phpraider - phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2481 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229976 10 危険 plusphp - plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2480 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
229977 7.5 危険 vBulletin Solutions, Inc. - vBulletin Gold の faq.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2460 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
229978 7.5 危険 phpclassifiedsscript - PHP Classifieds Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2453 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
229979 4.3 警告 TYPO3 Association - TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2452 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
229980 7.5 危険 TYPO3 Association - TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2451 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292841 - oracle
sun 		jre
jdk 		The color management (CMM) functionality in the 2D component in Oracle Java SE 7 Update 15 and earlier, 6 Update 41 and earlier, and 5.0 Update 40 and earlier allows remote attackers to execute arbit… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-1493 2024-11-21 10:49 2013-03-6 Show GitHub Exploit DB Packet Storm
292842 - mit
opensuse 		kerberos_5
opensuse 		The pkinit_check_kdc_pkid function in plugins/preauth/pkinit/pkinit_crypto_openssl.c in the PKINIT implementation in the Key Distribution Center (KDC) in MIT Kerberos 5 (aka krb5) before 1.10.4 and 1… CWE-476
 NULL Pointer Dereference 		CVE-2013-1415 2024-11-21 10:49 2013-03-5 Show GitHub Exploit DB Packet Storm
292843 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE 7 Update 13 and earlier and 6 Update 39 and earlier allows remote attackers to affect confidentiality, integrity,… NVD-CWE-noinfo
CVE-2013-1487 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
292844 - oracle
sun 		jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier, 6 Update 39 and earlier, and 5.0 Update 39 and earlier allows remote attackers to … NVD-CWE-noinfo
CVE-2013-1486 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
292845 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect integrity via unknown vectors related to Librarie… NVD-CWE-noinfo
CVE-2013-1485 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
292846 - oracle jre
jdk 		Unspecified vulnerability in the Java Runtime Environment (JRE) component in Oracle Java SE 7 Update 13 and earlier allows remote attackers to affect confidentiality, integrity, and availability via … NVD-CWE-noinfo
CVE-2013-1484 2024-11-21 10:49 2013-02-21 Show GitHub Exploit DB Packet Storm
292847 - vmware vcenter_server
virtualcenter
vsphere_client
vi-client
esxi
esx 		VMware vCenter Server 4.0 before Update 4b and 4.1 before Update 3a, VMware VirtualCenter 2.5, VMware vSphere Client 4.0 before Update 4b and 4.1 before Update 3a, VMware VI-Client 2.5, VMware ESXi 3… CWE-287
Improper Authentication 		CVE-2013-1405 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
292848 - digitiliti digilibe DigiLIBE 3.4 and possibly other versions sends a redirect but does not exit, which allows remote attackers to obtain sensitive configuration information via a direct request to configuration/general_… CWE-200
Information Exposure 		CVE-2013-1402 2024-11-21 10:49 2013-02-15 Show GitHub Exploit DB Packet Storm
292849 - microsoft windows_xp Object Linking and Embedding (OLE) Automation in Microsoft Windows XP SP3 does not properly allocate memory, which allows remote attackers to execute arbitrary code via a crafted RTF document, aka "O… CWE-399
 Resource Management Errors 		CVE-2013-1313 2024-11-21 10:49 2013-02-13 Show GitHub Exploit DB Packet Storm
292850 - microsoft windows_server_2008
windows_server_2012 		The NFS server in Microsoft Windows Server 2008 R2 and R2 SP1 and Server 2012 allows remote attackers to cause a denial of service (NULL pointer dereference and reboot) via an attempted renaming of a… CWE-399
 Resource Management Errors 		CVE-2013-1281 2024-11-21 10:49 2013-02-13 Show GitHub Exploit DB Packet Storm