Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230011	7.5	危険	IBM	-	IBM Web Interface for Content Management における脆弱性	CWE-noinfo 情報不足	CVE-2010-1243	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230012	4.3	警告	IBM	-	IBM Web Interface for Content Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1242	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230013	5	警告	MoinMoin	-	MoinMoin における textcha の保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1238	2012-09-25 17:38	2010-04-5	Show	GitHub Exploit DB Packet Storm

230014	9.3	危険	マイクロソフト	-	Microsoft Virtual PC 2007 などの Virtual Machine Monitor におけるデータ漏洩保護メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1225	2012-09-25 17:38	2010-04-1	Show	GitHub Exploit DB Packet Storm

230015	4.3	警告	mm forum	-	TYPO3 用の mm_forum エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1218	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230016	4.3	警告	je form creator	-	Joomla! 用の JE Form Creator コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-1217	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230017	6.8	警告	notsopureedit	-	notsoPureEdit の templates/template.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2010-1216	2012-09-25 17:38	2010-03-30	Show	GitHub Exploit DB Packet Storm

230018	5	警告	Mozilla Foundation	-	Bugzilla の Search.pm におけるタイムトラッキング情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1204	2012-09-25 17:38	2010-06-24	Show	GitHub Exploit DB Packet Storm

230019	4.3	警告	ikiwiki	-	ikiwiki の htmlscrubber コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-1195	2012-09-25 17:38	2010-03-31	Show	GitHub Exploit DB Packet Storm

230020	4.3	警告	MediaWiki	-	MediaWiki の thumb.php におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1190	2012-09-25 17:38	2010-03-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285741	-	pancake	zina	Cross-site scripting (XSS) vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML via the l parameter.	CWE-79 Cross-site Scripting	CVE-2008-2494	2018-10-12 05:41	2008-05-29	Show	GitHub Exploit DB Packet Storm

285742	-	pancake	zina	Directory traversal vulnerability in index.php in Zina 1.0 RC3 allows remote attackers to have an unknown impact via a .. (dot dot) in the p parameter.	CWE-22 Path Traversal	CVE-2008-2495	2018-10-12 05:41	2008-05-29	Show	GitHub Exploit DB Packet Storm

285743	-	brown_bear_software	calcium	Cross-site scripting (XSS) vulnerability in Calcium40.pl in Brown Bear Software Calcium 3.10 and 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the CalendarName parameter in…	CWE-79 Cross-site Scripting	CVE-2008-2507	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285744	-	excuse_online	excuse_online	SQL injection vulnerability in pwd.asp in Excuse Online allows remote attackers to execute arbitrary SQL commands via the pID parameter.	CWE-89 SQL Injection	CVE-2008-2509	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285745	-	wordpress	upload_file_plugin	SQL injection vulnerability in wp-uploadfile.php in the Upload File plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the f_id parameter.	CWE-89 SQL Injection	CVE-2008-2510	2018-10-12 05:41	2008-05-30	Show	GitHub Exploit DB Packet Storm

285746	-	ca	internet_security_suite_plus_2008	Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create…	CWE-22 Path Traversal	CVE-2008-2511	2018-10-12 05:41	2008-06-3	Show	GitHub Exploit DB Packet Storm

285747	-	actualscripts	actualanalyzer_gold actualanalyzer_lite actualanalyzer_pro actualanalyzer_server	Cross-site scripting (XSS) vulnerability in view.php in ActualScripts ActualAnalyzer Server 8.37 and earlier, ActualAnalyzer Gold 7.74 and earlier, ActualAnalyzer Pro 6.95 and earlier, and ActualAnal…	CWE-79 Cross-site Scripting	CVE-2008-2527	2018-10-12 05:41	2008-06-4	Show	GitHub Exploit DB Packet Storm

285748	-	ca	etrust_secure_content_manager	Multiple stack-based buffer overflows in the HTTP Gateway Service (icihttp.exe) in CA eTrust Secure Content Manager 8.0 allow remote attackers to execute arbitrary code or cause a denial of service v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2541	2018-10-12 05:41	2008-06-5	Show	GitHub Exploit DB Packet Storm

285749	-	nasa_ames_research_center	bigview	Stack-based buffer overflow in the getline function in Ppm/ppm.C in NASA Ames Research Center BigView 1.8 allows user-assisted remote attackers to execute arbitrary code via a crafted PNM file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2542	2018-10-12 05:41	2008-06-6	Show	GitHub Exploit DB Packet Storm

285750	-	microsoft	windows_installer	Stack-based buffer overflow in msiexec.exe 3.1.4000.1823 and 4.5.6001.22159 in Microsoft Windows Installer allows context-dependent attackers to execute arbitrary code via a long GUID value for the /…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-2547	2018-10-12 05:41	2008-06-5	Show	GitHub Exploit DB Packet Storm