Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230041	5	警告	Pligg PHPNUKE	-	Pligg などの製品の CAPTCHA 実装における CAPTCHA テストを通過される脆弱性	CWE-189 CWE-264	CVE-2008-3573	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230042	4.3	警告	Pligg	-	Pligg の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3572	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230043	7.8	危険	Xerox	-	Xerox Phaser におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3571	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230044	7.5	危険	unak	-	UNAK-CMS の fckeditor/editor/filemanager/browser/default/connectors/php/connector.php における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3568	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230045	4.3	警告	ZoneO-soft	-	ZoneO-soft freeForum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3566	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230046	7.5	危険	Plogger Project	-	Plogger における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3563	2012-12-20 18:52	2008-07-29	Show	GitHub Exploit DB Packet Storm

230047	6.8	警告	powergap	-	Powergap Shopsystem の s03.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3561	2012-12-20 18:52	2008-08-10	Show	GitHub Exploit DB Packet Storm

230048	6.8	警告	wsnlinks	-	WSN Forum などの index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3555	2012-12-20 18:52	2008-08-8	Show	GitHub Exploit DB Packet Storm

230049	10	危険	サン・マイクロシステムズ	-	Nokia Series 40 3rd エディションデバイスにおける任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3553	2012-12-20 18:52	2008-08-8	Show	GitHub Exploit DB Packet Storm

230050	10	危険	サン・マイクロシステムズ	-	Sun Wireless Toolkit で同梱されている Sun Java Platform Micro Edition における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-3551	2012-12-20 18:52	2008-08-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
293171	-	emc	rsa_authentication_agent	EMC RSA Authentication Agent for PAM 7.0 before 7.0.2.1 enforces the maximum number of login attempts within the PAM-enabled application codebase, instead of within the Agent codebase, which makes it…	CWE-255 Credentials Management	CVE-2013-3271	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293172	-	searchblox	searchblox	Directory traversal vulnerability in servlet/CreateTemplateServlet in SearchBlox before 7.5 build 1 allows remote attackers to overwrite arbitrary files via a .. (dot dot) in the name parameter.	CWE-22 Path Traversal	CVE-2013-3598	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293173	-	searchblox	searchblox	servlet/CollectionListServlet in SearchBlox before 7.5 build 1 allows remote attackers to read usernames and passwords via a getList action.	CWE-200 Information Exposure	CVE-2013-3597	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293174	-	searchblox	searchblox	Unrestricted file upload vulnerability in admin/uploadImage.html in SearchBlox before 7.5 build 1 allows remote attackers to execute arbitrary code by uploading an executable file with the image/jpeg…	NVD-CWE-Other	CVE-2013-3590	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293175	-	samsung	smart_viewer dvr	Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie.	CWE-287 Improper Authentication	CVE-2013-3586	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293176	-	samsung	smart_viewer	Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving (1) direct access to a file …	CWE-255 Credentials Management	CVE-2013-3585	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293177	-	corporater	epm_suite	Cross-site scripting (XSS) vulnerability in Corporater EPM Suite allows remote attackers to inject arbitrary web script or HTML via the customerId parameter to an unspecified component.	CWE-79 Cross-site Scripting	CVE-2013-3584	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293178	-	corporater	epm_suite	Cross-site request forgery (CSRF) vulnerability in saveProperties.html in Corporater EPM Suite allows remote attackers to hijack the authentication of arbitrary users for requests that change passwor…	CWE-352 Origin Validation Error	CVE-2013-3583	2024-11-21 10:53	2013-08-28	Show	GitHub Exploit DB Packet Storm

293179	-	cisco	unified_communications_manager	Buffer overflow in Cisco Unified Communications Manager (Unified CM) 7.1(x) before 7.1(5b)su6, 8.5(x) before 8.5(1)su6, 8.6(x) before 8.6(2a)su3, and 9.x before 9.1(2) allows remote authenticated use…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-3462	2024-11-21 10:53	2013-08-25	Show	GitHub Exploit DB Packet Storm

293180	-	cisco	unified_communications_manager	Cisco Unified Communications Manager (Unified CM) 8.5(x) and 8.6(x) before 8.6(2a)su3 and 9.x before 9.1(1) does not properly restrict the rate of SIP packets, which allows remote attackers to cause …	CWE-399 Resource Management Errors	CVE-2013-3461	2024-11-21 10:53	2013-08-25	Show	GitHub Exploit DB Packet Storm