Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230071 7.2 危険 サン・マイクロシステムズ - IOCTL 用の METHOD_NEITHER 通信メソッドで使用されている Sun xVM VirtualBox における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3431 2012-12-20 18:52 2008-08-5 Show GitHub Exploit DB Packet Storm
230072 6.5 警告 PhpFreeChat - phpFreeChat におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-3428 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230073 6.5 警告 サン・マイクロシステムズ - Sun N1 SPS の Sun Java System Web Server プラグインにおける Web サーバへの管理アクセス権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-3425 2012-12-20 18:52 2008-07-30 Show GitHub Exploit DB Packet Storm
230074 7.5 危険 willo - Mobius for Mimsy XG における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3420 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230075 7.5 危険 willo - TriO の browse.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3418 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230076 7.5 危険 siteadmin - SiteAdmin の line2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3414 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230077 5 警告 phplinkat - phpLinkat における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-3407 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230078 7.5 危険 phplinkat - TribunaLibre の ftag.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3406 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230079 4.3 警告 xrms - XRMS CRM における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3400 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
230080 6.8 警告 xrms - XRMS CRM の activities/workflow-activities.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3399 2012-12-20 18:52 2008-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292161 - ovislink airlive_wl2600cam cgi-bin/operator/param in AirLive WL2600CAM and possibly other camera models allows remote attackers to obtain the administrator password via a list action. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3686 2024-11-21 10:54 2013-10-12 Show GitHub Exploit DB Packet Storm
292162 - microsoft office_web_apps
sharepoint_server 		Microsoft SharePoint Server 2007 SP3 and 2010 SP1 and SP2 allows remote attackers to conduct clickjacking attacks via a crafted web page, aka "Parameter Injection Vulnerability." CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-3895 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292163 - microsoft windows_server_2008
windows_rt
windows_xp
windows_8
windows_7
windows_server_2003
windows_vista
windows_server_2012 		The kernel-mode drivers in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows Server 2012, and Windows… CWE-94
Code Injection 		CVE-2013-3894 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292164 - microsoft word Microsoft Word 2007 SP3 and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Memory Corruption Vulnerability." CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3892 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292165 - microsoft word Microsoft Word 2003 SP3 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Memory Corruption Vulnerability." CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3891 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292166 - microsoft excel_viewer
office_compatibility_pack
excel 		Microsoft Excel 2007 SP3, Excel Viewer, and Office Compatibility Pack SP3 allow remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Excel Memory Corruption Vulner… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3890 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292167 - microsoft excel_viewer
excel
office
office_2013_rt
office_compatibility_pack
office_web_apps
sharepoint_server 		Microsoft Excel 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office 2007 SP3, 2010 SP1 and SP2, 2013, and 2013 RT; Office for Mac 2011; Excel Viewer; Office Compatibility Pack SP3; and Excel Servic… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3889 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292168 - microsoft windows_server_2008
windows_7
windows_vista 		dxgkrnl.sys in the kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, and Windows 7 SP1 allows local users to gain privileges via a crafted application, aka "Dire… CWE-399
 Resource Management Errors 		CVE-2013-3888 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292169 - microsoft internet_explorer Microsoft Internet Explorer 9 and 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruptio… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3886 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm
292170 - microsoft internet_explorer Microsoft Internet Explorer 10 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vuln… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-3885 2024-11-21 10:54 2013-10-9 Show GitHub Exploit DB Packet Storm