Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230281 7.5 危険 zero cms - Zero CMS における意図したアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0233 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230282 7.5 危険 zero cms - Zero CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0232 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230283 7.5 危険 tuned studios - Tuned Studios Subwoofer などの Web ページテンプレートにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0231 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230284 6.4 警告 Xine - xine-lib の input/libreal/rmff.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0225 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230285 7.5 危険 runcms - RunCMS の Newbb_plus モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0224 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230286 7.5 危険 WordPress.org - WordPress 用の Wp-FileManager プラグインにおける任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0222 2012-12-20 18:34 2008-01-10 Show GitHub Exploit DB Packet Storm
230287 6.4 警告 uebimiau - Uebimiau Webmail における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-0210 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
230288 5.8 警告 snitz forums 2000 - Snitz Forums 2000 の Forums/login.asp におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0209 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
230289 4.3 警告 snitz forums 2000 - Snitz Forums 2000 の login.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0208 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
230290 4.3 警告 pro search - PRO-Search におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0207 2012-12-20 18:34 2008-01-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292371 7.5 HIGH
Network 		socks5_project socks5 The RemoteAddr and LocalAddr methods on the returned net.Conn may call themselves, leading to an infinite loop which will crash the program due to a stack overflow. CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2013-10005 2024-11-21 10:48 2022-12-28 Show GitHub Exploit DB Packet Storm
292372 9.8 CRITICAL
Network 		telecomsoftware samwin_contact_center
samwin_agent 		A vulnerability classified as critical was found in Telecommunication Software SAMwin Contact Center Suite 5.1. This vulnerability affects the function passwordScramble in the library SAMwinLIBVB.dll… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2013-10004 2024-11-21 10:48 2022-05-25 Show GitHub Exploit DB Packet Storm
292373 9.8 CRITICAL
Network 		telecomsoftware samwin_contact_center
samwin_agent 		A vulnerability classified as critical has been found in Telecommunication Software SAMwin Contact Center Suite 5.1. This affects the function getCurrentDBVersion in the library SAMwinLIBVB.dll of th… CWE-89
SQL Injection 		CVE-2013-10003 2024-11-21 10:48 2022-05-25 Show GitHub Exploit DB Packet Storm
292374 9.1 CRITICAL
Network 		telecomsoftware samwin_contact_center
samwin_agent 		A vulnerability was found in Telecommunication Software SAMwin Contact Center Suite 5.1. It has been rated as critical. Affected by this issue is the function getCurrentDBVersion in the library SAMwi… CWE-798
 Use of Hard-coded Credentials 		CVE-2013-10002 2024-11-21 10:48 2022-05-25 Show GitHub Exploit DB Packet Storm
292375 5.9 MEDIUM
Network 		htc mail A vulnerability was found in HTC One/Sense 4.x. It has been rated as problematic. Affected by this issue is the certification validation of the mail client. An exploit has been disclosed to the publi… CWE-295
Improper Certificate Validation  		CVE-2013-10001 2024-11-21 10:48 2022-05-17 Show GitHub Exploit DB Packet Storm
292376 6.5 MEDIUM
Network 		canonical unity-firefox-extension
ubuntu_linux 		The unity-firefox-extension package could be tricked into destroying the Unity webapps context, causing Firefox to crash. This could be achieved by spinning the event loop inside the webapps initiali… CWE-404
 Improper Resource Shutdown or Release 		CVE-2013-1054 2024-11-21 10:48 2021-04-8 Show GitHub Exploit DB Packet Storm
292377 4.3 MEDIUM
Network 		canonical unity-firefox-extension
ubuntu_linux 		The unity-firefox-extension package could be tricked into dropping a C callback which was still in use, which Firefox would then free, causing Firefox to crash. This could be achieved by adding an ac… CWE-404
 Improper Resource Shutdown or Release 		CVE-2013-1055 2024-11-21 10:48 2021-04-8 Show GitHub Exploit DB Packet Storm
292378 5.5 MEDIUM
Local 		canonical remote-login-service In crypt.c of remote-login-service, the cryptographic algorithm used to cache usernames and passwords is insecure. An attacker could use this vulnerability to recover usernames and passwords from the… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2013-1053 2024-11-21 10:48 2021-01-14 Show GitHub Exploit DB Packet Storm
292379 9.8 CRITICAL
Network 		polarbear_cms_project polarbear_cms A PHP File Upload Vulnerability exists in PolarBear CMS 2.5 via upload.php, which could let a malicious user execute arbitrary code. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2013-0803 2024-11-21 10:48 2020-02-12 Show GitHub Exploit DB Packet Storm
292380 6.1 MEDIUM
Network 		chamilo chamilo Chamilo 1.9.4 has XSS due to improper validation of user-supplied input by the chat.php script. CWE-79
Cross-site Scripting 		CVE-2013-0739 2024-11-21 10:48 2020-01-30 Show GitHub Exploit DB Packet Storm