Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230321	6.4	警告	uebimiau	-	Uebimiau Webmail の error.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0140	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230322	7.5	危険	snetworks	-	SNETWORKS PHP CLASSIFIEDS の config.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0137	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230323	5	警告	snitz forums 2000	-	Snitz Forums 2000 における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0136	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230324	5	警告	snitz forums 2000	-	Snitz Forums 2000 におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0135	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230325	4.3	警告	snitz forums 2000	-	Snitz Forums 2000 の Forums/setup.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0134	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230326	7.5	危険	thomas perez	-	Tribisur における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0133	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230327	5	警告	pragma systems	-	Pragma FortressSSH におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-0132	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230328	6.8	警告	siteatschool	-	Site@School の starnet/addons/slideshow_full.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0129	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

230329	4.3	警告	php-stats	-	Michael Wagner phpstats の phpstats.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0125	2012-12-20 18:34	2008-03-24	Show	GitHub Exploit DB Packet Storm

230330	4.3	警告	s9y	-	S9Y におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0124	2012-12-20 18:34	2008-02-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
292631	-	cisco	unity_express_software unity_express	Multiple cross-site request forgery (CSRF) vulnerabilities on the Cisco Unity Express with software before 8.0 allow remote attackers to hijack the authentication of unspecified victims via unknown v…	CWE-352 Origin Validation Error	CVE-2013-1120	2024-11-21 10:48	2013-02-6	Show	GitHub Exploit DB Packet Storm

292632	-	cisco	webex_social	The search function in Cisco Webex Social (formerly Cisco Quad) allows remote authenticated users to read files via unspecified parameters, aka Bug ID CSCud40235.	CWE-200 Information Exposure	CVE-2013-1107	2024-11-21 10:48	2013-02-6	Show	GitHub Exploit DB Packet Storm

292633	-	emc	alphastor	Buffer overflow in Drive Control Program (DCP) in EMC AlphaStor 4.0 before build 814 allows remote attackers to execute arbitrary code via vectors involving a new device name.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0930	2024-11-21 10:48	2013-02-1	Show	GitHub Exploit DB Packet Storm

292634	-	cisco	unified_communications_domain_manager	Cross-site scripting (XSS) vulnerability in Cisco Unified Communications Domain Manager allows remote attackers to inject arbitrary web script or HTML via a crafted parameter value, aka Bug ID CSCue2…	CWE-79 Cross-site Scripting	CVE-2013-1113	2024-11-21 10:48	2013-01-31	Show	GitHub Exploit DB Packet Storm

292635	-	cisco	carrier_routing_system	Cisco Carrier Routing System (CRS) allows remote attackers to cause a denial of service (packet loss) via short malformed packets that trigger inefficient processing, aka Bug ID CSCud79136.	CWE-20 Improper Input Validation	CVE-2013-1112	2024-11-21 10:48	2013-01-31	Show	GitHub Exploit DB Packet Storm

292636	-	apple	iphone_os	StoreKit in Apple iOS before 6.1 does not properly handle the disabling of JavaScript within the preferences configuration of Mobile Safari, which allows remote attackers to bypass intended access re…	NVD-CWE-Other	CVE-2013-0974	2024-11-21 10:48	2013-01-29	Show	GitHub Exploit DB Packet Storm

292637	-	apple	iphone_os	WebKit, as used in Apple iOS before 6.1, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site, a different v…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-0968	2024-11-21 10:48	2013-01-29	Show	GitHub Exploit DB Packet Storm

292638	-	apple	tvos iphone_os	The kernel in Apple iOS before 6.1 and Apple TV before 5.2 does not properly validate copyin and copyout arguments, which allows local users to bypass intended pointer restrictions and access locatio…	CWE-20 Improper Input Validation	CVE-2013-0964	2024-11-21 10:48	2013-01-29	Show	GitHub Exploit DB Packet Storm

292639	-	apple	iphone_os	Identity Services in Apple iOS before 6.1 does not properly handle validation failures of AppleID certificates, which might allow physically proximate attackers to bypass authentication by leveraging…	CWE-20 Improper Input Validation	CVE-2013-0963	2024-11-21 10:48	2013-01-29	Show	GitHub Exploit DB Packet Storm

292640	-	apple	iphone_os	Cross-site scripting (XSS) vulnerability in WebKit in Apple iOS before 6.1 allows user-assisted remote attackers to inject arbitrary web script or HTML via crafted content that is not properly handle…	CWE-79 Cross-site Scripting	CVE-2013-0962	2024-11-21 10:48	2013-01-29	Show	GitHub Exploit DB Packet Storm