Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230341 3.6 注意 scribe - Scribe の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0822 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230342 3.6 注意 plutostatus - PlutoStatus Locator の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0819 2012-12-20 18:34 2008-02-19 Show GitHub Exploit DB Packet Storm
230343 6.4 警告 truc - TRUC の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0814 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230344 5 警告 xpweb - XPWeb の Download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0813 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230345 9.3 危険 reality - PHPizabi の image.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0805 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230346 6.8 警告 Thecus - Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0804 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
230347 7.5 危険 VWar - VWar の calendar.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0753 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230348 10 危険 ソニー・コンピュータエンタテインメント - Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0748 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230349 7.5 危険 PreProject.com - PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0744 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
230350 7.5 危険 powerscripts - PowerScripts PowerNews におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0742 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293681 - linux linux_kernel The Xen netback functionality in the Linux kernel before 3.7.8 allows guest OS users to cause a denial of service (loop) by triggering ring pointer corruption. CWE-20
 Improper Input Validation  		CVE-2013-0216 2024-11-21 10:47 2013-02-18 Show GitHub Exploit DB Packet Storm
293682 - pidgin pidgin upnp.c in libpurple in Pidgin before 2.10.7 does not properly terminate long strings in UPnP responses, which allows remote attackers to cause a denial of service (application crash) by leveraging ac… NVD-CWE-noinfo
CVE-2013-0274 2024-11-21 10:47 2013-02-17 Show GitHub Exploit DB Packet Storm
293683 - pidgin pidgin sametime.c in the Sametime protocol plugin in libpurple in Pidgin before 2.10.7 does not properly terminate long user IDs, which allows remote servers to cause a denial of service (application crash)… NVD-CWE-noinfo
CVE-2013-0273 2024-11-21 10:47 2013-02-17 Show GitHub Exploit DB Packet Storm
293684 - pidgin pidgin Buffer overflow in http.c in the MXit protocol plugin in libpurple in Pidgin before 2.10.7 allows remote servers to execute arbitrary code via a long HTTP header. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0272 2024-11-21 10:47 2013-02-17 Show GitHub Exploit DB Packet Storm
293685 - pidgin pidgin The MXit protocol plugin in libpurple in Pidgin before 2.10.7 might allow remote attackers to create or overwrite files via a crafted (1) mxit or (2) mxit/imagestrips pathname. NVD-CWE-noinfo
CVE-2013-0271 2024-11-21 10:47 2013-02-17 Show GitHub Exploit DB Packet Storm
293686 - schneider-electric accutech_manager Heap-based buffer overflow in RFManagerService.exe in Schneider Electric Accutech Manager 2.00.1 and earlier allows remote attackers to execute arbitrary code via a crafted HTTP request. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0658 2024-11-21 10:47 2013-02-15 Show GitHub Exploit DB Packet Storm
293687 - adobe shockwave_player Stack-based buffer overflow in Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0636 2024-11-21 10:47 2013-02-14 Show GitHub Exploit DB Packet Storm
293688 - adobe shockwave_player Adobe Shockwave Player before 12.0.0.112 allows attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-0635 2024-11-21 10:47 2013-02-14 Show GitHub Exploit DB Packet Storm
293689 - openstack
canonical 		essex
folsom
ubuntu_linux 		The boot-from-volume feature in OpenStack Compute (Nova) Folsom and Essex, when using nova-volumes, allows remote authenticated users to boot from other users' volumes via a volume id in the block_de… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2013-0208 2024-11-21 10:47 2013-02-14 Show GitHub Exploit DB Packet Storm
293690 - rubyonrails ruby_on_rails
rails 		ActiveRecord in Ruby on Rails before 2.3.17 and 3.x before 3.1.0 allows remote attackers to cause a denial of service or execute arbitrary code via crafted serialized attributes that cause the +seria… NVD-CWE-noinfo
CVE-2013-0277 2024-11-21 10:47 2013-02-13 Show GitHub Exploit DB Packet Storm