Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230641	7.5	危険	zomp	-	Zomplog における管理アクセス権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2349	2012-12-20 18:52	2008-05-20	Show	GitHub Exploit DB Packet Storm

230642	10	危険	TYPO3 Association	-	TYPO3 用の air_filemanager エクステンションにおける任意の PHP コードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-2345	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

230643	4.3	警告	TYPO3 Association	-	TYPO3 用の air_filemanager エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2344	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

230644	7.5	危険	turnkey web tools	-	Turnkey Web Tools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2339	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

230645	4.3	警告	Vastal I-Tech & Co.	-	Vastal I-Tech phpVID の search_results.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2335	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

230646	7.5	危険	phpway	-	Kostenloses Linkmanagementscript における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2301	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

230647	7.5	危険	加藤和良	-	Web Slider の Admin.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2298	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

230648	7.5	危険	roticv	-	Rantx の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2297	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

230649	7.5	危険	rgboard	-	Rgboard の include/bbs.lib.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2296	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

230650	4.3	警告	rgboard	-	Rgboard の rg_search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2295	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
294271	-	hp	system_management_homepage	Cross-site scripting (XSS) vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2013-2361	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294272	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20…	NVD-CWE-noinfo	CVE-2013-2360	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294273	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20…	NVD-CWE-noinfo	CVE-2013-2359	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294274	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20…	NVD-CWE-noinfo	CVE-2013-2358	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294275	-	hp	system_management_homepage	Unspecified vulnerability in HP System Management Homepage (SMH) before 7.2.1 allows remote authenticated users to cause a denial of service via unknown vectors, a different vulnerability than CVE-20…	NVD-CWE-noinfo	CVE-2013-2357	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294276	-	hp	system_management_homepage	HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to obtain sensitive information via unspecified vectors, a different vulnerability than CVE-2013-2363.	NVD-CWE-noinfo	CVE-2013-2356	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294277	-	hp	system_management_homepage	HP System Management Homepage (SMH) before 7.2.1 allows remote attackers to bypass intended access restrictions and obtain sensitive information via unspecified vectors, a different vulnerability tha…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2013-2355	2024-11-21 10:51	2013-07-22	Show	GitHub Exploit DB Packet Storm

294278	-	apache	struts	Multiple open redirect vulnerabilities in Apache Struts 2.0.0 through 2.3.15 allow remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in a parameter usin…	CWE-20 Improper Input Validation	CVE-2013-2248	2024-11-21 10:51	2013-07-20	Show	GitHub Exploit DB Packet Storm

294279	-	apache	struts	Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted value that contains both "${}" and "%{}" sequences, which causes the OGNL code to b…	CWE-94 Code Injection	CVE-2013-2135	2024-11-21 10:51	2013-07-17	Show	GitHub Exploit DB Packet Storm

294280	-	apache	struts	Apache Struts 2 before 2.3.14.3 allows remote attackers to execute arbitrary OGNL code via a request with a crafted action name that is not properly handled during wildcard matching, a different vuln…	CWE-94 Code Injection	CVE-2013-2134	2024-11-21 10:51	2013-07-17	Show	GitHub Exploit DB Packet Storm