Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230721	6.8	警告	jvitals	-	Joomla! 用の Agora コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-3053	2012-09-25 17:27	2009-09-3	Show	GitHub Exploit DB Packet Storm

230722	10	危険	htmldoc	-	HTMLDOC の util.cxx の set_page_size におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-3050	2012-09-25 17:27	2009-09-2	Show	GitHub Exploit DB Packet Storm

230723	4.9	警告	Linux	-	Linux kernel の drivers/char/tty_ldisc.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-3043	2012-09-25 17:27	2009-08-25	Show	GitHub Exploit DB Packet Storm

230724	7.5	危険	OCS Inventory Team	-	OCS Inventory NG の machine.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3042	2012-09-25 17:27	2009-09-1	Show	GitHub Exploit DB Packet Storm

230725	7.5	危険	OCS Inventory Team	-	OCS Inventory NG における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-3040	2012-09-25 17:27	2009-09-1	Show	GitHub Exploit DB Packet Storm

230726	4.3	警告	io-socket-ssl	-	IO-Socket-SSL の証明書チェック機能における証明書のホスト名チェックを回避される脆弱性	CWE-310 暗号の問題	CVE-2009-3024	2012-09-25 17:27	2009-08-31	Show	GitHub Exploit DB Packet Storm

230727	7.1	危険	マイクロソフト	-	Microsoft Windows Server 2003 SP2 の win32k.sys におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-3020	2012-09-25 17:27	2009-08-31	Show	GitHub Exploit DB Packet Storm

230728	5	警告	マイクロソフト	-	Microsoft Internet Explorer 6 などにおけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-3019	2012-09-25 17:27	2009-08-31	Show	GitHub Exploit DB Packet Storm

230729	4.3	警告	Maxthon	-	Ultramode を伴う Maxthon Browser におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3018	2012-09-25 17:27	2009-08-31	Show	GitHub Exploit DB Packet Storm

230730	4.3	警告	orcabrowser	-	Orca Browser におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-3017	2012-09-25 17:27	2009-08-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
298671	-	typo3	wt_gallery	Cross-site scripting (XSS) vulnerability in the WT Gallery (aka wt_gallery) extension 2.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vector…	CWE-79 Cross-site Scripting	CVE-2008-2526	2017-08-8 10:31	2008-06-4	Show	GitHub Exploit DB Packet Storm

298672	-	citrix	access_gateway	Unspecified vulnerability in Citrix Access Gateway Standard Edition 4.5.7 and earlier and Advanced Edition 4.5 HF2 and earlier allows attackers to bypass authentication and gain "access to network re…	NVD-CWE-noinfo CWE-287 Improper Authentication	CVE-2008-2528	2017-08-8 10:31	2008-06-4	Show	GitHub Exploit DB Packet Storm

298673	-	buildanichestore3	bans	Cross-site scripting (XSS) vulnerability in the search script in Build A Niche Store (BANS) 3.0 allows remote attackers to inject arbitrary web script or HTML via the q parameter.	CWE-352 Origin Validation Error	CVE-2008-2531	2017-08-8 10:31	2008-06-4	Show	GitHub Exploit DB Packet Storm

298674	-	sun	cluster	The Sun Cluster Global File System in Sun Cluster 3.1 on Sun Solaris 8 through 10, when an underlying ufs filesystem is used, might allow local users to read data from arbitrary deleted files, or cor…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-2539	2017-08-8 10:31	2008-06-4	Show	GitHub Exploit DB Packet Storm

298675	-	skype_technologies	skype	Skype 3.6.0.248, and other versions before 3.8.0.139, uses a case-sensitive comparison when checking for dangerous extensions, which allows user-assisted remote attackers to bypass warning dialogs an…	CWE-20 Improper Input Validation	CVE-2008-2545	2017-08-8 10:31	2008-06-7	Show	GitHub Exploit DB Packet Storm

298676	-	ibm	websphere_application_server	Unspecified vulnerability in the Web Services Security component in IBM WebSphere Application Server (WAS) 6.1 before 6.1.0.17 has unknown impact and attack vectors related to an attribute in the SOA…	NVD-CWE-noinfo	CVE-2008-2550	2017-08-8 10:31	2008-06-5	Show	GitHub Exploit DB Packet Storm

298677	-	slashcode.com	slash	Cross-site scripting (XSS) vulnerability in Slashdot Like Automated Storytelling Homepage (Slash) (aka Slashcode) R_2_5_0_94 and earlier allows remote attackers to inject arbitrary web script or HTML…	CWE-79 Cross-site Scripting	CVE-2008-2553	2017-08-8 10:31	2008-06-6	Show	GitHub Exploit DB Packet Storm

298678	-	damian_frizza	borland_interbase	Integer overflow in Borland Interbase 2007 SP2 (8.1.0.256) allows remote attackers to execute arbitrary code via a malformed packet to TCP port 3050, which triggers a stack-based buffer overflow. NO…	CWE-189 Numeric Errors	CVE-2008-2559	2017-08-8 10:31	2008-06-6	Show	GitHub Exploit DB Packet Storm

298679	-	samtodo	samtodo	Multiple cross-site scripting (XSS) vulnerabilities in (1) dsp_main.php and (2) dsp_task_editor.php in SamTodo 1.1 allow remote attackers to inject arbitrary web script or HTML via the (a) tid parame…	CWE-79 Cross-site Scripting	CVE-2008-2563	2017-08-8 10:31	2008-06-7	Show	GitHub Exploit DB Packet Storm

298680	-	fenrir	grani	Cross-site scripting (XSS) vulnerability in Fenriru Sleipnir 2.7.1 Release2 and earlier, Portable Sleipnir 2.7.1 Release2 and earlier, and Grani 3.1 and earlier allows remote attackers to inject arbi…	CWE-79 Cross-site Scripting	CVE-2008-2567	2017-08-8 10:31	2008-06-7	Show	GitHub Exploit DB Packet Storm