Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230751	6.8	警告	VideoLAN	-	VLC の ParseSSA 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1881	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230752	7.5	危険	Xine	-	xine-lib の src/demuxers/demux_nsf.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1878	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230753	6.8	警告	snarky	-	VisualPic の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1876	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230754	7.5	危険	terong	-	Terong PHP Photo Gallery の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1875	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230755	6.5	警告	xpoze	-	Xpoze Pro の account/user/mail.html における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1874	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230756	4.3	警告	tru-zone	-	Nuke ET のプライベートメッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1873	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230757	6.5	警告	scriptsagent	-	Scriptsagent.com Links Directory の links.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1871	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230758	7.5	危険	site sift media	-	Site Sift Listings における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1869	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230759	7.5	危険	pixel motion	-	Blog Pixel Motion の admin/sauvBase.php における重要な情報を含む blogPM.sql ファイルの結果を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-1868	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

230760	7.5	危険	pixel motion	-	Blog Pixel Motion における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1867	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291381	-	google	chrome	Google Chrome before 29 sends HTTP Cookie headers without first validating that they have the required character-set restrictions, which allows remote attackers to conduct the equivalent of a persist…	CWE-352 Origin Validation Error	CVE-2013-6166	2024-11-21 10:58	2014-02-15	Show	GitHub Exploit DB Packet Storm

291382	-	atmail	atmail	Multiple cross-site scripting (XSS) vulnerabilities in Atmail Webmail Server 7.0.2 allow remote attackers to inject arbitrary web script or HTML via the (1) filter parameter to index.php/mail/mail/li…	CWE-79 Cross-site Scripting	CVE-2013-6229	2024-11-21 10:58	2014-02-13	Show	GitHub Exploit DB Packet Storm

291383	-	f5	big-ip_access_policy_manager firepass big-ip_edge_gateway	The Edge Client components in F5 BIG-IP APM 10.x, 11.x, 12.x, 13.x, and 14.x, BIG-IP Edge Gateway 10.x and 11.x, and FirePass 7.0.0 allow attackers to obtain sensitive information from process memory…	CWE-200 Information Exposure	CVE-2013-6024	2024-11-21 10:58	2014-02-11	Show	GitHub Exploit DB Packet Storm

291384	-	guppy	guppy	Multiple cross-site scripting (XSS) vulnerabilities in GuppY before 4.6.28 allow remote attackers to inject arbitrary web script or HTML via the (1) "an" parameter to agenda.php or (2) cat parameter …	CWE-79 Cross-site Scripting	CVE-2013-5983	2024-11-21 10:58	2014-02-7	Show	GitHub Exploit DB Packet Storm

291385	-	japan_radio harris hughes_network_systems thuraya_telecommunications gatehouse inmarsat	jue-500 bgan jue-250 9201 ip gatehouse 9502 9450 inmarsat	The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite termina…	CWE-287 Improper Authentication	CVE-2013-6035	2024-11-21 10:58	2014-02-4	Show	GitHub Exploit DB Packet Storm

291386	-	japan_radio harris hughes_network_systems thuraya_telecommunications gatehouse inmarsat	jue-500 bgan jue-250 9201 ip gatehouse 9502 9450 inmarsat	The firmware on GateHouse; Harris BGAN RF-7800B-VU204 and BGAN RF-7800B-DU204; Hughes Network Systems 9201, 9450, and 9502; Inmarsat; Japan Radio JUE-250 and JUE-500; and Thuraya IP satellite termina…	CWE-255 Credentials Management	CVE-2013-6034	2024-11-21 10:58	2014-02-4	Show	GitHub Exploit DB Packet Storm

291387	-	lexmark	e450 c935dn w840 e250 t64x c53x c52x c920 e350	Multiple cross-site scripting (XSS) vulnerabilities on Lexmark W840 through LS.HA.P252, T64x before LS.ST.P344, C935dn through LC.JO.P091, C920 through LS.TA.P152, C53x through LS.SW.P069, C52x throu…	CWE-79 Cross-site Scripting	CVE-2013-6033	2024-11-21 10:58	2014-02-4	Show	GitHub Exploit DB Packet Storm

291388	-	lexmark	e450 x772 c935dn n4000 w840 e250 x85x x644 x94x x78x 25xxn t64x n4050e c78x c53x c52x x646 c920 c77x e350 x642 n70xxe x64xef	cgi-bin/postpf/cgi-bin/dynamic/config/config.html on Lexmark X94x before LC.BR.P142, X85x through LC4.BE.P487, X644 and X646 before LC2.MC.P374, X642 through LC2.MB.P318, W840 through LS.HA.P252, T64…	CWE-20 Improper Input Validation	CVE-2013-6032	2024-11-21 10:58	2014-02-4	Show	GitHub Exploit DB Packet Storm

291389	-	schneider-electric	telvent_sage_3030_firmware	The Schneider Electric Telvent SAGE 3030 RTU with firmware C3413-500-001D3_P4 and C3413-500-001F0_PB allows remote attackers to cause a denial of service (temporary outage and CPU consumption) via ma…	CWE-20 CWE-399 Improper Input Validation Resource Management Errors	CVE-2013-6143	2024-11-21 10:58	2014-02-1	Show	GitHub Exploit DB Packet Storm

291390	-	steve_souza	java_application_monitor	Multiple cross-site scripting (XSS) vulnerabilities in JAMon (Java Application Monitor) 2.7 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) listenertype or (2) c…	CWE-79 Cross-site Scripting	CVE-2013-6235	2024-11-21 10:58	2014-02-1	Show	GitHub Exploit DB Packet Storm