Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230841	4.3	警告	Horde	-	Horde の Passwd モジュールの passwd/main.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2360	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

230842	7.5	危険	nulllogic	-	NullLogic Groupware のログインページにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2354	2012-09-25 17:27	2009-07-7	Show	GitHub Exploit DB Packet Storm

230843	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 6 におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2350	2012-09-25 17:27	2009-07-7	Show	GitHub Exploit DB Packet Storm

230844	4.3	警告	hans oesterholt	-	CMME の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2342	2012-09-25 17:27	2009-01-11	Show	GitHub Exploit DB Packet Storm

230845	7.5	危険	opial	-	Opial の admin/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2340	2012-09-25 17:27	2009-07-7	Show	GitHub Exploit DB Packet Storm

230846	5	警告	max kervin	-	KerviNet Forum における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2009-2329	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

230847	7.5	危険	max kervin	-	KerviNet Forum の admin/edit_user.php における任意のアカウントを削除される脆弱性	CWE-287 不適切な認証	CVE-2009-2328	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

230848	3.5	注意	max kervin	-	KerviNet Forum の add_voting.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2327	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

230849	7.5	危険	max kervin	-	KerviNet Forum における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-2326	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

230850	4.3	警告	IBM	-	ITIM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-2316	2012-09-25 17:27	2009-07-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299351	-	apple	mac_os_x mac_os_x_server	Format string vulnerability in mDNSResponderHelper in Apple Mac OS X 10.5.2 allows local users to execute arbitrary code via format string specifiers in the local hostname.	CWE-134 Use of Externally-Controlled Format String	CVE-2008-0989	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299352	-	apple	mac_os_x mac_os_x_server	notifyd in Apple Mac OS X 10.4.11 does not verify that Mach port death notifications have originated from the kernel, which allows local users to cause a denial of service via spoofed death notificat…	CWE-200 Information Exposure	CVE-2008-0990	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299353	-	apple	mac_os_x mac_os_x_server	Array index error in pax in Apple Mac OS X 10.5.2 allows context-dependent attackers to execute arbitrary code via an archive with a crafted length value.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-0992	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299354	-	apple	mac_os_x mac_os_x_server	Preview in Apple Mac OS X 10.5.2 uses 40-bit RC4 when saving a PDF file with encryption, which makes it easier for attackers to decrypt the file via brute force methods.	CWE-200 Information Exposure	CVE-2008-0994	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299355	-	apple	mac_os_x mac_os_x_server	The Printing component in Apple Mac OS X 10.5.2 uses 40-bit RC4 when printing to an encrypted PDF file, which makes it easier for attackers to decrypt the file via brute force methods.	CWE-200 Information Exposure	CVE-2008-0995	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299356	-	apple	mac_os_x mac_os_x_server	The Printing component in Apple Mac OS X 10.5.2 might save authentication credentials to disk when starting a job on an authenticated print queue, which might allow local users to obtain the credenti…	CWE-255 CWE-200 Credentials Management Information Exposure	CVE-2008-0996	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299357	-	apple	mac_os_x mac_os_x_server	Stack-based buffer overflow in AppKit in Apple Mac OS X 10.4.11 allows user-assisted remote attackers to cause a denial of service (application termination) and execute arbitrary code via a crafted P…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2008-0997	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299358	-	apple	mac_os_x mac_os_x_server	Unspecified vulnerability in NetCfgTool in the System Configuration component in Apple Mac OS X 10.4.11 and 10.5.2 allows local users to bypass authorization and execute arbitrary code via crafted di…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2008-0998	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299359	-	apple	mac_os_x mac_os_x_server	Apple Mac OS X 10.5.2 allows user-assisted attackers to cause a denial of service (crash) via a crafted Universal Disc Format (UDF) disk image, which triggers a NULL pointer dereference.	CWE-20 Improper Input Validation	CVE-2008-0999	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm

299360	-	apple	safari	Cross-site scripting (XSS) vulnerability in Apple Safari before 3.1 allows remote attackers to inject arbitrary web script or HTML via a crafted javascript: URL.	CWE-79 Cross-site Scripting	CVE-2008-1002	2017-08-8 10:29	2008-03-19	Show	GitHub Exploit DB Packet Storm