Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232241	4	警告	octeth	-	Octeth Oempro の member/settings_account.php における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-3059	2012-09-25 17:17	2008-12-3	Show	GitHub Exploit DB Packet Storm

232242	7.5	危険	octeth	-	Octeth Oempro における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3058	2012-09-25 17:17	2008-12-3	Show	GitHub Exploit DB Packet Storm

232243	5	警告	octeth	-	Octeth Oempro におけるクッキーを取得される脆弱性	CWE-310 暗号の問題	CVE-2008-3057	2012-09-25 17:17	2008-12-3	Show	GitHub Exploit DB Packet Storm

232244	7.5	危険	oneclick cms	-	OneClick CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3026	2012-09-25 17:17	2008-07-7	Show	GitHub Exploit DB Packet Storm

232245	7.5	危険	homap	-	HoMaP-CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2989	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

232246	6.8	警告	homeph design	-	HomePH Design におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2982	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

232247	6.8	警告	homeph design	-	HomePH Design における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2981	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

232248	4.3	警告	homeph design	-	HomePH Design におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2980	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

232249	4.3	警告	ourvideo cms	-	Ourvideo CMS の phpi/login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2979	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

232250	6.8	警告	ourvideo cms	-	Ourvideo CMS の phpi/rss.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2978	2012-09-25 17:17	2008-07-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299801	-	coffeecup_software	coffeecup_password_wizard	CoffeeCup Software Password Wizard 4.0 stores sensitive information such as usernames and passwords in a .apw file under the web document root with insufficient access control, which allows remote at…	CWE-255 Credentials Management	CVE-2003-1394	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299802	-	kazaa	kazaa_media_desktop	Buffer overflow in KaZaA Media Desktop 2.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a response to the ad server.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1395	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299803	-	cisco	ios	Cisco IOS 12.0 through 12.2, when IP routing is disabled, accepts false ICMP redirect messages, which allows remote attackers to cause a denial of service (network routing modification).	CWE-200 Information Exposure	CVE-2003-1398	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299804	-	eject	eject	eject 2.0.10, when installed setuid on systems such as SuSE Linux 7.3, generates different error messages depending on whether a specified file exists or not, which allows local users to obtain sensi…	NVD-CWE-Other	CVE-2003-1399	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299805	-	francisco_burzi	php-nuke	Cross-site scripting (XSS) vulnerability in the Your_Account module for PHP-Nuke 5.0 through 6.0 allows remote attackers to inject arbitrary web script or HTML via the user_avatar parameter.	CWE-79 Cross-site Scripting	CVE-2003-1400	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299806	-	php_board	php_board	login.php in php-Board 1.0 stores plaintext passwords in $username.txt with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information via …	CWE-255 Credentials Management	CVE-2003-1401	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299807	-	kietu	kietu	PHP remote file inclusion vulnerability in hit.php for Kietu 2.0 and 2.3 allows remote attackers to execute arbitrary PHP code via the url_hit parameter, a different vulnerability than CVE-2006-5015.	CWE-20 Improper Input Validation	CVE-2003-1402	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299808	-	dotbr	botbr	foo.php3 in DotBr 0.1 allows remote attackers to obtain sensitive information via a direct request, which calls the phpinfo function.	CWE-20 Improper Input Validation	CVE-2003-1403	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299809	-	dotbr	botbr	DotBr 0.1 stores config.inc with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information such as SQL usernames and passwords.	CWE-200 Information Exposure	CVE-2003-1404	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299810	-	dotbr	botbr	DotBr 0.1 allows remote attackers to execute arbitrary shell commands via the cmd parameter to (1) exec.php3 or (2) system.php3.	CWE-20 Improper Input Validation	CVE-2003-1405	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm