Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232591	4.3	警告	his	-	HIS Webshop の cgi-bin/his-webshop.pl におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1541	2012-09-25 17:16	2008-03-28	Show	GitHub Exploit DB Packet Storm

232592	7.5	危険	Mambo Foundation Joomla!	-	Joomla! および Mambo 用の Datsogallery における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1540	2012-09-25 17:16	2008-03-28	Show	GitHub Exploit DB Packet Storm

232593	4.3	警告	Zoho Corporation	-	ManageEngine EventLog Analyzer の searchAction.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1538	2012-09-25 17:16	2008-03-28	Show	GitHub Exploit DB Packet Storm

232594	7.5	危険	matti kiviharju	-	Joomla! 用の Matti Kiviharju rekry コンポーネントにおける SQL インジェクションの脆弱性	CWE-20 CWE-89	CVE-2008-1535	2012-09-25 17:16	2008-03-28	Show	GitHub Exploit DB Packet Storm

232595	6.8	警告	Joomla!	-	Joomla! の XML-RPC Blogger API プラグインにおける無許可の記事操作を実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-1533	2012-09-25 17:16	2008-02-7	Show	GitHub Exploit DB Packet Storm

232596	5	警告	perlbal	-	Perlbal におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-1532	2012-09-25 17:16	2008-03-8	Show	GitHub Exploit DB Packet Storm

232597	4.3	警告	LIGHTTPD	-	lighttpd の connections.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-1531	2012-09-25 17:16	2008-03-27	Show	GitHub Exploit DB Packet Storm

232598	7.2	危険	カスペルスキー	-	Kaspersky Anti-Virus などの kl1.sys におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1518	2012-09-25 17:16	2008-06-5	Show	GitHub Exploit DB Packet Storm

232599	5	警告	ircu quakenet	-	Undernet ircu などの s_user.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-1501	2012-09-25 17:16	2008-03-25	Show	GitHub Exploit DB Packet Storm

232600	9	危険	Netwin Ltd	-	NetWin Surgemail の IMAP サービスにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1498	2012-09-25 17:16	2008-03-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
299831	-	rogue	rogue	Buffer overflow in the save_into_file function in save.c for Rogue 5.2-2 allows local users to execute arbitrary code with games group privileges by setting a long HOME environment variable and invok…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1446	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299832	-	ibm	websphere_application_server	IBM WebSphere Advanced Server Edition 4.0.4 uses a weak encryption algorithm (XOR and base64 encoding), which allows local users to decrypt passwords when the configuration file is exported to XML.	CWE-310 Cryptographic Issues	CVE-2003-1447	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299833	-	aladdin_knowledge_systems	esafe_gateway	Aladdin Knowlege Systems eSafe Gateway 3.5.126.0 does not check the entire stream of Content Vectoring Protocol (CVP) data, which allows remote attackers to bypass virus protection.	CWE-16 Configuration	CVE-2003-1449	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299834	-	bitchx	bitchx	BitchX 75p3 and 1.0c16 through 1.0c20cvs allows remote attackers to cause a denial of service (segmentation fault) via a malformed RPL_NAMREPLY numeric 353 message.	CWE-20 Improper Input Validation	CVE-2003-1450	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299835	-	symantec	norton_antivirus	Buffer overflow in Symantec Norton AntiVirus 2002 allows remote attackers to execute arbitrary code via an e-mail attachment with a compressed ZIP file that contains a file with a long filename.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1451	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299836	-	qualcomm	qpopper	Untrusted search path vulnerability in Qualcomm qpopper 4.0 through 4.05 allows local users to execute arbitrary code by modifying the PATH environment variable to reference a malicious smbpasswd pro…	CWE-16 Configuration	CVE-2003-1452	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299837	-	xoops	xoops	Cross-site scripting (XSS) vulnerability in the MytextSanitizer function in XOOPS 1.3.5 through 1.3.9 and XOOPS 2.0 through 2.0.1 allows remote attackers to inject arbitrary web script or HTML via a …	CWE-79 Cross-site Scripting	CVE-2003-1453	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299838	-	invision_power_services	invision_board	Invision Power Services Invision Board 1.0 through 1.1.1, when a forum is password protected, stores the administrator password in a cookie in plaintext, which could allow remote attackers to gain ac…	NVD-CWE-Other	CVE-2003-1454	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299839	-	poptop	pptp_server	Multiple buffer overflows in the launch_bcrelay function in pptpctrl.c in PoPToP 1.1.4-b1 through PoPToP 1.1.4-b3 allow local users to execute arbitrary code.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2003-1455	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm

299840	-	auerswald	comsuite_cti_controlcenter	Auerswald COMsuite CTI ControlCenter 3.1 creates a default "runasositron" user account with an easily guessable password, which allows local users or remote attackers to gain access.	CWE-16 Configuration	CVE-2003-1457	2017-07-29 10:29	2003-12-31	Show	GitHub Exploit DB Packet Storm