Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232701 7.5 危険 linuxwebshop - LWS php User Base における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1043 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
232702 6.8 警告 linuxwebshop - LWS php Download Manager の include/body.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1042 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
232703 4.3 警告 matts whois - Matt Wilson MWhois の mwhois.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1041 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
232704 4.3 警告 packeteer - Packeteer PacketShaper などの Web マネージメントインターフェースのファイルリスティング機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1037 2012-09-25 16:59 2008-02-27 Show GitHub Exploit DB Packet Storm
232705 9.3 危険 miro
VideoLAN		 - Miro Player の VLC メディアプレイヤー用の MP4 demuxer における任意のメモリを上書きされる脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0984 2012-09-25 16:59 2008-02-26 Show GitHub Exploit DB Packet Storm
232706 5 警告 LIGHTTPD - lighttpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0983 2012-09-25 16:59 2008-02-26 Show GitHub Exploit DB Packet Storm
232707 9.3 危険 nctsoft products - NCTAudioGrabber2.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0958 2012-09-25 16:59 2008-05-29 Show GitHub Exploit DB Packet Storm
232708 6.8 警告 photostockplus - PhotoStockPlus Uploader Tool ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0957 2012-09-25 16:59 2008-05-20 Show GitHub Exploit DB Packet Storm
232709 10 危険 ヒューレット・パッカード - HP Instant Support の HPISDataManager.dll における任意のプログラムを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0953 2012-09-25 16:59 2008-06-3 Show GitHub Exploit DB Packet Storm
232710 9.3 危険 ヒューレット・パッカード - HP Instant Support の HPISDataManager.dll における任意の内容を持つファイルを作成される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0952 2012-09-25 16:59 2008-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 19, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
300081 - novell edirectory The BerDecodeLoginDataRequest function in the libnmasldap.so NMAS module in Novell eDirectory 8.8 and 8.8.1 before the Security Services 2.0.3 patch does not properly increment a pointer when handlin… NVD-CWE-Other
CVE-2006-4521 2017-07-20 10:33 2006-11-4 Show GitHub Exploit DB Packet Storm
300082 - dec dec_openvms_alpha NET$SESSION_CONTROL.EXE in DECnet-Plus in OpenVMS ALPHA 7.3-2 and Alpha 8.2 writes a password to an audit log file when there is a successful connection after a "network breakin" event, which allows … CWE-200
Information Exposure 		CVE-2006-4537 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300083 - learn.com learncenter Cross-site scripting (XSS) vulnerability in learncenter.asp in Learn.com LearnCenter allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2006-4540 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300084 - usermin
webmin 		usermin
webmin 		Webmin before 1.296 and Usermin before 1.226 do not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS), read CGI program source c… CWE-79
Cross-site Scripting 		CVE-2006-4542 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300085 - usermin
webmin 		usermin
webmin 		This vulnerability is addressed in the following product releases: Webmin, Webmin, 1.296 Usermin, Usermin, 1.226 CWE-79
Cross-site Scripting 		CVE-2006-4542 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300086 - retro64 cr64loader_activex_control Buffer overflow in the Retro64 / Miniclip CR64Loader ActiveX control allows remote attackers to execute arbitrary code via unspecified vectors involving an HTML document that references the CLSID of … NVD-CWE-Other
CVE-2006-4555 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300087 - phpnuke myheadlines Cross-site scripting (XSS) vulnerability in the MyHeadlines before 4.3.2 module for PHP-Nuke allows remote attackers to inject arbitrary web script or HTML via the myh_op parameter to modules.php. NVD-CWE-Other
CVE-2006-4563 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300088 - simplemachines smf SQL injection vulnerability in Sources/ManageBoards.php in Simple Machines Forum 1.1 RC3 allows remote attackers to execute arbitrary SQL commands via the cur_cat parameter. CWE-89
SQL Injection 		CVE-2006-4564 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300089 - simplemachines smf Successful exploitation requires privileges to add a new board. CWE-89
SQL Injection 		CVE-2006-4564 2017-07-20 10:33 2006-09-6 Show GitHub Exploit DB Packet Storm
300090 - the_address_book the_address_book Multiple SQL injection vulnerabilities in The Address Book 1.04e allow remote attackers to execute arbitrary SQL commands via the (1) lastname, (2) firstname, (3) passwordOld, (4) passwordNew, (5) id… NVD-CWE-Other
CVE-2006-4575 2017-07-20 10:33 2006-12-31 Show GitHub Exploit DB Packet Storm