Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232711 10 危険 IBM - IBM IDS における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-0949 2012-09-25 16:59 2008-03-17 Show GitHub Exploit DB Packet Storm
232712 4.9 警告 Ipswitch, Inc. - Ipswitch IM の IM Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0946 2012-09-25 16:59 2008-02-25 Show GitHub Exploit DB Packet Storm
232713 3.5 注意 Ipswitch, Inc. - Ipswitch IM の IM Server の logging 関数におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-0945 2012-09-25 16:59 2008-02-25 Show GitHub Exploit DB Packet Storm
232714 5 警告 Ipswitch, Inc. - Ipswitch IM におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-0944 2012-09-25 16:59 2008-02-25 Show GitHub Exploit DB Packet Storm
232715 10 危険 Novell - Novell iPrint Client の Novell iPrint Control ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0935 2012-09-25 16:59 2008-02-15 Show GitHub Exploit DB Packet Storm
232716 7.5 危険 PHPNUKE
nukec		 - PHP-Nuke 用の NukeC モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0934 2012-09-25 16:59 2008-02-25 Show GitHub Exploit DB Packet Storm
232717 5 警告 Novell - Novell eDirectory の dhost.exe におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0927 2012-09-25 16:59 2008-03-24 Show GitHub Exploit DB Packet Storm
232718 7.5 危険 Novell - Novell eDirectory の eMBox モジュール用 SOAP インターフェースにおける認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-0926 2012-09-25 16:59 2008-03-28 Show GitHub Exploit DB Packet Storm
232719 4.3 警告 Novell - Novell eDirectory の iMonitor インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0925 2012-09-25 16:59 2008-03-24 Show GitHub Exploit DB Packet Storm
232720 6.8 警告 Novell - Novell eDirectory の DoLBURPRequest 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0924 2012-09-25 16:59 2008-03-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
299731 - phprojekt phprojekt The setup routine (setup.php) in PHProjekt 4.2.1 and earlier allows remote attackers to modify system configuration via unknown attack vectors. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2739 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299732 - phprojekt phprojekt PHP remote file inclusion vulnerability in authform.inc.php in PHProjekt 4.2.3 and earlier allows remote attackers to include arbitrary PHP code via a URL in the path_pre parameter. CWE-94
Code Injection 		CVE-2004-2740 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299733 - horde application_framework Cross-site scripting (XSS) vulnerability in the "help window" (help.php) in Horde Application Framework 2.2.6 allows remote attackers to inject arbitrary web script or HTML via the (1) module, (2) to… CWE-79
Cross-site Scripting 		CVE-2004-2741 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299734 - businessobjects crystal_enterprise Cross-site scripting (XSS) vulnerability in the report viewer in Crystal Enterprise 8.5, 9, and 10 allows remote attackers to inject arbitrary web script or HTML via script in the URL to a report (RP… CWE-79
Cross-site Scripting 		CVE-2004-2742 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299735 - raditha_dissanayake mega_upload_progress_bar upload.cgi in Mega Upload Progress Bar before 1.45 allows remote attackers to copy or overwrite arbitrary files via unspecified parameters related to names of uploaded files. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2004-2743 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299736 - phplist mailing_list_manager Unspecified vulnerability in Tincan Limited PHPlist before 2.8.12 has unknown impact and attack vectors, related to a "security update release." NVD-CWE-noinfo
CVE-2004-2744 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299737 - 2wire homeportal Directory traversal vulnerability in wra/public/wralogin in 2Wire Gateway, possibly as used in HomePortal and other product lines, allows remote attackers to read arbitrary files via a .. (dot dot) i… CWE-22
Path Traversal 		CVE-2004-2749 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299738 - postnuke_software_foundation postnuke SQL injection vulnerability in the members_list module in PostNuke 0.726, and possibly earlier, allows remote attackers to execute arbitrary SQL commands via the sortby parameter. CWE-89
SQL Injection 		CVE-2004-2751 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299739 - hp hp-ux Unspecified vulnerability in SharedX in HP-UX B.11.00, B.11.11, and B.11.22 allows local users to access unspecified files or cause a denial of service via unknown vectors related to handling of "fil… NVD-CWE-noinfo
CVE-2004-2753 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm
299740 - symantec web_security Cross-site scripting (XSS) vulnerability in Symantec Web Security 2.5, 3.0.0, and 3.0.1 before build 62 allows remote attackers to inject arbitrary web script or HTML via the query string in blocked … CWE-79
Cross-site Scripting 		CVE-2004-2755 2017-07-29 10:29 2004-12-31 Show GitHub Exploit DB Packet Storm