Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232721	6.5	警告	open source security information management	-	OSSIM の port/modifyportform.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0920	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232722	4.3	警告	open source security information management	-	OSSIM の session/login.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0919	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232723	7.5	危険	highwood design	-	Joomla! 用の Highwood Design における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0916	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232724	6.4	警告	ipdiva	-	IPdiva SSL VPN Server の Mediation サーバにおける総当り攻撃を実行される脆弱性	CWE-DesignError	CVE-2008-0915	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232725	4.3	警告	ipdiva	-	IPdiva SSL VPN Server の Mediation サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0914	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232726	4.3	警告	Invision Power Services, Inc	-	IP.Board におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0913	2012-09-25 16:59	2008-02-20	Show	GitHub Exploit DB Packet Storm

232727	6.5	警告	iScripts	-	iScripts MultiCart の productdetails.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0911	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232728	5	警告	meo	-	Globsy の globsy_edit.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0905	2012-09-25 16:59	2008-02-22	Show	GitHub Exploit DB Packet Storm

232729	4.3	警告	jinzora	-	Jinzora Media Jukebox におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0877	2012-09-25 16:59	2008-02-21	Show	GitHub Exploit DB Packet Storm

232730	7.5	危険	jlmzone	-	XOOPS 用の jlmZone Classifieds モジュールの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0873	2012-09-25 16:59	2008-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
300371	-	microsoft	class_package_export_tool	Buffer overflow in Microsoft Class Package Export Tool (aka clspack.exe) allows context-dependent attackers to execute arbitrary code via a long string. NOTE: the provenance of this information is u…	NVD-CWE-Other	CVE-2006-5395	2017-07-20 10:33	2006-10-19	Show	GitHub Exploit DB Packet Storm

300372	-	phpmybibli	phpmybibli	Multiple PHP remote file inclusion vulnerabilities in PHPmybibli 3.0.1 and earlier allow remote attackers to execute arbitrary PHP code via a URL in the (1) class_path, (2) javascript_path, and (3) i…	CWE-94 Code Injection	CVE-2006-5402	2017-07-20 10:33	2006-10-19	Show	GitHub Exploit DB Packet Storm

300373	-	symantec	automated_support_assistant norton_antivirus norton_internet_security norton_system_works	Stack-based buffer overflow in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted re…	NVD-CWE-Other	CVE-2006-5403	2017-07-20 10:33	2006-10-19	Show	GitHub Exploit DB Packet Storm

300374	-	symantec	automated_support_assistant norton_antivirus norton_internet_security norton_system_works	Unspecified vulnerability in an ActiveX control used in Symantec Automated Support Assistant, as used in Norton AntiVirus, Internet Security, and System Works 2005 and 2006, allows user-assisted remo…	NVD-CWE-Other	CVE-2006-5404	2017-07-20 10:33	2006-10-19	Show	GitHub Exploit DB Packet Storm

300375	-	passgo	defender	Passgo Defender 5.2 creates the application directory with insecure permissions (Everyone/Full Control), which allows local users to read and modify sensitive files. NOTE: the provenance of this inf…	NVD-CWE-Other	CVE-2006-5406	2017-07-20 10:33	2006-10-19	Show	GitHub Exploit DB Packet Storm

300376	-	barry_nauta	brim	Barry Nauta BRIM before 1.2.1 allows remote authenticated users to read information from other users via a modified URL.	NVD-CWE-Other	CVE-2006-5414	2017-07-20 10:33	2006-10-20	Show	GitHub Exploit DB Packet Storm

300377	-	kerio	winroute_firewall	Kerio WinRoute Firewall 6.2.2 and earlier allows remote attackers to cause a denial of service (crash) via malformed DNS responses.	NVD-CWE-Other	CVE-2006-5420	2017-07-20 10:33	2006-10-20	Show	GitHub Exploit DB Packet Storm

300378	-	kerio	winroute_firewall	Upgrade to 6.2.3	NVD-CWE-Other	CVE-2006-5420	2017-07-20 10:33	2006-10-20	Show	GitHub Exploit DB Packet Storm

300379	-	lodel	lodel_cms	PHP remote file inclusion vulnerability in calcul-page.php in Lodel (patchlodel) 0.7.3 allows remote attackers to execute arbitrary PHP code via a URL in the home parameter.	NVD-CWE-Other	CVE-2006-5422	2017-07-20 10:33	2006-10-20	Show	GitHub Exploit DB Packet Storm

300380	-	justsystem	ichitaro	Unspecified vulnerability in Justsystem Ichitaro 2006, 2006 trial version, and Government 2006 allows remote attackers to execute arbitrary code via a modified document, possibly because of a buffer …	CWE-399 Resource Management Errors	CVE-2006-5424	2017-07-20 10:33	2006-10-21	Show	GitHub Exploit DB Packet Storm