Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
233571 7.5 危険 psychostats - PsychoStats における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6422 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233572 7.5 危険 socialsitegenerator - Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション
CVE-2008-6421 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233573 5 警告 socialsitegenerator - Social Site Generator における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい
CVE-2008-6420 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233574 7.5 危険 socialsitegenerator - Social Site Generator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6419 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233575 7.5 危険 torrenttrader - TorrentTrader の scrape.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6418 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233576 10 危険 Youngzsoft - YoungZSoft CCProxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2008-6415 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233577 7.5 危険 vignette - Vignette Content Management における管理者権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2008-6412 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
233578 4.3 警告 refbase - refbase におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6400 2012-12-20 19:10 2009-03-5 Show GitHub Exploit DB Packet Storm
233579 10 危険 psi-im - PSI Jabber クライアントにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2008-6393 2012-12-20 19:10 2009-03-3 Show GitHub Exploit DB Packet Storm
233580 4.3 警告 w3matter - W3matter RevSense の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6385 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293861 - papercut papercut_ng
papercut_mf
Unspecified vulnerability in Papercut MF and NG before 14.1 (Build 26983) allows attacker to cause a denial of service via unknown vectors. NVD-CWE-noinfo
CVE-2014-2658 2024-11-21 11:06 2014-04-28 Show GitHub Exploit DB Packet Storm
293862 - papercut papercut_mf Unspecified vulnerability in the print release functionality in PaperCut MF before 14.1 (Build 26983) has unknown impact and remote vectors, related to embedded MFPs. NVD-CWE-noinfo
CVE-2014-2657 2024-11-21 11:06 2014-04-28 Show GitHub Exploit DB Packet Storm
293863 - dompdf dompdf dompdf.php in dompdf before 0.6.1, when DOMPDF_ENABLE_PHP is enabled, allows context-dependent attackers to bypass chroot protections and read arbitrary files via a PHP protocol and wrappers in the i… CWE-200
Information Exposure
CVE-2014-2383 2024-11-21 11:06 2014-04-28 Show GitHub Exploit DB Packet Storm
293864 - net-snmp net-snmp The perl_trapd_handler function in perl/TrapReceiver/TrapReceiver.xs in Net-SNMP 5.7.3.pre3 and earlier, when using certain Perl versions, allows remote attackers to cause a denial of service (snmptr… CWE-20
 Improper Input Validation 
CVE-2014-2285 2024-11-21 11:06 2014-04-28 Show GitHub Exploit DB Packet Storm
293865 - xcloner xcloner Multiple cross-site request forgery (CSRF) vulnerabilities in XCloner Standalone 3.5 and earlier allow remote attackers to hijack the authentication of administrators for requests that (1) change the… CWE-352
 Origin Validation Error
CVE-2014-2579 2024-11-21 11:06 2014-04-26 Show GitHub Exploit DB Packet Storm
293866 - ektron ektron_content_management_system Cross-site scripting (XSS) vulnerability in content.aspx in Ektron CMS 8.7 before 8.7.0.055 allows remote authenticated users to inject arbitrary web script or HTML via the category0 parameter, which… CWE-79
Cross-site Scripting
CVE-2014-2729 2024-11-21 11:06 2014-04-25 Show GitHub Exploit DB Packet Storm
293867 - ruby-lang ruby The openssl extension in Ruby 2.x does not properly maintain the state of process memory after a file is reopened, which allows remote attackers to spoof signatures within the context of a Ruby scrip… CWE-399
 Resource Management Errors
CVE-2014-2734 2024-11-21 11:06 2014-04-25 Show GitHub Exploit DB Packet Storm
293868 - hp integrated_lights-out_2_firmware The server in HP Integrated Lights-Out 2 (aka iLO 2) 2.23 and earlier allows remote attackers to cause a denial of service via crafted HTTPS traffic, as demonstrated by traffic from a CVE-2014-0160 v… NVD-CWE-noinfo
CVE-2014-2601 2024-11-21 11:06 2014-04-25 Show GitHub Exploit DB Packet Storm
293869 - modx modx_revolution Multiple SQL injection vulnerabilities in MODX Revolution before 2.2.14 allow remote attackers to execute arbitrary SQL commands via the (1) session ID (PHPSESSID) to index.php or remote authenticate… CWE-89
SQL Injection
CVE-2014-2736 2024-11-21 11:06 2014-04-24 Show GitHub Exploit DB Packet Storm
293870 - open-xchange open-xchange_appsuite Cross-site scripting (XSS) vulnerability in Open-Xchange AppSuite 7.4.1 before 7.4.1-rev11 and 7.4.2 before 7.4.2-rev13 allows remote attackers to inject arbitrary web script or HTML via a Drive file… CWE-79
Cross-site Scripting
CVE-2014-2393 2024-11-21 11:06 2014-04-24 Show GitHub Exploit DB Packet Storm