Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
235161 4.3 警告 Horde - Horde Groupware などの製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2783 2012-09-25 17:17 2008-06-19 Show GitHub Exploit DB Packet Storm
235162 7.5 危険 otomigenx - OtomiGenX におけるディレクトリトラバーサルの脆弱性 CWE-200
CWE-22
CVE-2008-2782 2012-09-25 17:17 2008-06-19 Show GitHub Exploit DB Packet Storm
235163 4.3 警告 luca corbo - Ortro におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2777 2012-09-25 17:17 2008-06-19 Show GitHub Exploit DB Packet Storm
235164 7.5 危険 mycrocms - MycroCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2770 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
235165 7.5 危険 jamm-media - JAMM CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2755 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
235166 7.5 危険 paridel - PSB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2753 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
235167 7.1 危険 マイクロソフト - Microsoft Word 2000 などにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2752 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
235168 4.3 警告 サン・マイクロシステムズ
オラクル		 - Sun Java System Application Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2751 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
235169 7.8 危険 Linux - Linux kernel の drivers/net/pppol2tp.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2750 2012-09-25 17:17 2008-06-10 Show GitHub Exploit DB Packet Storm
235170 2.1 注意 no-ip - Windows 上で稼動する No-IP DUC における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2747 2012-09-25 17:17 2008-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347731 - paul_jarc idtools cvmlogin and statfile in Paul Jarc idtools before 2001.06.27 do not properly check the return value of a call to the pathexec_env function, which could cause the setstate utility to setuid to the UID… NVD-CWE-Other
CVE-2001-1324 2008-09-11 04:10 2001-06-26 Show GitHub Exploit DB Packet Storm
347732 - debian
progeny 		debian_linux
debian 		mandb in the man-db package before 2.3.16-3 allows local users to overwrite arbitrary files via the command line options (1) -u or (2) -c, which do not drop privileges and follow symlinks. NVD-CWE-Other
CVE-2001-1331 2008-09-11 04:10 2001-05-3 Show GitHub Exploit DB Packet Storm
347733 - aclogic cesarftp Directory traversal vulnerability in CesarFTP 0.98b and earlier allows remote authenticated users (such as anonymous) to read arbitrary files via a GET with a filename that contains a ...%5c (modifie… NVD-CWE-Other
CVE-2001-1335 2008-09-11 04:10 2001-05-27 Show GitHub Exploit DB Packet Storm
347734 - aclogic cesarftp CesarFTP 0.98b and earlier stores usernames and passwords in plaintext in the settings.ini file, which allows attackers to gain privileges. NVD-CWE-Other
CVE-2001-1336 2008-09-11 04:10 2001-05-28 Show GitHub Exploit DB Packet Storm
347735 - beck_ipc_gmbh ipc_at_chip_telnetd_server Beck GmbH IPC@Chip TelnetD service supports only one connection and does not disconnect a user who does not complete the login process, which allows remote attackers to lock out the administrator acc… NVD-CWE-Other
CVE-2001-1340 2008-09-11 04:10 2002-05-21 Show GitHub Exploit DB Packet Storm
347736 - beck_ipc_gmbh ipc_at_chip_embedded-webserver The Beck GmbH IPC@Chip embedded web server installs the chipcfg.cgi program by default, which allows remote attackers to obtain sensitive network information via a request to the program. NVD-CWE-Other
CVE-2001-1341 2008-09-11 04:10 2001-05-24 Show GitHub Exploit DB Packet Storm
347737 - leon_j_breedt pam-pgsql Leon J Breedt pam-pgsql before 0.5.2 allows remote attackers to execute arbitrary SQL code and bypass authentication or modify user account records by injecting SQL statements into user or password f… NVD-CWE-Other
CVE-2001-1369 2008-09-11 04:10 2001-09-10 Show GitHub Exploit DB Packet Storm
347738 - redhat linux initscript in setserial 2.17-4 and earlier uses predictable temporary file names, which could allow local users to conduct unauthorized operations on files. NVD-CWE-Other
CVE-2001-1383 2008-09-11 04:10 2001-09-26 Show GitHub Exploit DB Packet Storm
347739 - proftpd_project proftpd The glob functionality in ProFTPD 1.2.1, and possibly other versions allows remote attackers to cause a denial of service (CPU and memory consumption) via commands with large numbers of wildcard and … NVD-CWE-Other
CVE-2001-1501 2008-09-11 04:10 2001-12-31 Show GitHub Exploit DB Packet Storm
347740 - openbsd openssh OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged. NVD-CWE-Other
CVE-2001-1507 2008-09-11 04:10 2001-12-31 Show GitHub Exploit DB Packet Storm