Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
236741 4.3 警告 infosoftglobal - InfoSoft FusionCharts が作成する任意の SWF ファイルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6060 2012-09-25 17:26 2009-02-4 Show GitHub Exploit DB Packet Storm
236742 5 警告 liberum - Doug Luxem Liberum Help Desk におけるパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6057 2012-09-25 17:26 2009-02-4 Show GitHub Exploit DB Packet Storm
236743 5 警告 metalinks - MateCart におけるユーザ名およびパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6051 2012-09-25 17:26 2009-02-4 Show GitHub Exploit DB Packet Storm
236744 4.3 警告 hardkap - Pritlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6012 2012-09-25 17:26 2009-01-30 Show GitHub Exploit DB Packet Storm
236745 5 警告 herongyang - hyBook Guestbook Script におけるパスワードを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6008 2012-09-25 17:26 2009-01-30 Show GitHub Exploit DB Packet Storm
236746 7.5 危険 minbank - minba における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6006 2012-09-25 17:26 2009-01-30 Show GitHub Exploit DB Packet Storm
236747 7.8 危険 ocp2 - OCP の admin/fileKontrola/browser.asp における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5997 2012-09-25 17:26 2009-01-28 Show GitHub Exploit DB Packet Storm
236748 7.5 危険 jetik - Jetik ESA における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5992 2012-09-25 17:26 2009-01-28 Show GitHub Exploit DB Packet Storm
236749 7.5 危険 mailwatch - MailScanner 用の MailWatch におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5991 2012-09-25 17:26 2009-01-28 Show GitHub Exploit DB Packet Storm
236750 7.5 危険 jadu - Government 用の Jadu CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5988 2012-09-25 17:26 2009-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
347261 - compaq compaqhttpserver Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error pa… NVD-CWE-Other
CVE-2005-2982 2016-10-18 12:31 2005-09-20 Show GitHub Exploit DB Packet Storm
347262 - oracle reports SQL injection vulnerability in Oracle Reports that use Lexical References allows remote attackers to execute arbitrary SQL commands via the values in the parameter form that appears when the paramfor… CWE-89
SQL Injection 		CVE-2005-2983 2016-10-18 12:31 2005-09-20 Show GitHub Exploit DB Packet Storm
347263 - symantec norton_antivirus Symantec AntiVirus Corporate Edition 9.0.1.x and 9.0.4.x, and possibly other versions, when obtaining updates from an internal LiveUpdate server, stores sensitive information in cleartext in the Log.… NVD-CWE-Other
CVE-2005-2766 2016-10-18 12:30 2005-09-2 Show GitHub Exploit DB Packet Storm
347264 - mybulletinboard mybulletinboard SQL injection vulnerability in member.php in MyBulletinBoard (MyBB) allows remote attackers to execute arbitrary SQL statements via the fid parameter. NVD-CWE-Other
CVE-2005-2778 2016-10-18 12:30 2005-09-3 Show GitHub Exploit DB Packet Storm
347265 - - - The iTAN Online-Banking Security System allows remote attackers to obtain TAN numbers via a man-in-the-middle (MITM) attack while the transaction is taking place, which facilitates a "phishing" attac… NVD-CWE-Other
CVE-2005-2779 2016-10-18 12:30 2005-09-3 Show GitHub Exploit DB Packet Storm
347266 - neocrome land_down_under Cross-site scripting (XSS) vulnerability in Land Down Under (LDU) allows remote attackers to inject arbitrary web script or HTML via a signature. NVD-CWE-Other
CVE-2005-2780 2016-10-18 12:30 2005-09-3 Show GitHub Exploit DB Packet Storm
347267 - cosmoshop cosmoshop Directory traversal vulnerability in bestmail_edit.cgi in cosmoshop 8.10.78 and earlier allows remote administrators to read arbitrary files via ".." sequences in the file parameter. NVD-CWE-Other
CVE-2005-2786 2016-10-18 12:30 2005-09-3 Show GitHub Exploit DB Packet Storm
347268 - urban urban Multiple stack-based buffer overflows in urban before 1.5.3 allow local users to gain privileges via a long HOME environment variable to (1) config.cc, (2) game.cc, (3) highscor.cc, or (4) meny.cc. NVD-CWE-Other
CVE-2005-2810 2016-10-18 12:30 2005-09-8 Show GitHub Exploit DB Packet Storm
347269 - - - Cross-site scripting (XSS) vulnerability in Greymatter allows remote attackers to inject arbitrary web script or HTML via a post comment, which is recorded in a log file but not properly handled when… NVD-CWE-Other
CVE-2005-2816 2016-10-18 12:30 2005-09-8 Show GitHub Exploit DB Packet Storm
347270 - barracuda_networks barracuda_spam_firewall img.pl in Barracuda Spam Firewall running firmware 3.1.16 and 3.1.17 allows remote attackers to execute arbitrary commands via shell metacharacters in the f parameter. NVD-CWE-Other
CVE-2005-2847 2016-10-18 12:30 2005-09-8 Show GitHub Exploit DB Packet Storm