Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238701	7.5	危険	dark age cms	-	Dark Age CMS の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0326	2012-06-26 16:10	2009-01-29	Show	GitHub Exploit DB Packet Storm

238702	7.5	危険	bibciter	-	BibCiter における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0324	2012-06-26 16:10	2009-01-29	Show	GitHub Exploit DB Packet Storm

238703	6.8	警告	grid2000	-	FlexCell Grid Control における任意ファイルを作成される脆弱性	CWE-Other その他	CVE-2009-0301	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238704	7.5	危険	Groone's World	-	Groone GLinks の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0299	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238705	7.5	危険	clicktech	-	ClickAuction の login_check.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0297	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238706	7.5	危険	gempar	-	Script Toko Online の shop_display_products.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0296	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238707	4.3	警告	bbsxp	-	BBSXP の error.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0285	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238708	7.5	危険	flaxweb	-	Flax Article Manager の category.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0284	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238709	4.3	警告	aobosoft	-	Oblog の err.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0283	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

238710	7.5	危険	asp-project	-	Asp Project Management における管理アクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-0280	2012-06-26 16:10	2009-01-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256951	8.1	HIGH Network	haloservicesolutions	haloitsm	HaloITSM versions up to 2.146.1 are affected by a Password Reset Poisoning vulnerability. Poisoned password reset links can be sent to existing HaloITSM users (given their email address is known). Wh…	CWE-640 Weak Password Recovery Mechanism for Forgotten Password	CVE-2024-6203	2024-08-30 02:46	2024-08-6	Show	GitHub Exploit DB Packet Storm

256952	6.1	MEDIUM Network	mozilla	firefox firefox_esr	Firefox adds web-compatibility shims in place of some tracking scripts blocked by Enhanced Tracking Protection. On a site protected by Content Security Policy in "strict-dynamic" mode, an attacker a…	CWE-79 Cross-site Scripting	CVE-2024-7524	2024-08-30 02:35	2024-08-6	Show	GitHub Exploit DB Packet Storm

256953	6.1	MEDIUM Network	insurance_management_system_project	insurance_management_system	A vulnerability has been found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file editCl…	CWE-79 Cross-site Scripting	CVE-2024-8208	2024-08-30 02:27	2024-08-28	Show	GitHub Exploit DB Packet Storm

256954	6.1	MEDIUM Network	insurance_management_system_project	insurance_management_system	A vulnerability was found in nafisulbari/itsourcecode Insurance Management System 1.0 and classified as problematic. Affected by this issue is some unknown functionality of the file addClient.php. Th…	CWE-79 Cross-site Scripting	CVE-2024-8209	2024-08-30 02:23	2024-08-28	Show	GitHub Exploit DB Packet Storm

256955	4.3	MEDIUM Network	ibm	infosphere_information_server	IBM InfoSphere Information Server 11.7 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information could be use…	CWE-209 Information Exposure Through an Error Message	CVE-2024-39751	2024-08-30 01:56	2024-08-7	Show	GitHub Exploit DB Packet Storm

256956	6.1	MEDIUM Network	mozilla	firefox	Long pressing on a download link could potentially allow Javascript commands to be executed within the browser This vulnerability affects Firefox for iOS < 129.	CWE-79 Cross-site Scripting	CVE-2024-43111	2024-08-30 01:53	2024-08-7	Show	GitHub Exploit DB Packet Storm

256957	6.1	MEDIUM Network	mozilla	firefox	The contextual menu for links could provide an opportunity for cross-site scripting attacks This vulnerability affects Firefox for iOS < 129.	CWE-79 Cross-site Scripting	CVE-2024-43113	2024-08-30 01:51	2024-08-7	Show	GitHub Exploit DB Packet Storm

256958	6.1	MEDIUM Network	mozilla	firefox	Long pressing on a download link could potentially provide a means for cross-site scripting This vulnerability affects Firefox for iOS < 129.	CWE-79 Cross-site Scripting	CVE-2024-43112	2024-08-30 01:51	2024-08-7	Show	GitHub Exploit DB Packet Storm

256959	5.5	MEDIUM Local	samsung	email	Use of implicit intent for sensitive communication in Samsung Email prior to version 6.1.94.2 allows local attackers to get sensitive information.	NVD-CWE-Other	CVE-2024-34636	2024-08-30 01:47	2024-08-7	Show	GitHub Exploit DB Packet Storm

256960	10.0	CRITICAL Network	openhab	openhab_web_interface	openHAB, a provider of open-source home automation software, has add-ons including the visualization add-on CometVisu. Prior to version 4.2.1, the proxy endpoint of openHAB's CometVisu add-on can be …	NVD-CWE-noinfo	CVE-2024-42467	2024-08-30 01:26	2024-08-12	Show	GitHub Exploit DB Packet Storm