Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
238911 4.3 警告 DNN - DotNetNuke の Language skin オブジェクトにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6732 2012-06-26 16:10 2008-06-11 Show GitHub Exploit DB Packet Storm
238912 9 危険 アバイア - Avaya Communication Manager の Web 管理インターフェースにおける任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-6711 2012-06-26 16:10 2008-06-25 Show GitHub Exploit DB Packet Storm
238913 9 危険 アバイア - Avaya Communication Manager の Web 管理インターフェースにおける root 権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-6710 2012-06-26 16:10 2008-06-25 Show GitHub Exploit DB Packet Storm
238914 4.3 警告 butterflymedia - Butterfly Organizer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6700 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
238915 7.5 危険 frank naegler
TYPO3 Association		 - TYPO3 の timtab_sociable における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6695 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
238916 4.3 警告 david cadu
TYPO3 Association		 - TYPO3 の dcdgooglemap におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6687 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
238917 4.3 警告 The Dojo Foundation - Dojo の dijit.Editor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6681 2012-06-26 16:10 2009-04-9 Show GitHub Exploit DB Packet Storm
238918 7.5 危険 dirk bartley - nweb2fax の viewrq.php における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-6669 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
238919 5 警告 dirk bartley - nweb2fax におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6668 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
238920 6.8 警告 anantasoft - Ananta CMS の change.php における管理者の権限を取得される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6665 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256321 8.6 HIGH
Local 		scilico i-librarian Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component. CWE-79
Cross-site Scripting 		CVE-2024-40500 2024-08-22 01:05 2024-08-13 Show GitHub Exploit DB Packet Storm
256322 5.3 MEDIUM
Network 		matrix javascript_sdk matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's g… CWE-674
 Uncontrolled Recursion 		CVE-2024-42369 2024-08-22 01:01 2024-08-21 Show GitHub Exploit DB Packet Storm
256323 8.8 HIGH
Network 		projectcapsule capsule Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant (i.e.,… CWE-863
 Incorrect Authorization 		CVE-2024-39690 2024-08-22 01:01 2024-08-21 Show GitHub Exploit DB Packet Storm
256324 5.4 MEDIUM
Network 		3ds 3dexperience A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execu… CWE-79
Cross-site Scripting 		CVE-2024-6378 2024-08-22 00:53 2024-08-20 Show GitHub Exploit DB Packet Storm
256325 9.8 CRITICAL
Network 		gotribe gotribe-admin A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected by this issue is the function InitRoutes of the file internal/app/routes/routes.go of the component Log… CWE-502
 Deserialization of Untrusted Data 		CVE-2024-8003 2024-08-22 00:51 2024-08-20 Show GitHub Exploit DB Packet Storm
256326 9.8 CRITICAL
Network 		demozx gf_cms A vulnerability was found in demozx gf_cms 1.0/1.0.1. It has been classified as critical. This affects the function init of the file internal/logic/auth/auth.go of the component JWT Authentication. T… CWE-798
 Use of Hard-coded Credentials 		CVE-2024-8005 2024-08-22 00:49 2024-08-20 Show GitHub Exploit DB Packet Storm
256327 9.8 CRITICAL
Network 		newlib_project newlib An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling in the _gettimeofday function. CWE-190
 Integer Overflow or Wraparound 		CVE-2024-30949 2024-08-22 00:48 2024-08-21 Show GitHub Exploit DB Packet Storm
256328 - - - The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not sanitise and escape user inputs, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins - CVE-2024-6843 2024-08-22 00:35 2024-08-19 Show GitHub Exploit DB Packet Storm
256329 5.4 MEDIUM
Network 		adonesevangelista laravel_property_management_system A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/no… CWE-79
Cross-site Scripting 		CVE-2024-7945 2024-08-22 00:25 2024-08-20 Show GitHub Exploit DB Packet Storm
256330 8.8 HIGH
Network 		adonesevangelista laravel_property_management_system A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.p… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2024-7944 2024-08-22 00:24 2024-08-20 Show GitHub Exploit DB Packet Storm