Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
238971	7.5	危険	bosdev	-	BosDev BosClassifieds の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6526	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

238972	6.5	警告	cale dunlap	-	openInvoice の resetpass.php における任意のユーザパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-6524	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

238973	7.5	危険	cale dunlap	-	openInvoice の auth.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6523	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

238974	6.8	警告	devraj mukherjee	-	Terracotta の ContentRender.class.php の RenderFile 関数におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6522	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

238975	7.8	危険	devraj mukherjee	-	Terracotta の index.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-6521	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

238976	6.2	警告	compiz	-	Compiz Fusion の Expo プラグインにおけるロックされたデスクトップへアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6514	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

238977	6.8	警告	Andy's PHP Knowledgebase Project	-	Andy's PHP Knowledgebase の saa.php における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6513	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

238978	6.8	警告	Google	-	Google Gears の WorkerPool API における同一送信元ポリシーを回避される脆弱性	CWE-Other その他	CVE-2008-6512	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

238979	4.3	警告	codetoad	-	CodeToad ASP Shopping Cart Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6500	2012-06-26 16:10	2009-03-20	Show	GitHub Exploit DB Packet Storm

238980	5.5	警告	Apache Friends	-	XAMPP の security/xamppsecurity.php における重要な変数を偽装される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6499	2012-06-26 16:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256811	7.5	HIGH Network	janobe	school_attendence_monitoring_system school_event_management_system paypal credit_card debit_card_payment	SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…	CWE-89 SQL Injection	CVE-2024-33967	2024-08-9 00:27	2024-08-6	Show	GitHub Exploit DB Packet Storm

256812	7.5	HIGH Network	janobe	school_attendence_monitoring_system school_event_management_system paypal credit_card debit_card_payment	SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…	CWE-89 SQL Injection	CVE-2024-33971	2024-08-9 00:26	2024-08-6	Show	GitHub Exploit DB Packet Storm

256813	7.5	HIGH Network	janobe	school_attendence_monitoring_system school_event_management_system paypal credit_card debit_card_payment	SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…	CWE-89 SQL Injection	CVE-2024-33970	2024-08-9 00:26	2024-08-6	Show	GitHub Exploit DB Packet Storm

256814	7.5	HIGH Network	janobe	school_attendence_monitoring_system school_event_management_system paypal credit_card debit_card_payment	SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…	CWE-89 SQL Injection	CVE-2024-33972	2024-08-9 00:25	2024-08-6	Show	GitHub Exploit DB Packet Storm

256815	7.5	HIGH Network	janobe	school_attendence_monitoring_system school_event_management_system paypal credit_card debit_card_payment	SQL injection vulnerability in PayPal, Credit Card and Debit Card Payment affecting version 1.0. An attacker could exploit this vulnerability by sending a specially crafted query to the server and re…	CWE-89 SQL Injection	CVE-2024-33973	2024-08-9 00:24	2024-08-6	Show	GitHub Exploit DB Packet Storm

256816	6.1	MEDIUM Network	lopalopa	responsive_school_management_system	A Reflected Cross Site Scripting (XSS) vulnerability was found in /smsa/student_login.php in Kashipara Responsive School Management System v3.2.0, which allows remote attackers to execute arbitrary c…	CWE-79 Cross-site Scripting	CVE-2024-41242	2024-08-9 00:21	2024-08-8	Show	GitHub Exploit DB Packet Storm

256817	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_teachers.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view TEACHER d…	NVD-CWE-Other	CVE-2024-41245	2024-08-9 00:20	2024-08-8	Show	GitHub Exploit DB Packet Storm

256818	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_class.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view CLASS detail…	NVD-CWE-Other	CVE-2024-41244	2024-08-9 00:20	2024-08-8	Show	GitHub Exploit DB Packet Storm

256819	5.3	MEDIUM Network	lopalopa	responsive_school_management_system	An Incorrect Access Control vulnerability was found in /smsa/view_marks.php in Kashipara Responsive School Management System v3.2.0, which allows remote unauthenticated attackers to view MARKS detail…	NVD-CWE-Other	CVE-2024-41243	2024-08-9 00:19	2024-08-8	Show	GitHub Exploit DB Packet Storm

256820	-		-	-	Shopware is an open commerce platform. Prior to versions 6.6.5.1 and 6.5.8.13, the Shopware application API contains a search functionality which enables users to search through information stored wi…	-	CVE-2024-42357	2024-08-9 00:15	2024-08-9	Show	GitHub Exploit DB Packet Storm