Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239031	7.5	危険	Activewebsoftwares	-	Active Web Helpdesk の default.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6380	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239032	5	警告	codefixer	-	CodefixerSoftware MailingListPro Free Edition における重要な情報を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6374	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239033	7.5	危険	Chipmunk Scripts	-	Chipmunk Guestbook の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6368	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239034	7.5	危険	adserversolutions	-	Ad Server Solutions Affiliate Software Java の logon.jsp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6366	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239035	6.4	警告	DNN	-	DotNetNuke におけるユーザアカウントに付加ロールを追加される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6399	2012-06-26 16:10	2008-12-24	Show	GitHub Exploit DB Packet Storm

239036	6.9	警告	eric raymond	-	SNG の sng_regress における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6398	2012-06-26 16:10	2008-08-24	Show	GitHub Exploit DB Packet Storm

239037	7.5	危険	adserversolutions	-	Ad Server Solutions Ad Management Software Java の logon.jsp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6365	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239038	7.5	危険	adserversolutions	-	Ad Server Solutions Banner Exchange Solution Java の logon_process.jsp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6364	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239039	9.3	危険	capilano	-	DesignWorks Professional におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6363	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

239040	7.5	危険	ezonelink	-	Multiple Membership の sitepage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6362	2012-06-26 16:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256321	8.6	HIGH Local	scilico	i-librarian	Cross Site Scripting vulnerability in Martin Kucej i-librarian v.5.11.0 and before allows a local attacker to execute arbitrary code via the search function in the import component.	CWE-79 Cross-site Scripting	CVE-2024-40500	2024-08-22 01:05	2024-08-13	Show	GitHub Exploit DB Packet Storm

256322	5.3	MEDIUM Network	matrix	javascript_sdk	matrix-js-sdk is a Matrix messaging protocol Client-Server SDK for JavaScript. A malicious homeserver can craft a room or room structure such that the predecessors form a cycle. The matrix-js-sdk's g…	CWE-674 Uncontrolled Recursion	CVE-2024-42369	2024-08-22 01:01	2024-08-21	Show	GitHub Exploit DB Packet Storm

256323	8.8	HIGH Network	projectcapsule	capsule	Capsule is a multi-tenancy and policy-based framework for Kubernetes. In Capsule v0.7.0 and earlier, the tenant-owner can patch any arbitrary namespace that has not been taken over by a tenant (i.e.,…	CWE-863 Incorrect Authorization	CVE-2024-39690	2024-08-22 01:01	2024-08-21	Show	GitHub Exploit DB Packet Storm

256324	5.4	MEDIUM Network	3ds	3dexperience	A reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIA Collaborative Industry Innovator from Release 3DEXPERIENCE R2022x through Release 3DEXPERIENCE R2024x allows an attacker to execu…	CWE-79 Cross-site Scripting	CVE-2024-6378	2024-08-22 00:53	2024-08-20	Show	GitHub Exploit DB Packet Storm

256325	9.8	CRITICAL Network	gotribe	gotribe-admin	A vulnerability was found in Go-Tribe gotribe-admin 1.0 and classified as problematic. Affected by this issue is the function InitRoutes of the file internal/app/routes/routes.go of the component Log…	CWE-502 Deserialization of Untrusted Data	CVE-2024-8003	2024-08-22 00:51	2024-08-20	Show	GitHub Exploit DB Packet Storm

256326	9.8	CRITICAL Network	demozx	gf_cms	A vulnerability was found in demozx gf_cms 1.0/1.0.1. It has been classified as critical. This affects the function init of the file internal/logic/auth/auth.go of the component JWT Authentication. T…	CWE-798 Use of Hard-coded Credentials	CVE-2024-8005	2024-08-22 00:49	2024-08-20	Show	GitHub Exploit DB Packet Storm

256327	9.8	CRITICAL Network	newlib_project	newlib	An issue in newlib v.4.3.0 allows an attacker to execute arbitrary code via the time unit scaling in the _gettimeofday function.	CWE-190 Integer Overflow or Wraparound	CVE-2024-30949	2024-08-22 00:48	2024-08-21	Show	GitHub Exploit DB Packet Storm

256328	-		-	-	The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not sanitise and escape user inputs, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins	-	CVE-2024-6843	2024-08-22 00:35	2024-08-19	Show	GitHub Exploit DB Packet Storm

256329	5.4	MEDIUM Network	adonesevangelista	laravel_property_management_system	A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/no…	CWE-79 Cross-site Scripting	CVE-2024-7945	2024-08-22 00:25	2024-08-20	Show	GitHub Exploit DB Packet Storm

256330	8.8	HIGH Network	adonesevangelista	laravel_property_management_system	A vulnerability was found in itsourcecode Laravel Property Management System 1.0. It has been classified as critical. Affected is the function UpdateDocumentsRequest of the file DocumentsController.p…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2024-7944	2024-08-22 00:24	2024-08-20	Show	GitHub Exploit DB Packet Storm