Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239061 7.5 危険 accscripts - Acc Statistics の admin/Index.php における管理アクセスを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6294 2012-06-26 16:10 2009-02-26 Show GitHub Exploit DB Packet Storm
239062 7.5 危険 accscripts - Acc Real Estate の admin/Index.php における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6293 2012-06-26 16:10 2009-02-26 Show GitHub Exploit DB Packet Storm
239063 7.5 危険 accscripts - Acc Autos における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6292 2012-06-26 16:10 2009-02-26 Show GitHub Exploit DB Packet Storm
239064 7.5 危険 accscripts - Acc PHP eMail における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6291 2012-06-26 16:10 2009-02-26 Show GitHub Exploit DB Packet Storm
239065 7.5 危険 getmiro - Broadcast Machine における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6287 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
239066 7.5 危険 Activewebsoftwares - Active Newsletter の SubscriberStart.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6286 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
239067 7.5 危険 businessvein - PHP TV Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6285 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
239068 7.5 危険 1scripts - Z1Exchange の edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6284 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
239069 7.5 危険 bluocms - Bluo CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6281 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
239070 7.5 危険 appstate - Appalachian State University phpWebSite の links.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6266 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
256541 - - - Ibexa RichText Field Type is a Field Type for supporting rich formatted text stored in a structured XML format. In versions on the 4.6 branch prior to 4.6.10, the validator for the RichText fieldtype… - CVE-2024-43369 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256542 - - - In setForceHideNonSystemOverlayWindowIfNeeded of WindowState.java, there is a possible way for message content to be visible on the screensaver while lock screen visibility settings are restricted by… - CVE-2024-34741 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256543 - - - In attributeBytesBase64 and attributeBytesHex of BinaryXmlSerializer.java, there is a possible arbitrary XML injection due to an integer overflow. This could lead to local escalation of privilege wit… - CVE-2024-34740 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256544 - - - In shouldRestrictOverlayActivities of UsbProfileGroupSettingsManager.java, there is a possible escape from SUW due to a logic error in the code. This could lead to local escalation of privilege with … - CVE-2024-34739 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256545 - - - In multiple functions of AppOpsService.java, there is a possible way for unprivileged apps to read their own restrictRead app-op states due to a logic error in the code. This could lead to local esca… - CVE-2024-34738 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256546 - - - In ensureSetPipAspectRatioQuotaTracker of ActivityClientController.java, there is a possible way to generate unmovable and undeletable pip windows due to a logic error in the code. This could lead to… - CVE-2024-34737 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256547 - - - In multiple functions of TranscodingResourcePolicy.cpp, there is a possible memory corruption due to a race condition. This could lead to local escalation of privilege with no additional execution pr… - CVE-2024-34731 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256548 - - - In _MMU_AllocLevel of mmu_common.c, there is a possible arbitrary code execution due to an integer overflow. This could lead to local escalation of privilege in the kernel with no additional executio… - CVE-2024-31333 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256549 - - - AVEVA Historian Server has a vulnerability, if exploited, could allow a malicious SQL command to execute under the privileges of an interactive Historian REST Interface user who had been socially eng… CWE-89
SQL Injection 		CVE-2024-6456 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm
256550 - - - Boa is an embeddable and experimental Javascript engine written in Rust. Starting in version 0.16 and prior to version 0.19.0, a wrong assumption made when handling ECMAScript's `AsyncGenerator` oper… - CVE-2024-43367 2024-08-19 22:00 2024-08-16 Show GitHub Exploit DB Packet Storm