Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239191	7.5	危険	DeltaScripts	-	DeltaScripts PHP Classifieds の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5806	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239192	7.5	危険	DeltaScripts	-	DeltaScripts PHP Classifieds の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5805	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239193	7.5	危険	e-topbiz	-	e-topbiz Number Links 1 Php Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5804	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239194	7.5	危険	e-topbiz	-	E-topbiz Online Store の admin/login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5803	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239195	7.5	危険	e-topbiz	-	E-topbiz Online Store の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5802	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239196	7.5	危険	domainsellerpro	-	Domain Seller Pro の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5788	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239197	5.4	警告	マイクロソフト Arab Portal	-	Windows 上で稼動する Arab Portal の mod.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5787	2012-06-26 16:10	2008-12-31	Show	GitHub Exploit DB Packet Storm

239198	7.5	危険	cfagcms	-	CFAGCMS の right.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5781	2012-06-26 16:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

239199	7.5	危険	flds-script	-	FLDS の lpro.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5779	2012-06-26 16:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

239200	7.5	危険	flds-script	-	FLDS の report.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5778	2012-06-26 16:10	2008-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 20, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
307021	-	oracle	secure_backup	Unspecified vulnerability in the Oracle Secure Backup component in Oracle Secure Backup 10.1.0.1 allows remote attackers to affect confidentiality via unknown vectors.	NVD-CWE-noinfo	CVE-2008-3981	2013-01-3 14:00	2009-01-14	Show	GitHub Exploit DB Packet Storm

307022	-	nec	mobile_handset	Unspecified vulnerability in the NEC mobile handset allows remote attackers to cause a denial of service (reboot) via crafted packets. NOTE: as of 20071016, the only disclosure is a vague pre-advisor…	CWE-20 Improper Input Validation	CVE-2007-5557	2013-01-3 14:00	2007-10-19	Show	GitHub Exploit DB Packet Storm

307023	-	mybb	mybb	Multiple unspecified vulnerabilities in MyBulletinBoard (MyBB) before 1.0.2 have unspecified impact and attack vectors, related to (1) admin/moderate.php, (2) admin/themes.php, (3) inc/functions.php,…	NVD-CWE-noinfo	CVE-2006-0218	2013-01-3 14:00	2006-01-17	Show	GitHub Exploit DB Packet Storm

307024	-	invisionpower	invision_power_board	The make_password function in ipsclass.php in Invision Power Board (IPB) 2.1.4 uses random data generated from partially predictable seeds to create the authentication code that is sent by e-mail to …	CWE-287 Improper Authentication	CVE-2006-0633	2013-01-3 14:00	2006-02-10	Show	GitHub Exploit DB Packet Storm

307025	-	zen-cart	zen_cart	Zen Cart before 1.2.7 does not protect the admin/includes directory, which allows remote attackers to cause unknown impact via unspecified vectors, probably direct requests.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2006-0697	2013-01-3 14:00	2006-02-15	Show	GitHub Exploit DB Packet Storm

307026	-	e107	e107	Incomplete blacklist vulnerability in usersettings.php in e107 0.7.20 and earlier allows remote attackers to conduct SQL injection attacks via the loginname parameter.	NVD-CWE-Other	CVE-2010-2098	2012-12-13 13:00	2010-05-28	Show	GitHub Exploit DB Packet Storm

307027	-	e107	e107	Per: http://cwe.mitre.org/data/definitions/184.html 'CWE-184: Incomplete Blacklist'	NVD-CWE-Other	CVE-2010-2098	2012-12-13 13:00	2010-05-28	Show	GitHub Exploit DB Packet Storm

307028	-	kerio	personal_firewall serverfirewall	The FWDRV driver in Kerio Personal Firewall 4.2 and Server Firewall 1.1.1 allows local users to cause a denial of service (crash) by setting the PAGE_NOACCESS or PAGE_GUARD protection on the Page Env…	NVD-CWE-Other	CVE-2005-3286	2012-12-13 11:43	2005-10-23	Show	GitHub Exploit DB Packet Storm

307029	-	mybb	mybb	Multiple cross-site scripting (XSS) vulnerabilities in MyBB before 1.2.13 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to (1) portal.php and (2) inc/functi…	CWE-79 Cross-site Scripting	CVE-2008-3069	2012-11-27 12:48	2008-07-9	Show	GitHub Exploit DB Packet Storm

307030	-	mybb	mybb	Unspecified vulnerability in inc/datahandler/user.php in MyBB before 1.2.13 has unknown impact and attack vectors related to the $user['language'] variable, probably related to SQL injection.	CWE-89 NVD-CWE-noinfo SQL Injection	CVE-2008-3070	2012-11-27 12:48	2008-07-9	Show	GitHub Exploit DB Packet Storm