Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239621	3.5	注意	mailmarshal	-	MailMachine SMTP の showMsg.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2831	2012-09-25 17:17	2008-10-2	Show	GitHub Exploit DB Packet Storm

239622	7.5	危険	nitropowered	-	NiTrO Web Gallery の albums.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2817	2012-09-25 17:17	2008-06-23	Show	GitHub Exploit DB Packet Storm

239623	7.5	危険	o2php	-	Oxygen の post.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2816	2012-09-25 17:17	2008-06-23	Show	GitHub Exploit DB Packet Storm

239624	7.5	危険	mymarket	-	MyMarket の shopping/index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2815	2012-09-25 17:17	2008-06-23	Show	GitHub Exploit DB Packet Storm

239625	4.3	警告	Zoho Corporation	-	ManageEngine OpUtils の MainLayout.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2797	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

239626	4.3	警告	idm computer solutions inc	-	IDM Computer Solutions Inc の UltraEdit の FTP クライアントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2795	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

239627	7.5	危険	kalptaru infotech	-	Kalptaru Infotech Comparison Engine Power Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2791	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

239628	7.5	危険	mountaingrafix	-	MountainGrafix easyTrade の detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2790	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

239629	4.3	警告	Free Document Management Software	-	OpenDocMan の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2788	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

239630	4.3	警告	Free Document Management Software	-	OpenDocMan の out.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2787	2012-09-25 17:17	2008-06-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
285401	-	mozilla	firefox firefox_esr seamonkey thunderbird	Multiple unspecified vulnerabilities in the browser engine in Mozilla Firefox before 35.0, Firefox ESR 31.x before 31.4, Thunderbird before 31.4, and SeaMonkey before 2.32 allow remote attackers to c…	NVD-CWE-noinfo	CVE-2014-8634	2024-11-21 11:19	2015-01-14	Show	GitHub Exploit DB Packet Storm

285402	-	jce-tech	video_niche_script	Multiple cross-site scripting (XSS) vulnerabilities in view.php in JCE-Tech PHP Video Script (aka Video Niche Script) 4.0 allow remote attackers to inject arbitrary web script or HTML via the (1) vid…	CWE-79 Cross-site Scripting	CVE-2014-8752	2024-11-21 11:19	2015-01-1	Show	GitHub Exploit DB Packet Storm

285403	-	schneider_electric	proclima	Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8514	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm

285404	-	schneider_electric	proclima	Buffer overflow in an ActiveX control in MDraw30.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8513	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm

285405	-	schneider_electric	proclima	Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability tha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8512	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm

285406	-	schneider-electric	proclima	Buffer overflow in an ActiveX control in Atx45.ocx in Schneider Electric ProClima before 6.1.7 allows remote attackers to execute arbitrary code via unspecified vectors, a different vulnerability tha…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-8511	2024-11-21 11:19	2014-12-28	Show	GitHub Exploit DB Packet Storm

285407	-	wpsymposiumpro	wp_symposium	SQL injection vulnerability in ajax/mail_functions.php in the WP Symposium plugin before 14.11 for WordPress allows remote authenticated users to execute arbitrary SQL commands via the tray parameter…	CWE-89 SQL Injection	CVE-2014-8810	2024-11-21 11:19	2014-12-25	Show	GitHub Exploit DB Packet Storm

285408	-	wpsymposiumpro	wp_symposium	Multiple cross-site scripting (XSS) vulnerabilities in the WP Symposium plugin before 14.11 for WordPress allow remote attackers to inject arbitrary web script or HTML via the (1) text parameter in a…	CWE-79 Cross-site Scripting	CVE-2014-8809	2024-11-21 11:19	2014-12-25	Show	GitHub Exploit DB Packet Storm

285409	-	ibm	infosphere_master_data_management_collaborative_server infosphere_master_data_management_server_for_product_information_management	Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Mana…	CWE-79 Cross-site Scripting	CVE-2014-8899	2024-11-21 11:19	2014-12-23	Show	GitHub Exploit DB Packet Storm

285410	-	ibm	infosphere_master_data_management_collaborative_server infosphere_master_data_management_server_for_product_information_management	Cross-site scripting (XSS) vulnerability in the Collaboration Server in IBM InfoSphere Master Data Management Server for Product Information Management 9.x through 9.1 and InfoSphere Master Data Mana…	CWE-79 Cross-site Scripting	CVE-2014-8898	2024-11-21 11:19	2014-12-23	Show	GitHub Exploit DB Packet Storm