Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239871 7.5 危険 flashblog - FlashBlog の admin/Editor/imgupload.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2574 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
239872 8.5 危険 freeSSHd - freeSSHd の SFTP におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2573 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
239873 4.3 警告 fourtwosevenbb - 427BB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2561 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
239874 7.5 危険 fourtwosevenbb - 427BB の showpost.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2560 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
239875 7.5 危険 Borland Software Corporation - Borland Interbase における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-2559 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
239876 5 警告 creloaded - CRE Loaded におけるクッキーを傍受される脆弱性 CWE-310
暗号の問題 		CVE-2008-2558 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
239877 4.3 警告 creloaded - CRE Loaded におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2557 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
239878 7.5 危険 easyway - EasyWay CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2555 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
239879 7.5 危険 bp blog - BP Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2554 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
239880 5 警告 Digium - Asterisk Addons の ooh323 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2543 2012-06-26 16:02 2008-06-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292051 - alessandro_gardich
joerg_wendland 		nss_postgresql
libnss-pgsql 		libnss-pgsql in nss-pgsql 0.9.0 and earlier allows remote attackers to execute arbitrary SQL queries by inserting SQL code into an HTTP request. NVD-CWE-Other
CVE-2001-1089 2017-10-10 10:29 2001-09-10 Show GitHub Exploit DB Packet Storm
292052 - feedburner feedsmith Cross-site request forgery (CSRF) vulnerability in the FeedBurner FeedSmith 2.2 plugin for WordPress allows remote attackers to change settings and hijack blog feeds via a request to wp-admin/options… CWE-352
 Origin Validation Error 		CVE-2007-5229 2017-10-5 10:29 2007-10-6 Show GitHub Exploit DB Packet Storm
292053 - oscommerce oscommerce Multiple cross-site scripting (XSS) vulnerabilities in osCommerce 2.2 Milestone 2 Update 060817 allow remote attackers to inject arbitrary web script or HTML via the (1) page parameter in the (a) ban… NVD-CWE-Other
CVE-2006-5190 2017-10-5 10:29 2006-10-10 Show GitHub Exploit DB Packet Storm
292054 - microsoft windows_xp The Microsoft Wireless Zero Configuration system (WZCS) stores WEP keys and pair-wise Master Keys (PMK) of the WPA pre-shared key in plaintext in memory of the explorer process, which allows attacker… NVD-CWE-Other
CVE-2005-4696 2017-10-5 10:29 2005-12-31 Show GitHub Exploit DB Packet Storm
292055 - proftpd_project proftpd ProFTPD 1.2.7 through 1.2.9rc2 does not properly translate newline characters when transferring files in ASCII mode, which allows remote attackers to execute arbitrary code via a buffer overflow usin… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2003-0831 2017-10-5 10:29 2003-11-17 Show GitHub Exploit DB Packet Storm
292056 - savant savant_web_server Buffer overflow in Savant Web Server 3.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. NVD-CWE-Other
CVE-2002-1120 2017-10-5 10:29 2002-09-24 Show GitHub Exploit DB Packet Storm
292057 - randomsoftware icarus Stack-based buffer overflow in Icarus 2.0 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via a crafted Portable Game Notation (.pgn) file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2009-1071 2017-10-4 10:29 2009-03-26 Show GitHub Exploit DB Packet Storm
292058 - microtik routeros SNMPd in MikroTik RouterOS 3.2 and earlier allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP SET request. NVD-CWE-Other
CVE-2008-0680 2017-10-4 10:29 2008-02-12 Show GitHub Exploit DB Packet Storm
292059 - yaws yaws Yaws before 1.80 allows remote attackers to cause a denial of service (memory consumption and crash) via a request with a large number of headers. CWE-399
 Resource Management Errors 		CVE-2009-0751 2017-09-29 10:34 2009-03-3 Show GitHub Exploit DB Packet Storm
292060 - mldonkey mldonkey Absolute path traversal vulnerability in MLDonkey 2.8.4 through 2.9.7 allows remote attackers to read arbitrary files via a leading "//" (double slash) in the filename. CWE-22
Path Traversal 		CVE-2009-0753 2017-09-29 10:34 2009-03-4 Show GitHub Exploit DB Packet Storm