Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239931 7.5 危険 munky - mUnky の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2876 2012-09-25 17:17 2008-06-26 Show GitHub Exploit DB Packet Storm
239932 4.3 警告 pegames - PEGames の itemplate2.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2871 2012-09-25 17:17 2008-06-26 Show GitHub Exploit DB Packet Storm
239933 7.5 危険 kalptaru infotech - Kalptaru Infotech PHP Site Lock の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2865 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239934 5 警告 Netwin Ltd - NetWin SurgeMail の IMAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-2859 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239935 7.5 危険 ownrs - OwnRS Beta の clanek.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2856 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239936 4.3 警告 ownrs - OwnRS Beta の clanek.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2855 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239937 7.5 危険 orlando cms - Orlando CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2854 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239938 10 危険 offsystem - OFF System におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2851 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239939 4.3 警告 mindtouch - MindTouch DekiWiki の search 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2848 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
239940 7.5 危険 mybizz-classifieds - MyBizz-Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2845 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268481 8.6 HIGH
Network 		lynxspring jenesys_bas_bridge An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. The application uses a hard-coded username with no password allowing an attacker into the system without authenticat… CWE-798
 Use of Hard-coded Credentials 		CVE-2016-8361 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268482 8.1 HIGH
Network 		moxa softcms An issue was discovered in Moxa SoftCMS versions prior to Version 1.6. A specially crafted URL request sent to the SoftCMS ASP Webserver can cause a double free condition on the server allowing an at… CWE-415
 Double Free 		CVE-2016-8360 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268483 8.6 HIGH
Network 		mitsubishielectric qj71e71-100_firmware
qj71e71-b5_firmware
qj71e71-b2_firmware 		An issue was discovered in Mitsubishi Electric Automation MELSEC-Q series Ethernet interface modules QJ71E71-100, all versions, QJ71E71-B5, all versions, and QJ71E71-B2, all versions. The affected Et… CWE-662
 Improper Synchronization 		CVE-2016-8368 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268484 5.3 MEDIUM
Network 		schneider-electric magelis_gtu_universal_panel_firmware
magelis_gto_advanced_optimum_panel_firmware
magelis_sto5_small_panel_firmware
magelis_stu_small_panel_firmware
magelis_xbt_gh_advanced_hand-held_panel… 		An issue was discovered in Schneider Electric Magelis HMI Magelis GTO Advanced Optimum Panels, all versions, Magelis GTU Universal Panel, all versions, Magelis STO5xx and STU Small panels, all versio… CWE-400
 Uncontrolled Resource Consumption 		CVE-2016-8367 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268485 10.0 CRITICAL
Network 		moxa oncellg3470a-lte_firmware
awk-4131a_firmware
awk-3191_firmware
awk-5232_firmware
awk-6232_firmware
awk-1121_firmware
awk-1127_firmware
wac-1001_v2_firmware
wac-2004_firmware 		An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-R… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8363 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268486 6.5 MEDIUM
Network 		moxa oncellg3470a-lte_firmware
awk-4131a_firmware
awk-3191_firmware
awk-5232_firmware
awk-6232_firmware
awk-1121_firmware
awk-1127_firmware
wac-1001_v2_firmware
wac-2004_firmware 		An issue was discovered in Moxa OnCell OnCellG3470A-LTE, AWK-1131A/3131A/4131A Series, AWK-3191 Series, AWK-5232/6232 Series, AWK-1121/1127 Series, WAC-1001 V2 Series, WAC-2004 Series, AWK-3121-M12-R… CWE-287
Improper Authentication 		CVE-2016-8362 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268487 6.1 MEDIUM
Network 		moxa iologik_e1200_series_firmware
iologik_e2200_series_firmware 		An issue was discovered in Moxa ioLogik E1210, firmware Version V2.4 and prior, ioLogik E1211, firmware Version V2.3 and prior, ioLogik E1212, firmware Version V2.4 and prior, ioLogik E1213, firmware… CWE-79
Cross-site Scripting 		CVE-2016-8359 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268488 7.1 HIGH
Network 		lynxspring jenesys_bas_bridge An issue was discovered in Lynxspring JENEsys BAS Bridge versions 1.1.8 and older. A user with read-only access can send commands to the software and the application will accept those commands. This … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8357 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268489 8.2 HIGH
Network 		kabona_ab webdatorcentral An issue was discovered in Kabona AB WebDatorCentral (WDC) application prior to Version 3.4.0. The web server URL inputs are not sanitized correctly, which may allow cross-site scripting vulnerabilit… CWE-79
Cross-site Scripting 		CVE-2016-8356 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm
268490 7.0 HIGH
Local 		schneider-electric unity_pro An issue was discovered in Schneider Electric Unity PRO prior to V11.1. Unity projects can be compiled as x86 instructions and loaded onto the PLC Simulator delivered with Unity PRO. These x86 instru… CWE-94
Code Injection 		CVE-2016-8354 2024-11-21 11:59 2017-02-14 Show GitHub Exploit DB Packet Storm