Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240021 7.5 危険 classifieds caffe - Classifieds Caffe の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1936 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
240022 7.5 危険 crazy goomba - Crazy Goomba の commentaires.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1934 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
240023 7.1 危険 Digium - Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2008-1923 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
240024 7.5 危険 5th avenue software - 5th Avenue Shopping Cart の store_pages/category_list.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1921 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
240025 4.3 警告 amfphp - AMFPHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1917 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
240026 7.5 危険 devworx - DevWorx BlogWorx の view.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1915 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
240027 10 危険 BigAntSoft - BigAnt Messenger の AntServer モジュールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1914 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
240028 9.3 危険 DivX - DivX Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1912 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
240029 6.8 警告 1024cms - 1024 CMS の includes/system.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1911 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
240030 10 危険 Borland Software Corporation - Borland InterBase のibserver.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1910 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297591 - regretless dodos_mail Directory traversal vulnerability in dodosmail.php in DodosMail 2.5 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the dodosmail_header_file parameter. NO… CWE-22
Path Traversal 		CVE-2008-3163 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297592 - empire_server empire_server The files utility in Empire Server before 4.3.15 discloses the world creation time, which makes it easier for attackers to determine the PRNG seed. CWE-200
Information Exposure 		CVE-2008-3168 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297593 - empire_server empire_server Multiple heap-based buffer overflows in Empire Server before 4.3.15 allow remote attackers to cause a denial of service or possibly execute arbitrary code via unspecified vectors, related to a "coord… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-3169 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297594 - apple safari Apple Safari allows web sites to set cookies for country-specific top-level domains, such as co.uk and com.au, which could allow remote attackers to perform a session fixation attack and hijack a use… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3170 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297595 - apple safari Apple Safari sends Referer headers containing https URLs to different https web sites, which allows remote attackers to obtain potentially sensitive information by reading Referer log data. CWE-200
Information Exposure 		CVE-2008-3171 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297596 - opera opera Opera allows web sites to set cookies for country-specific top-level domains that have DNS A records, such as co.tv, which could allow remote attackers to perform a session fixation attack and hijack… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3172 2017-08-8 10:31 2008-07-15 Show GitHub Exploit DB Packet Storm
297597 - sophos es1000
es4000
sophos_anti-virus
sophos_puremessage_anti-virus 		Sophos virus detection engine 2.75 on Linux and Unix, as used in Sophos Email Appliance, Pure Message for Unix, and Sophos Anti-Virus Interface (SAVI), allows remote attackers to cause a denial of se… CWE-16
Configuration 		CVE-2008-3177 2017-08-8 10:31 2008-07-16 Show GitHub Exploit DB Packet Storm
297598 - chipmunk_scripts chipmunk_blogger Multiple cross-site scripting (XSS) vulnerabilities in Chipmunk Blog (Blogger) allow remote attackers to inject arbitrary web script or HTML via the membername parameter to (1) members.php, (2) comme… CWE-79
Cross-site Scripting 		CVE-2008-3186 2017-08-8 10:31 2008-07-16 Show GitHub Exploit DB Packet Storm
297599 - opensuse zypper zypp-refresh-patches in zypper in SUSE openSUSE 10.2, 10.3, and 11.0 does not ask the user before accepting repository keys, which allows remote repositories to cause a denial of service (package dat… CWE-20
 Improper Input Validation  		CVE-2008-3187 2017-08-8 10:31 2008-07-22 Show GitHub Exploit DB Packet Storm
297600 - phpmyadmin phpmyadmin Cross-site request forgery (CSRF) vulnerability in phpMyAdmin before 2.11.7.1 allows remote attackers to perform unauthorized actions via a link or IMG tag to (1) the db parameter in the "Creating a … CWE-352
 Origin Validation Error 		CVE-2008-3197 2017-08-8 10:31 2008-07-17 Show GitHub Exploit DB Packet Storm