Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240041	4.3	警告	carboncommunities	-	Carbon Communities におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1896	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240042	7.5	危険	carboncommunities	-	Carbon Communities における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1895	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240043	4.3	警告	ビジネスオブジェクツ	-	BusinessObjects InfoView の desktoplaunch/InfoView/logon/logon.object におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1894	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240044	4.3	警告	blogator-script	-	Blogator-script の bs_auth.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1892	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240045	7.5	危険	azrul Joomla!	-	Joomla! 用のJom Comment コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1890	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240046	7.5	危険	cdnetworks	-	CDNetworks Nefficient Download の NeffyLauncher ActiveX コントロールにおける保護メカニズムを回避される脆弱性	CWE-310 暗号の問題	CVE-2008-1886	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240047	6.8	警告	cdnetworks	-	CDNetworks Nefficient Download の NeffyLauncher ActiveX コントロールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1885	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240048	6.8	警告	Blackboard, Inc.	-	Blackboard Academic Suite のサーバにおけるアカウントにアクセスされる脆弱性	CWE-287 不適切な認証	CVE-2008-1883	2012-06-26 16:02	2008-04-18	Show	GitHub Exploit DB Packet Storm

240049	5	警告	Firebird Project Gentoo Linux	-	Gentoo Linux 上の Firebird のデフォルト設定における重要なデータベース情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-1880	2012-06-26 16:02	2008-05-12	Show	GitHub Exploit DB Packet Storm

240050	2.1	注意	Debian	-	tss における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1877	2012-06-26 16:02	2008-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256951	-		netbsd freebsd openbsd	netbsd freebsd openbsd	Integer overflow in banner/banner.c in FreeBSD, NetBSD, and OpenBSD might allow local users to modify memory via a long banner. NOTE: CVE and multiple third parties dispute this issue. Since banner …	NVD-CWE-Other	CVE-2006-6397	2024-08-8 06:15	2006-12-8	Show	GitHub Exploit DB Packet Storm

256952	-		symantec	livestate_agent_for_windows	Symantec LiveState 7.1 Agent for Windows allows local users to gain privileges by stopping the shstart.exe process and open "Web Self-Service" from the system tray icon, which will open a browser win…	NVD-CWE-Other	CVE-2006-6308	2024-08-8 06:15	2006-12-7	Show	GitHub Exploit DB Packet Storm

256953	-		kai_blankenhorn_bitfolge	simple_and_nice_index_file	PHP remote file inclusion vulnerability in index.php in Kai Blankenhorn Bitfolge simple and nice index file (aka snif) 1.5.2 and earlier allows remote attackers to execute arbitrary PHP code via a UR…	NVD-CWE-Other	CVE-2006-6285	2024-08-8 06:15	2006-12-4	Show	GitHub Exploit DB Packet Storm

256954	-		lynx_internet_solutions	evolve_merchant	SQL injection vulnerability in products.asp in Evolve shopping cart (aka Evolve Merchant) allows remote attackers to execute arbitrary SQL commands via the partno parameter. NOTE: the vendor dispute…	NVD-CWE-Other	CVE-2006-6207	2024-08-8 06:15	2006-12-1	Show	GitHub Exploit DB Packet Storm

256955	-		proftpd_project	proftpd	ProFTPD 1.3.0a and earlier does not properly set the buffer size limit when CommandBufferSize is specified in the configuration file, which leads to an off-by-two buffer underflow. NOTE: in November…	NVD-CWE-Other	CVE-2006-6171	2024-08-8 06:15	2006-12-1	Show	GitHub Exploit DB Packet Storm

256956	-		active_php_bookmarks	active_php_bookmarks	Multiple PHP remote file inclusion vulnerabilities in L. Brandon Stone and Nathanial P. Hendler Active PHP Bookmarks (APB) 1.1.02 allow remote attackers to execute arbitrary PHP code via a URL in the…	NVD-CWE-Other	CVE-2006-6167	2024-08-8 06:15	2006-11-29	Show	GitHub Exploit DB Packet Storm

256957	-		netbsd freebsd	netbsd freebsd	ld.so in FreeBSD, NetBSD, and possibly other BSD distributions does not remove certain harmful environment variables, which allows local users to gain privileges by passing certain environment variab…	NVD-CWE-Other	CVE-2006-6165	2024-08-8 06:15	2006-11-29	Show	GitHub Exploit DB Packet Storm

256958	-		novell	groupwise groupwise_webaccess	NOTE: this issue has been disputed by the vendor. The error module in Novell GroupWise WebAccess allows remote attackers who have not authenticated to read potentially sensitive information, such as…	NVD-CWE-Other	CVE-2005-0296	2024-08-8 06:15	2005-01-17	Show	GitHub Exploit DB Packet Storm

256959	9.8	CRITICAL Network	dlink	dir-300_firmware	D-Link DIR-300 REVA FIRMWARE v1.06B05_WW contains hardcoded credentials in the Telnet service.	CWE-798 Use of Hard-coded Credentials	CVE-2024-41616	2024-08-8 05:54	2024-08-7	Show	GitHub Exploit DB Packet Storm

256960	6.1	MEDIUM Network	phpgurukul	tourism_management_system	A reflected cross-site scripting (XSS) vulnerability in Phpgurukul Tourism Management System v2.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted…	CWE-79 Cross-site Scripting	CVE-2024-41333	2024-08-8 05:54	2024-08-7	Show	GitHub Exploit DB Packet Storm