Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240061	4.3	警告	DivX	-	DivXDB 2002 の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1800	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240062	7.5	危険	dragoon	-	Dragoon の forum/kietu/libs/calendrier.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1798	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240063	4.9	警告	comix	-	Comix におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-1796	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240064	4.3	警告	Blackboard, Inc.	-	Blackboard Academic Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1795	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240065	9.3	危険	CA Technologies	-	DSM gui_cm_ctrls ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1786	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240066	5	警告	advanced software engineering	-	Advanced Software Engineering ChartDirector の phpdemo/viewsource.php における重要な情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-1782	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240067	6.8	警告	dragoon	-	Dragoon の includes/header.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1773	2012-06-26 16:02	2008-04-14	Show	GitHub Exploit DB Packet Storm

240068	7.5	危険	Firefly Media Server	-	Firefly Media Server の ws_getpostvars 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-1771	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

240069	9.3	危険	アカマイテクノロジーズ	-	Akamai Download Manager ActiveX コントロールにおける CRLF インジェクションの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-1770	2012-06-26 16:02	2008-06-4	Show	GitHub Exploit DB Packet Storm

240070	7.5	危険	blogator-script	-	Blogator-script の _blogadata/include/sond_result.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1763	2012-06-26 16:02	2008-04-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 23, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
256901	-	microsoft	windows_xp windows_2003_server windows_2000	NOTE: this issue has been disputed by third parties. Microsoft Windows XP, 2000, and 2003 allows local users to kill a writable process by using the CreateRemoteThread function with certain argument…	NVD-CWE-Other	CVE-2005-3981	2024-08-8 09:15	2005-12-4	Show	GitHub Exploit DB Packet Storm

256902	-	ovbb	ovbb	Multiple SQL injection vulnerabilities in OvBB 0.08a allow remote attackers to execute arbitrary SQL commands via the (1) threadid parameter to thread.php and (2) userid parameter to profile.php. NOT…	NVD-CWE-Other	CVE-2005-3918	2024-08-8 09:15	2005-11-30	Show	GitHub Exploit DB Packet Storm

256903	-	phphandicapper	php_handicapper	SQL injection vulnerability in process_signup.php in PHP Handicapper allows remote attackers to execute arbitrary SQL commands via the serviceid parameter. NOTE: on 20060210, the vendor disputed thi…	CWE-89 SQL Injection	CVE-2005-3497	2024-08-8 09:15	2005-11-4	Show	GitHub Exploit DB Packet Storm

256904	-	jelsoft	vbulletin	NOTE: this issue has been disputed by the vendor. Cross-site scripting (XSS) vulnerability in register.php for unknown versions of vBulletin allows remote attackers to inject arbitrary HTML or web s…	NVD-CWE-Other	CVE-2004-0091	2024-08-8 09:15	2004-02-17	Show	GitHub Exploit DB Packet Storm

256905	-	filezilla	filezilla	NOTE: this issue has been disputed by the vendor. FileZilla 2.2.14b and 2.2.15, and possibly earlier versions, when "Use secure mode" is disabled, uses a weak encryption scheme to store the user's p…	NVD-CWE-Other	CVE-2005-2898	2024-08-8 08:15	2005-09-15	Show	GitHub Exploit DB Packet Storm

256906	-	neocrome	land_down_under	Note: the vendor has disputed this issue. Multiple cross-site scripting (XSS) vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to inject arbitrary web script or HTML via the (1) c …	NVD-CWE-Other	CVE-2005-2674	2024-08-8 08:15	2005-08-23	Show	GitHub Exploit DB Packet Storm

256907	-	neocrome	land_down_under	Note: the vendor has disputed this issue. Multiple SQL injection vulnerabilities in Land Down Under (LDU) 800 allow remote attackers to execute arbitrary SQL commands via the (1) s or (2) m parameter…	NVD-CWE-Other	CVE-2005-2675	2024-08-8 08:15	2005-08-23	Show	GitHub Exploit DB Packet Storm

256908	-	incredible_interactive	dragonfly_commerce	Dragonfly Commerce allows remote attackers to change a product price by modifying the x_DragonflyCartProductPrice hidden field to (1) dc_Categorieslist.asp, (2) dc_Categoriesview.asp, (3) dc_products…	NVD-CWE-Other	CVE-2005-2220	2024-08-8 08:15	2005-07-12	Show	GitHub Exploit DB Packet Storm

256909	-	incredible_interactive	dragonfly_commerce	Multiple SQL injection vulnerabilities in Dragonfly Commerce allows remote attackers to modify SQL statements and possibly execute arbitrary SQL commands via the (1) key parameter to dc_Categoriesvie…	NVD-CWE-Other	CVE-2005-2221	2024-08-8 08:15	2005-07-12	Show	GitHub Exploit DB Packet Storm

256910	-	sun	javamail	ReadMessage.jsp in JavaMail API 1.1.3 through 1.3, as used by Apache Tomcat 5.0.16, allows remote attackers to view other users' e-mail attachments via a direct request to /mailboxesdir/username@doma…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2005-1753	2024-08-8 07:15	2005-12-31	Show	GitHub Exploit DB Packet Storm