Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240371 7.5 危険 boastmachine - boastMachine の mail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0422 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
240372 5.5 警告 Belkin International - Belkin Wireless G Plus MIMO Router F5D9230-4 の Web サーバにおける設定を変更される脆弱性 CWE-287
不適切な認証 		CVE-2008-0403 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
240373 4.3 警告 aflog - aflog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0398 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
240374 6.8 警告 aflog - aflog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0397 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
240375 7.8 危険 BitDefender - 複数の BitDefender 製品で使用される BitDefender Update Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0396 2012-06-26 15:55 2008-01-23 Show GitHub Exploit DB Packet Storm
240376 7.5 危険 citadel - Citadel SMTP サーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0394 2012-06-26 15:54 2008-01-23 Show GitHub Exploit DB Packet Storm
240377 5.8 警告 gradman - GradMan の info.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0393 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
240378 7.5 危険 alilg - aliTalk の inc/elementz.php における任意のユーザアカウントを追加される脆弱性 CWE-287
不適切な認証 		CVE-2008-0391 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
240379 7.5 危険 AuraCMS - AuraCMS のstat.php における online.db.txt へ任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0390 2012-06-26 15:54 2008-01-22 Show GitHub Exploit DB Packet Storm
240380 7.8 危険 Firebird Project - Firebird SQL における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-0387 2012-06-26 15:54 2008-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
292981 - babbleboard babbleboard Cross-site scripting (XSS) vulnerability in index.php in BabbleBoard 1.1.6 allows remote attackers to inject arbitrary web script or HTML via the username. CWE-79
Cross-site Scripting 		CVE-2008-6906 2017-09-29 10:33 2009-08-7 Show GitHub Exploit DB Packet Storm
292982 - 2532gigs 2532gigs Multiple SQL injection vulnerabilities in checkuser.php in 2532designs 2532|Gigs 1.2.2 Stable, when magic_quotes_gpc is disabled, allow remote attackers to execute arbitrary SQL commands via the (1) … CWE-89
SQL Injection 		CVE-2008-6907 2017-09-29 10:33 2009-08-7 Show GitHub Exploit DB Packet Storm
292983 - brewblogger brewblogger SQL injection vulnerability in the authenticateUser function in includes/authentication.inc.php in BrewBlogger (BB) 2.1.0.1, when magic_quotes_gpc is disabled, allows remote attackers to execute arbi… CWE-89
SQL Injection 		CVE-2008-6911 2017-09-29 10:33 2009-08-7 Show GitHub Exploit DB Packet Storm
292984 - zeeways shaadiclone Zeeways SHAADICLONE 2.0 allows remote attackers to bypass authentication and gain administrative privileges via a direct request to admin/home.php. CWE-287
Improper Authentication 		CVE-2008-6912 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292985 - zeeways zeejobsite Unrestricted file upload vulnerability in editresume_next.php in Zeeways ZEEJOBSITE 2.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as… CWE-20
 Improper Input Validation  		CVE-2008-6913 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292986 - zeeways zeeproperty Unrestricted file upload vulnerability in viewprofile.php in Zeeways ZEEPROPERTY 1.0 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension as a … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-6914 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292987 - zeeways zeeproperty Cross-site scripting (XSS) vulnerability in view_prop_details.php in Zeeways ZEEPROPERTY 1.0 allows remote attackers to inject arbitrary web script or HTML via the propid parameter. CWE-79
Cross-site Scripting 		CVE-2008-6915 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292988 - siemens
john_doe 		speedstream_5200
netport_software 		Siemens SpeedStream 5200 with NetPort Software 1.1 allows remote attackers to bypass authentication via an invalid Host header, possibly involving a trailing dot in the hostname. CWE-287
Improper Authentication 		CVE-2008-6916 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292989 - exoscripts exophpdesk SQL injection vulnerability in admin.php in Exocrew ExoPHPDesk 1.2 Final allows remote attackers to execute arbitrary SQL commands via the username (user parameter). CWE-89
SQL Injection 		CVE-2008-6917 2017-09-29 10:33 2009-08-8 Show GitHub Exploit DB Packet Storm
292990 - theportal2.pl theportal2 Unrestricted file upload vulnerability in admin/galeria.php in ThePortal2 2.2 allows remote attackers to execute arbitrary PHP code by uploading a file with an executable extension, then accessing it… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-6918 2017-09-29 10:33 2009-08-11 Show GitHub Exploit DB Packet Storm