Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241081 10 危険 e-commerce solutions - E-Commerce Scripts Shopping Cart Script の admin.aspx における SQL インジェクションの脆弱性 - CVE-2007-4121 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
241082 7.5 危険 berthanas ziyaretci - Berthanas Ziyaretci Defteri 2.0 の yonetici.asp における SQL インジェクションの脆弱性 - CVE-2007-4119 2012-06-26 15:54 2007-08-1 Show GitHub Exploit DB Packet Storm
241083 3.5 注意 awbs - AWBS における他の専用サーバの設定データを取得される脆弱性 - CVE-2007-4113 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241084 6.8 警告 awbs - AWBS における SQL インジェクションの脆弱性 - CVE-2007-4112 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241085 6.8 警告 codewidgets - Real Estate listing website アプリケーションテンプレートのログインスクリプトにおける SQL インジェクションの脆弱性 - CVE-2007-4111 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241086 7.5 危険 codewidgets - Message Board / Threaded Discussion Forum Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4110 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241087 7.5 危険 codewidgets - Online Store Application Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4109 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241088 7.5 危険 codewidgets - Online Event Registration Template の sign_in.aspx における SQL インジェクションの脆弱性 - CVE-2007-4108 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241089 6.8 警告 codewidgets - CodeWidgets Pay Roll - Time Sheet and Punch Card Application における SQL インジェクションの脆弱性 - CVE-2007-4106 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
241090 9.3 危険 Baidu, Inc. - Baidu Soba Search Bar の BaiduBar.dll の特定の ActiveX コントロールにおける任意のコードを実行される脆弱性 - CVE-2007-4105 2012-06-26 15:54 2007-07-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
272781 - limesurvey limesurvey Multiple unspecified vulnerabilities in LimeSurvey (formerly PHPSurveyor) before 1.71 have unknown impact and attack vectors. NVD-CWE-noinfo
CVE-2008-2570 2023-11-7 11:02 2008-06-7 Show GitHub Exploit DB Packet Storm
272782 - limesurvey limesurvey Cross-site request forgery (CSRF) vulnerability in LimeSurvey (formerly PHPSurveyor) before 1.71 allows remote attackers to change arbitrary quotas as administrators via a "modify quota" action. CWE-79
Cross-site Scripting 		CVE-2008-2571 2023-11-7 11:02 2008-06-7 Show GitHub Exploit DB Packet Storm
272783 - - - Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2008-1035. Reason: This candidate is a reservation duplicate of CVE-2008-1035. Notes: All CVE users should reference CVE-2008-103… CWE-20
 Improper Input Validation  		CVE-2008-2007 2023-11-7 11:02 2008-05-22 Show GitHub Exploit DB Packet Storm
272784 - fireftp fireftp Directory traversal vulnerability in the FireFTP add-on before 0.98.20080518 for Firefox allows remote FTP servers to create or overwrite arbitrary files via ..\ (dot dot backslash) sequences in resp… CWE-22
Path Traversal 		CVE-2008-2399 2023-11-7 11:02 2008-05-22 Show GitHub Exploit DB Packet Storm
272785 - gnu gnutls The _gnutls_server_name_recv_params function in lib/ext_server_name.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 does not properly calculate the number of Server Names in a TLS 1.0 Client Hel… CWE-189
Numeric Errors 		CVE-2008-1948 2023-11-7 11:02 2008-05-21 Show GitHub Exploit DB Packet Storm
272786 - gnu gnutls The _gnutls_recv_client_kx_message function in lib/gnutls_kx.c in libgnutls in gnutls-serv in GnuTLS before 2.2.4 continues to process Client Hello messages within a TLS message after one has already… CWE-287
Improper Authentication 		CVE-2008-1949 2023-11-7 11:02 2008-05-21 Show GitHub Exploit DB Packet Storm
272787 - gnu gnutls Integer signedness error in the _gnutls_ciphertext2compressed function in lib/gnutls_cipher.c in libgnutls in GnuTLS before 2.2.4 allows remote attackers to cause a denial of service (buffer over-rea… CWE-189
Numeric Errors 		CVE-2008-1950 2023-11-7 11:02 2008-05-21 Show GitHub Exploit DB Packet Storm
272788 - linux linux_kernel The utimensat system call (sys_utimensat) in Linux kernel 2.6.22 and other versions before 2.6.25.3 does not check file permissions when certain UTIME_NOW and UTIME_OMIT combinations are used, which … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2148 2023-11-7 11:02 2008-05-13 Show GitHub Exploit DB Packet Storm
272789 - videolan vlc Untrusted search path vulnerability in VideoLAN VLC before 0.9.0 allows local users to execute arbitrary code via a malicious library under the modules/ or plugins/ subdirectories of the current work… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2147 2023-11-7 11:02 2008-05-13 Show GitHub Exploit DB Packet Storm
272790 - cpanel cpanel The WHM interface 11.15.0 for cPanel 11.18 before 11.18.4 and 11.22 before 11.22.3 allows remote attackers to bypass XSS protection and inject arbitrary script or HTML via repeated, improperly-ordere… CWE-79
Cross-site Scripting 		CVE-2008-2070 2023-11-7 11:02 2008-05-13 Show GitHub Exploit DB Packet Storm