Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
241221 7.5 危険 manzovi - ProQuiz の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6327 2012-09-25 17:27 2009-02-27 Show GitHub Exploit DB Packet Storm
241222 6.8 警告 phpaddedit - phpAddEdit の addedit-render.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-6313 2012-09-25 17:27 2009-02-27 Show GitHub Exploit DB Packet Storm
241223 7.5 危険 manzovi - ProQuiz の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6312 2012-09-25 17:27 2009-02-27 Show GitHub Exploit DB Packet Storm
241224 7.5 危険 gwm - Galatolo WebManager における管理者権限を取得される脆弱性 CWE-287
不適切な認証
CVE-2008-6300 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
241225 7.5 危険 maran - Maran PHP Shop の admin.php における管理者アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2008-6296 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
241226 6.8 警告 niclor - nicLOR Sito の includefile.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-6290 2012-09-25 17:27 2009-02-26 Show GitHub Exploit DB Packet Storm
241227 7.8 危険 interface-medien - Interface Medien ibase の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-6288 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
241228 6.5 警告 ortus.nirn - CMS Ortus の engine/users/users_edit_pub.inc における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6282 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
241229 6.8 警告 mjcreation - FamilyProject の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6274 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
241230 6 警告 myktools - MyKtools の configuration_script.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-6273 2012-09-25 17:27 2009-02-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265551 9.8 CRITICAL
Network
labf nfsaxe Buffer overflow in LabF nfsAxe FTP client 3.7 allows an attacker to execute code remotely. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-14742 2024-11-21 12:13 2019-10-26 Show GitHub Exploit DB Packet Storm
265552 9.8 CRITICAL
Network
dlink dir-868l_firmware
dir-890l_firmware
dir-885l_firmware
dir-895l_firmware
dir-880l_firmware
dir-895r_firmware
Certain D-Link products are affected by: Buffer Overflow. This affects DIR-880L 1.08B04 and DIR-895 L/R 1.13b03. The impact is: execute arbitrary code (remote). The component is: htdocs/fileaccess.cg… CWE-120
Classic Buffer Overflow
CVE-2017-14948 2024-11-21 12:13 2019-10-15 Show GitHub Exploit DB Packet Storm
265553 9.8 CRITICAL
Network
orpak siteomat A stack buffer overflow exists in one of the Orpak SiteOmat CGI components, allowing for remote code execution. The vulnerability affects all versions prior to 2017-09-25. CWE-119
Incorrect Access of Indexable Resource ('Range Error') 
CVE-2017-14854 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265554 9.8 CRITICAL
Network
orpak siteomat The Orpak SiteOmat OrCU component is vulnerable to code injection, for all versions prior to 2017-09-25, due to a search query that uses a direct shell command. By tampering with the request, an atta… CWE-94
Code Injection
CVE-2017-14853 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265555 9.8 CRITICAL
Network
orpak siteomat An insecure communication was found between a user and the Orpak SiteOmat management console for all known versions, due to an invalid SSL certificate. The attack allows for an eavesdropper to captur… CWE-310
Cryptographic Issues
CVE-2017-14852 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265556 9.8 CRITICAL
Network
orpak siteomat A SQL injection vulnerability exists in all Orpak SiteOmat versions prior to 2017-09-25. The vulnerability is in the login page, where the authentication validation process contains an insecure SELEC… CWE-89
SQL Injection
CVE-2017-14851 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265557 6.1 MEDIUM
Network
orpak siteomat All known versions of the Orpak SiteOmat web management console is vulnerable to multiple instances of Stored Cross-site Scripting due to improper external user-input validation. An attacker with acc… CWE-79
Cross-site Scripting
CVE-2017-14850 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265558 9.8 CRITICAL
Network
orpak siteomat An authentication bypass was found in an unknown area of the SiteOmat source code. All SiteOmat BOS versions are affected, prior to the submission of this exploit. Also, the SiteOmat does not force a… CWE-798
 Use of Hard-coded Credentials
CVE-2017-14728 2024-11-21 12:13 2019-06-4 Show GitHub Exploit DB Packet Storm
265559 6.1 MEDIUM
Network
open-xchange open-xchange_appsuite Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: Cross Site Scripting (XSS). CWE-79
Cross-site Scripting
CVE-2017-15030 2024-11-21 12:13 2019-05-24 Show GitHub Exploit DB Packet Storm
265560 4.3 MEDIUM
Network
open-xchange open-xchange_appsuite Open-Xchange GmbH OX App Suite 7.8.4 and earlier is affected by: SSRF. CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2017-15029 2024-11-21 12:13 2019-05-24 Show GitHub Exploit DB Packet Storm