Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241781	5	警告	aspapps	-	ASP AutoDealer におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5608	2012-06-26 16:03	2008-12-16	Show	GitHub Exploit DB Packet Storm

241782	5	警告	gazatem technologies	-	Gazatem QMail Mailing List Manager におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5606	2012-06-26 16:03	2008-12-16	Show	GitHub Exploit DB Packet Storm

241783	7.5	危険	aspapps	-	ASP Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5605	2012-06-26 16:03	2008-12-16	Show	GitHub Exploit DB Packet Storm

241784	6.8	警告	drennansoft	-	My Simple Forum の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5604	2012-06-26 16:03	2008-12-16	Show	GitHub Exploit DB Packet Storm

241785	6.8	警告	bonzacart	-	Bonza Cart の admin/ad_settings.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-5567	2012-06-26 16:03	2008-12-15	Show	GitHub Exploit DB Packet Storm

241786	6.8	警告	dinkumsoft	-	DL PayCart の admin/settings.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-5565	2012-06-26 16:03	2008-12-15	Show	GitHub Exploit DB Packet Storm

241787	7.8	危険	アルバネットワークス株式会社	-	Aruba Mobility Controller におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-5563	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241788	5	警告	aspapps	-	ASPPortal におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5562	2012-06-26 16:03	2008-12-15	Show	GitHub Exploit DB Packet Storm

241789	5	警告	dazzlindonna	-	PostEcards におけるデータベースファイルをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5560	2012-06-26 16:03	2008-12-15	Show	GitHub Exploit DB Packet Storm

241790	7.5	危険	dazzlindonna	-	PostEcards の sendcard.cfm における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5559	2012-06-26 16:03	2008-12-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267391	9.8	CRITICAL Network	duckdev	404_to_301	The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9323	2024-11-21 11:40	2019-08-17	Show	GitHub Exploit DB Packet Storm

267392	8.8	HIGH Network	erident_custom_login_and_dashboard_project	erident_custom_login_and_dashboard	The erident-custom-login-and-dashboard plugin before 3.5 for WordPress has CSRF.	CWE-352 Origin Validation Error	CVE-2015-9322	2024-11-21 11:40	2019-08-17	Show	GitHub Exploit DB Packet Storm

267393	9.8	CRITICAL Network	wpbusinessintelligence	wp_business_intelligence	The wp-business-intelligence-lite plugin before 1.6.3 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9326	2024-11-21 11:40	2019-08-16	Show	GitHub Exploit DB Packet Storm

267394	9.8	CRITICAL Network	bestwebsoft	visitors_online	The visitors-online plugin before 0.4 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9325	2024-11-21 11:40	2019-08-16	Show	GitHub Exploit DB Packet Storm

267395	9.8	CRITICAL Network	tipsandtricks-hq	all_in_one_wp_security_\&_firewall	The all-in-one-wp-security-and-firewall plugin before 3.9.1 for WordPress has multiple SQL injection issues.	CWE-89 SQL Injection	CVE-2015-9310	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267396	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit category feature.	CWE-352 Origin Validation Error	CVE-2015-9309	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267397	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit map feature.	CWE-352 Origin Validation Error	CVE-2015-9308	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267398	8.8	HIGH Network	flippercode	wp_google_map	The wp-google-map-plugin plugin before 2.3.10 for WordPress has CSRF in the add/edit location feature.	CWE-352 Origin Validation Error	CVE-2015-9307	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267399	9.8	CRITICAL Network	wpfastestcache	wp_fastest_cache	The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.	CWE-89 SQL Injection	CVE-2015-9316	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm

267400	9.8	CRITICAL Network	newstatpress_project	newstatpress	The newstatpress plugin before 1.0.1 for WordPress has SQL injection.	CWE-89 SQL Injection	CVE-2015-9315	2024-11-21 11:40	2019-08-15	Show	GitHub Exploit DB Packet Storm