Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242331 4.4 警告 alcovebook - AlcoveBook sgml2x の rlatex における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-6397 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
242332 4.3 警告 celerondude - Celerondude Uploader の account.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6396 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
242333 7.8 危険 3com - 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point の Web 管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2008-6395 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
242334 7.5 危険 CS-Cart - CS-Cart の core/user.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6394 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
242335 7.5 危険 1scripts - Z1Exchange の showads.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6392 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242336 7.5 危険 aliensoftcorp - Rae Media Contact Management Software SOHO の asadmin/default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6389 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242337 5 警告 4u2ges - Rapid Classified におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6388 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242338 5 警告 Activewebsoftwares - Quick Tree View .NET におけるデータベースファイルをダウンロードされる脆弱性 CWE-200
情報漏えい 		CVE-2008-6387 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242339 4.3 警告 1scripts - Z1Exchange の showads.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6386 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242340 5 警告 aspportal - ASP Portal におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6382 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267321 8.1 HIGH
Network 		tomita_project tomita tomita is a node wrapper for Yandex Tomita Parser tomita downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by s… CWE-310
Cryptographic Issues 		CVE-2016-10662 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267322 8.1 HIGH
Network 		phantomjs-cheniu_project phantomjs-cheniu phantomjs-cheniu is a Headless WebKit with JS API phantomjs-cheniu downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution … CWE-310
Cryptographic Issues 		CVE-2016-10661 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267323 8.1 HIGH
Network 		fis-parser-sass-bin_project fis-parser-sass-bin fis-parser-sass-bin a plugin for fis to compile sass using node-sass-binaries. fis-parser-sass-bin downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible… CWE-310
Cryptographic Issues 		CVE-2016-10660 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267324 8.1 HIGH
Network 		co-cli-installer_project co-cli-installer co-cli-installer downloads the co-cli module as part of the install process, but does so over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE)… CWE-310
Cryptographic Issues 		CVE-2016-10657 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267325 8.1 HIGH
Network 		qbs_project qbs qbs is a build tool that helps simplify the build process for developing projects across multiple platforms. qbs downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It m… CWE-310
Cryptographic Issues 		CVE-2016-10656 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267326 8.1 HIGH
Network 		clang-extra_project clang-extra The clang-extra module installs LLVM's clang-extra tools. clang-extra downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code executi… CWE-310
Cryptographic Issues 		CVE-2016-10655 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267327 8.1 HIGH
Network 		sfml_project sfml sfml downloads resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10654 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267328 8.1 HIGH
Network 		xd-testing_project xd-testing xd-testing is a testing library for cross-device (XD) web applications. xd-testing downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote… CWE-310
Cryptographic Issues 		CVE-2016-10653 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267329 8.1 HIGH
Network 		prebuild-lwip_project prebuild-lwip prebuild-lwip is a module for comprehensive, fast, and simple image processing and manipulation. prebuild-lwip downloads resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10652 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm
267330 8.1 HIGH
Network 		webdriver-launcher_project webdriver-launcher webdriver-launcher is a Node.js Selenium Webdriver Launcher. webdriver-launcher downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote co… CWE-310
Cryptographic Issues 		CVE-2016-10651 2024-11-21 11:44 2018-06-5 Show GitHub Exploit DB Packet Storm