Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242341 4.6 警告 bcoos - bcoos の modules/adresses/viewcat.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6381 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242342 7.5 危険 Activewebsoftwares - Active Web Helpdesk の default.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6380 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242343 5 警告 codefixer - CodefixerSoftware MailingListPro Free Edition における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6374 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242344 7.5 危険 Chipmunk Scripts - Chipmunk Guestbook の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6368 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242345 7.5 危険 adserversolutions - Ad Server Solutions Affiliate Software Java の logon.jsp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6366 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242346 6.4 警告 DNN - DotNetNuke におけるユーザアカウントに付加ロールを追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6399 2012-06-26 16:10 2008-12-24 Show GitHub Exploit DB Packet Storm
242347 6.9 警告 eric raymond - SNG の sng_regress における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-6398 2012-06-26 16:10 2008-08-24 Show GitHub Exploit DB Packet Storm
242348 7.5 危険 adserversolutions - Ad Server Solutions Ad Management Software Java の logon.jsp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6365 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242349 7.5 危険 adserversolutions - Ad Server Solutions Banner Exchange Solution Java の logon_process.jsp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6364 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242350 9.3 危険 capilano - DesignWorks Professional におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6363 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 13, 2026, 5:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267381 8.1 HIGH
Network 		jdf-sass_project jdf-sass jdf-sass is a fork from node-sass, jdf use only. jdf-sass downloads executable resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE)… CWE-310
Cryptographic Issues 		CVE-2016-10595 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267382 8.1 HIGH
Network 		ipip_project ipip ipip is a Node.js module to query geolocation information for an IP or domain, based on database by ipip.net. ipip downloads data resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10594 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267383 8.1 HIGH
Network 		jser-stat_project jser-stat jser-stat is a JSer.info stat library. jser-stat downloads data resources over HTTP, which leaves it vulnerable to MITM attacks. CWE-310
Cryptographic Issues 		CVE-2016-10592 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267384 8.1 HIGH
Network 		nwjs nw nw is an installer for nw.js. nw downloads zipped resources over HTTP, It may be possible to cause remote code execution (RCE) by swapping out the requested zip file with an attacker controlled binar… CWE-310
Cryptographic Issues 		CVE-2016-10588 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267385 8.1 HIGH
Network 		wasdk_project wasdk wasdk is a toolkit for creating WebAssembly modules. wasdk downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by… CWE-310
Cryptographic Issues 		CVE-2016-10587 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267386 8.1 HIGH
Network 		libxl_project libxl libxl provides Node bindings for the libxl library for reading and writing excel (XLS and XLSX) spreadsheets. libxl downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. I… CWE-310
Cryptographic Issues 		CVE-2016-10585 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267387 8.1 HIGH
Network 		openlayers closure-util closure-utils is Utilities for Closure Library based projects. closure-utils downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code … CWE-310
Cryptographic Issues 		CVE-2016-10583 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267388 8.1 HIGH
Network 		closurecompiler_project closurecompiler closurecompiler is a Closure Compiler for node.js. closurecompiler downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution … CWE-310
Cryptographic Issues 		CVE-2016-10582 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267389 8.1 HIGH
Network 		appgyver steroids Steroids is PhoneGap on Steroids, providing native UI elements, multiple WebViews and enhancements for better developer productivity. steroids downloads zipped resources over HTTP, which leaves it vu… CWE-310
Cryptographic Issues 		CVE-2016-10581 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm
267390 8.1 HIGH
Network 		nodewebkit_project nodewebkit nodewebkit is an installer for node-webkit. nodewebkit downloads zipped resources over HTTP, which leaves it vulnerable to MITM attacks. It may be possible to cause remote code execution (RCE) by swa… CWE-310
Cryptographic Issues 		CVE-2016-10580 2024-11-21 11:44 2018-06-2 Show GitHub Exploit DB Packet Storm