Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
244441	7.5	危険	ASP indir	-	sHibby sHop の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2872	2012-06-26 16:02	2008-06-26	Show	GitHub Exploit DB Packet Storm

244442	7.5	危険	e-topbiz	-	E-topbiz Link ADS の out.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2869	2012-06-26 16:02	2008-06-26	Show	GitHub Exploit DB Packet Storm

244443	7.5	危険	duware	-	DUware DUcalendar の detail.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2868	2012-06-26 16:02	2008-06-26	Show	GitHub Exploit DB Packet Storm

244444	7.5	危険	e-topbiz	-	E-topbiz Viral DX の adclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2867	2012-06-26 16:02	2008-06-26	Show	GitHub Exploit DB Packet Storm

244445	7.5	危険	Caupo.Net	-	Classic の csc_article_details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2866	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

244446	5	警告	elinestudio	-	ESC における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2864	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

244447	7.5	危険	elinestudio	-	ESC における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2863	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

244448	7.5	危険	elinestudio	-	ESC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2862	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

244449	4.3	警告	elinestudio	-	ESC におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2861	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

244450	7.5	危険	aj square	-	AJSquare AJ Auction Pro Web の category.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2860	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
352231	-	agh	htmlsearch	search.cgi in AGH HTMLsearch 1.0 allows remote attackers to execute arbitrary commands via shell metacharacters in the template parameter.	NVD-CWE-Other	CVE-2002-2113	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352232	-	hns	hns hns-lite	Cross-site scripting (XSS) vulnerability in Hyper NIKKI System (HNS) Lite before 0.9 and HNS before 2.10-pl2 allows remote attackers to inject arbitrary web script or HTML.	NVD-CWE-Other	CVE-2002-2115	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352233	-	netgear	rm356 rt338	Netgear RM-356 and RT-338 series SOHO routers allow remote attackers to cause a denial of service (crash) via a UDP port scan, as demonstrated using nmap.	NVD-CWE-Other	CVE-2002-2116	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352234	-	qnx	rtos	Multiple buffer overflows in QNX RTOS 4.25 may allow attackers to execute arbitrary code via long filename arguments to (1) Watcom or (2) int10.	NVD-CWE-Other	CVE-2002-2120	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352235	-	pointsec_mobile_technologies	pointsec	Pointsec before 1.2 for PalmOS stores a user's PIN number in memory in plaintext, which allows a local attacker who steals an unlocked Palm to retrieve the PIN by dumping memory.	NVD-CWE-Other	CVE-2002-2122	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352236	-	pedestal_software	integrity_protection_driver	restrictEnabled in Integrity Protection Driver (IPD) 1.2 delays driver installation for 20 minutes, which allows local users to insert malicious code by setting system clock to an earlier time.	NVD-CWE-Other	CVE-2002-2126	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352237	-	w-agora	w-agora	editform.php in w-Agora 4.1.5 allows local users to execute arbitrary PHP code via .. (dot dot) sequences in the file parameter.	NVD-CWE-Other	CVE-2002-2128	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352238	-	gallery_project	gallery	publish_xp_docs.php in Gallery 1.3.2 allows remote attackers to execute arbitrary PHP code by modifying the GALLERY_BASEDIR parameter to reference a URL on a remote web server that contains the code.	NVD-CWE-Other	CVE-2002-2130	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352239	-	perl-httpd	perl-httpd	Directory traversal vulnerability in Perl-HTTPd before 1.0.2 allows remote attackers to view arbitrary files via a .. (dot dot) in an unknown argument.	NVD-CWE-Other	CVE-2002-2131	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm

352240	-	telindus	1120_adsl_router	Telindus 1100 ASDL router running firmware 6.0.x uses weak encryption for UDP session traffic, which allows remote attackers to gain unauthorized access by sniffing and decrypting the administrative …	NVD-CWE-Other	CVE-2002-2133	2008-09-6 05:32	2002-12-31	Show	GitHub Exploit DB Packet Storm