Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245201 7.5 危険 cpcommerce - cpCommerce におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1908 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245202 7.5 危険 cpcommerce - cpCommerce の functions/display_page.func.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1907 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245203 4.3 警告 cpcommerce - cpCommerce の calendar.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1906 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245204 7.5 危険 easy-scripts - Tr Script News の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1957 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
245205 7.5 危険 cicoandcico - Cicoandcico CcMail における "admin エリア" へのアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-1904 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245206 5 警告 Debian - aptlinex の GUI におけるパッケージを削除される脆弱性 CWE-DesignError
CVE-2008-1902 2012-06-26 16:02 2008-04-17 Show GitHub Exploit DB Packet Storm
245207 7.2 危険 Debian - aptlinex における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-1901 2012-06-26 16:02 2008-04-17 Show GitHub Exploit DB Packet Storm
245208 7.5 危険 carboncommunities - Carbon Communities の option_Update.asp における任意のメンバ情報を編集される脆弱性 CWE-DesignError
CVE-2008-1900 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245209 4.3 警告 Digium - Asterisk Open Source の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2008-1897 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245210 4.3 警告 carboncommunities - Carbon Communities におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1896 2012-06-26 16:02 2008-04-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351691 - apple mac_os_x Mac OS X before 10.3.8 users world-writable permissions for certain directories, which may allow local users to gain privileges, possibly via the receipt cache or ColorSync profiles. NVD-CWE-Other
CVE-2005-0712 2008-09-11 04:36 2005-05-2 Show GitHub Exploit DB Packet Storm
351692 - clam_anti-virus clamav ClamAV 0.80 and earlier allows remote attackers to cause a denial of service (clamd daemon crash) via a ZIP file with malformed headers. NVD-CWE-Other
CVE-2005-0133 2008-09-11 04:35 2005-05-2 Show GitHub Exploit DB Packet Storm
351693 - smartlist smartlist The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie… NVD-CWE-Other
CVE-2005-0157 2008-09-11 04:35 2005-05-3 Show GitHub Exploit DB Packet Storm
351694 - clam_anti-virus clamav ClamAV 0.80 and earlier allows remote attackers to bypass virus scanning via a base64 encoded image in a data: (RFC 2397) URL. NVD-CWE-Other
CVE-2005-0218 2008-09-11 04:35 2005-05-2 Show GitHub Exploit DB Packet Storm
351695 - phpbb_group phpbb Directory traversal vulnerability in (1) usercp_register.php and (2) usercp_avatar.php for phpBB 2.0.11, and possibly other versions, with gallery avatars enabled, allows remote attackers to delete (… NVD-CWE-Other
CVE-2005-0258 2008-09-11 04:35 2005-03-14 Show GitHub Exploit DB Packet Storm
351696 - phpbb_group phpbb phpBB 2.0.11, and possibly other versions, with remote avatars and avatar uploading enabled, allows local users to read arbitrary files by providing both a local and remote location for an avatar, th… NVD-CWE-Other
CVE-2005-0259 2008-09-11 04:35 2005-03-14 Show GitHub Exploit DB Packet Storm
351697 - zakon_group openconf Cross-site scripting (XSS) vulnerability in Openconf 1.04, and possibly other versions before 1.10, allows remote attackers to inject arbitrary HTML and web script via the paper title. NVD-CWE-Other
CVE-2005-0407 2008-09-11 04:35 2005-05-2 Show GitHub Exploit DB Packet Storm
351698 - citrusdb citrusdb CitrusDB 0.3.6 and earlier does not verify authorization for the (1) importcc.php and (2) uploadcc.php, which allows remote attackers to upload credit card data and obtain sensitive information such … NVD-CWE-Other
CVE-2005-0409 2008-09-11 04:35 2005-02-14 Show GitHub Exploit DB Packet Storm
351699 - citrusdb citrusdb SQL injection vulnerability in importcc.php for CitrusDB 0.3.6 and earlier allows remote attackers to inject data via the fields of a CSV file. NVD-CWE-Other
CVE-2005-0410 2008-09-11 04:35 2005-02-14 Show GitHub Exploit DB Packet Storm
351700 - citrusdb citrusdb Directory traversal vulnerability in index.php for CitrusDB 0.3.6 and earlier allows remote attackers and local users to include arbitrary PHP files via .. (dot dot) sequences in the load parameter. NVD-CWE-Other
CVE-2005-0411 2008-09-11 04:35 2005-02-14 Show GitHub Exploit DB Packet Storm