Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245531 7.5 危険 classifieds caffe - Classifieds Caffe の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1936 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
245532 7.5 危険 crazy goomba - Crazy Goomba の commentaires.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1934 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
245533 7.1 危険 Digium - Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2008-1923 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245534 7.5 危険 5th avenue software - 5th Avenue Shopping Cart の store_pages/category_list.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1921 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245535 4.3 警告 amfphp - AMFPHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1917 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245536 7.5 危険 devworx - DevWorx BlogWorx の view.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1915 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245537 10 危険 BigAntSoft - BigAnt Messenger の AntServer モジュールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1914 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245538 9.3 危険 DivX - DivX Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1912 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245539 6.8 警告 1024cms - 1024 CMS の includes/system.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1911 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245540 10 危険 Borland Software Corporation - Borland InterBase のibserver.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1910 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253031 6.1 MEDIUM
Network 		dotcms dotcms XSS was discovered in dotCMS 3.7.0, with an unauthenticated attack against the /about-us/locations/index direction parameter. CWE-79
Cross-site Scripting 		CVE-2017-5877 2024-11-21 12:28 2017-02-7 Show GitHub Exploit DB Packet Storm
253032 6.1 MEDIUM
Network 		dotcms dotcms XSS was discovered in dotCMS 3.7.0, with an unauthenticated attack against the /news-events/events date parameter. CWE-79
Cross-site Scripting 		CVE-2017-5876 2024-11-21 12:28 2017-02-7 Show GitHub Exploit DB Packet Storm
253033 5.4 MEDIUM
Network 		dotcms dotcms XSS was discovered in dotCMS 3.7.0, with an authenticated attack against the /myAccount addressID parameter. CWE-79
Cross-site Scripting 		CVE-2017-5875 2024-11-21 12:28 2017-02-7 Show GitHub Exploit DB Packet Storm
253034 6.1 MEDIUM
Network 		sanadata sanacms Cross-site scripting (XSS) vulnerability in index.asp in SANADATA SanaCMS 7.3 allows remote attackers to inject arbitrary web script or HTML via the search parameter. CWE-79
Cross-site Scripting 		CVE-2017-5882 2024-11-21 12:28 2017-02-5 Show GitHub Exploit DB Packet Storm
253035 6.5 MEDIUM
Network 		splunk splunk Splunk Web in Splunk Enterprise versions 6.5.x before 6.5.2, 6.4.x before 6.4.5, 6.3.x before 6.3.9, 6.2.x before 6.2.13, 6.1.x before 6.1.12, 6.0.x before 6.0.13, 5.0.x before 5.0.17 and Splunk Ligh… CWE-20
 Improper Input Validation  		CVE-2017-5880 2024-11-21 12:28 2017-02-4 Show GitHub Exploit DB Packet Storm
253036 7.5 HIGH
Network 		php pear PECL in the download utility class in the Installer in PEAR Base System v1.10.1 does not validate file types and filenames after a redirect, which allows remote HTTP servers to overwrite files via cr… CWE-74
Injection 		CVE-2017-5630 2024-11-21 12:28 2017-02-2 Show GitHub Exploit DB Packet Storm
253037 6.5 MEDIUM
Adjacent 		asus rt-n56u_firmware An issue was discovered on the ASUS RT-N56U Wireless Router with Firmware 3.0.0.4.374_979. When executing an "nmap -O" command that specifies an IP address of an affected device, one can crash the de… NVD-CWE-noinfo
CVE-2017-5632 2024-11-21 12:28 2017-01-30 Show GitHub Exploit DB Packet Storm
253038 7.8 HIGH
Local 		artifex mujs An issue was discovered in Artifex Software, Inc. MuJS before 8f62ea10a0af68e56d5c00720523ebcba13c2e6a. The MakeDay function in jsdate.c does not validate the month, leading to an integer overflow wh… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-5628 2024-11-21 12:28 2017-01-30 Show GitHub Exploit DB Packet Storm
253039 7.8 HIGH
Local 		artifex mujs An issue was discovered in Artifex Software, Inc. MuJS before 4006739a28367c708dea19aeb19b8a1a9326ce08. The jsR_setproperty function in jsrun.c lacks a check for a negative array length. This leads t… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-5627 2024-11-21 12:28 2017-01-30 Show GitHub Exploit DB Packet Storm
253040 6.1 MEDIUM
Network 		wordpress
debian 		wordpress
debian_linux 		Cross-site scripting (XSS) vulnerability in wp-admin/includes/class-wp-posts-list-table.php in the posts list table in WordPress before 4.7.2 allows remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2017-5612 2024-11-21 12:28 2017-01-30 Show GitHub Exploit DB Packet Storm