Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258131	10	危険	VMware	-	複数の VMware 製品の ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3892	2010-09-13 15:57	2008-09-3	Show	GitHub Exploit DB Packet Storm

258132	7.2	危険	VMware	-	複数の VMware 製品の VIX API におけるバッファオーバーフローの脆弱性	CWE-119 CWE-noinfo	CVE-2008-2100	2010-09-13 15:56	2008-06-4	Show	GitHub Exploit DB Packet Storm

258133	7.8	危険	VMware	-	複数の VMware 製品の DHCP サービスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 CWE-noinfo	CVE-2008-1364	2010-09-13 15:56	2008-03-17	Show	GitHub Exploit DB Packet Storm

258134	6.8	警告	VMware	-	複数の VMware 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1363	2010-09-13 15:56	2008-03-17	Show	GitHub Exploit DB Packet Storm

258135	7.2	危険	VMware	-	複数の VMware 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1362	2010-09-13 15:55	2008-03-17	Show	GitHub Exploit DB Packet Storm

258136	6.8	警告	VMware	-	複数の VMware 製品における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1361	2010-09-13 15:55	2008-03-17	Show	GitHub Exploit DB Packet Storm

258137	7.1	危険	VMware	-	複数の VMware 製品の Virtual Machine Communication Interface (VMCI) におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-1340	2010-09-13 15:55	2008-03-17	Show	GitHub Exploit DB Packet Storm

258138	6.9	警告	VMware	-	複数の VMware 製品におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0923	2010-09-13 15:54	2008-02-26	Show	GitHub Exploit DB Packet Storm

258139	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の DIRAPI.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2882	2010-09-13 15:46	2010-08-24	Show	GitHub Exploit DB Packet Storm

258140	9.3	危険	アドビシステムズ	-	Adobe Shockwave Player の IML32.dll における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-2881	2010-09-13 15:46	2010-08-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
309521	-	xondie	vodpod_video_gallery	Cross-site scripting (XSS) vulnerability in vodpod-video-gallery/vodpod_gallery_thumbs.php in the Vodpod Video Gallery Plugin 3.1.5 for WordPress allows remote attackers to inject arbitrary web scrip…	CWE-79 Cross-site Scripting	CVE-2010-4875	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309522	-	ninkobb	ninkobb	Multiple cross-site scripting (XSS) vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) msn, or (4…	CWE-79 Cross-site Scripting	CVE-2010-4874	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309523	-	webidsupport	webid	Cross-site scripting (XSS) vulnerability in confirm.php in WeBid 0.8.5 P1 allows remote attackers to inject arbitrary web script or HTML via the id parameter.	CWE-79 Cross-site Scripting	CVE-2010-4873	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309524	-	pilotcart	pilot_cart	SQL injection vulnerability in newsroom.asp in ASPilot Pilot Cart 7.3 allows remote attackers to execute arbitrary SQL commands via the specific parameter.	CWE-89 SQL Injection	CVE-2010-4872	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309525	-	smartftp	smartftp	Unspecified vulnerability in SmartFTP before 4.0 Build 1142 allows attackers to have an unknown impact via a long filename.	NVD-CWE-noinfo	CVE-2010-4871	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309526	-	bloofox	bloofoxcms	SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote attackers to execute arbitrary SQL commands via the gender parameter.	CWE-89 SQL Injection	CVE-2010-4870	2024-11-21 10:21	2011-10-7	Show	GitHub Exploit DB Packet Storm

309527	-	drbenhur	dbhcms	SQL injection vulnerability in index.php in DBHcms 1.1.4 allows remote attackers to execute arbitrary SQL commands via the editmenu parameter.	CWE-89 SQL Injection	CVE-2010-4869	2024-11-21 10:21	2011-10-5	Show	GitHub Exploit DB Packet Storm

309528	-	w-agora	w-agora	Cross-site scripting (XSS) vulnerability in search.php3 (aka search.php) in W-Agora 4.2.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the bn parameter.	CWE-79 Cross-site Scripting	CVE-2010-4868	2024-11-21 10:21	2011-10-5	Show	GitHub Exploit DB Packet Storm

309529	-	w-agora	w-agora	Directory traversal vulnerability in search.php3 (aka search.php) in W-Agora 4.2.1 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the bn parame…	CWE-22 Path Traversal	CVE-2010-4867	2024-11-21 10:21	2011-10-5	Show	GitHub Exploit DB Packet Storm

309530	-	chipmunk-scripts	chipmunk_board	SQL injection vulnerability in index.php in Chipmunk Board 1.3 allows remote attackers to execute arbitrary SQL commands via the forumID parameter.	CWE-89 SQL Injection	CVE-2010-4866	2024-11-21 10:21	2011-10-5	Show	GitHub Exploit DB Packet Storm