Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
190841 4.3 警告 pegames - PEGames の itemplate2.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2871 2012-09-25 17:17 2008-06-26 Show GitHub Exploit DB Packet Storm
190842 7.5 危険 kalptaru infotech - Kalptaru Infotech PHP Site Lock の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2865 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190843 5 警告 Netwin Ltd - NetWin SurgeMail の IMAP サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-2859 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190844 7.5 危険 ownrs - OwnRS Beta の clanek.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2856 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190845 4.3 警告 ownrs - OwnRS Beta の clanek.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2855 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190846 7.5 危険 orlando cms - Orlando CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2854 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190847 10 危険 offsystem - OFF System におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2851 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190848 4.3 警告 mindtouch - MindTouch DekiWiki の search 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2848 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190849 7.5 危険 mybizz-classifieds - MyBizz-Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2845 2012-09-25 17:17 2008-06-25 Show GitHub Exploit DB Packet Storm
190850 6.8 警告 XChat - Windows 上の XChat における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2841 2012-09-25 17:17 2008-06-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 3, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268141 - netgear fvs318 NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to bypass the filters using hex encoded URLs, as demonstrated using a hex encoded file extension. NVD-CWE-Other
CVE-2005-0290 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268142 - netgear fvs318 Cross-site scripting (XSS) vulnerability in the log viewer in NETGEAR FVS318 running firmware 2.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via a bl… NVD-CWE-Other
CVE-2005-0291 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268143 - php_gift_registry phpgiftreg Multiple SQL injection vulnerabilities in index.php in PHP Gift Registry (phpGiftReg) 1.4.0, and possibly other versions before 1.5.0b1, allow remote attackers to execute arbitrary SQL commands via t… NVD-CWE-Other
CVE-2005-0292 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268144 - minis minis Directory traversal vulnerability in minis.php in Minis 0.2.1 allows remote attackers to read arbitrary files via a .. (dot dot) in the month parameter. NVD-CWE-Other
CVE-2005-0293 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268145 - minis minis minis.php in Minis 0.2.1 allows remote attackers to cause a denial of service (infinite loop) via an HTTP request for a file that the web server does not have permission to read, as demonstrated usin… NVD-CWE-Other
CVE-2005-0294 2017-07-11 10:32 2005-01-16 Show GitHub Exploit DB Packet Storm
268146 - inca nprotect_gameguard npptnt2.sys in nProtect Gameguard provides unrestricted I/O to any process that calls it, which allows local users to gain privileges. NVD-CWE-Other
CVE-2005-0295 2017-07-11 10:32 2005-01-17 Show GitHub Exploit DB Packet Storm
268147 - oracle database_server The DIRECTORY objects in Oracle 8i through Oracle 10g contain the location of a specific operating system directory, which allows users with read privileges to a DIRECTORY object to obtain sensitive … NVD-CWE-Other
CVE-2005-0298 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268148 - gforge gforge Directory traversal vulnerability in GForge 3.3 and earlier allows remote attackers to list arbitrary directories via a .. (dot dot) in the (1) dir parameter to controller.php or (2) dir_name paramet… NVD-CWE-Other
CVE-2005-0299 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm
268149 - jsboard jsboard Directory traversal vulnerability in session.php in JSBoard 2.0.9 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the table parameter. NVD-CWE-Other
CVE-2005-0300 2017-07-11 10:32 2005-01-20 Show GitHub Exploit DB Packet Storm
268150 - comersus_open_technologies comersus_backoffice_lite comersus_backoffice_install10.asp in BackOffice Lite 6.0 and 6.01 allows remote attackers to bypass authentication and gain privileges via a direct request to the program. NVD-CWE-Other
CVE-2005-0301 2017-07-11 10:32 2005-05-2 Show GitHub Exploit DB Packet Storm