Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Jan. 12, 2025, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
196221 6.5 警告 beaussier - RoomPHPlanning の admin/userform.php における新規に admin アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2488 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
196222 10 危険 emule - eMule Plus における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-2486 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
196223 6.8 警告 badongo - phpFix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2479 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
196224 6.8 警告 entertainmentscript - EntertainmentScript の page.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2459 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196225 4.3 警告 4shared - Starsgames Control Panel の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2458 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196226 7.5 危険 bitmixsoft - PHP-Jokesite の jokes_category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2457 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196227 7.5 危険 comicshout - ComicShout の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2456 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196228 7.5 危険 e107coders - e107用 MacGuru BLOG Engine プラグインの comment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2455 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196229 7.5 危険 ASP indir - Meto Forum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2448 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
196230 7.5 危険 calogic - CaLogic Calendars の userreg.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2444 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Jan. 12, 2025, 4:59 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
270531 - wise-ftp wise-ftp Directory traversal vulnerability in the FTP client in AceBIT WISE-FTP 4.1.0 and 5.5.8 allows remote FTP servers to create or overwrite arbitrary files via a ..\ (dot dot backslash) in a response to … CWE-22
Path Traversal 		CVE-2008-2889 2011-03-8 12:09 2008-06-28 Show GitHub Exploit DB Packet Storm
270532 - sun java_system_directory_server Sun Java System Directory Proxy Server 6.0, 6.1, and 6.2 classifies a connection using the "bind-dn" criteria, which can cause an incorrect application of policy and allows remote attackers to bypass… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-1995 2011-03-8 12:08 2008-04-29 Show GitHub Exploit DB Packet Storm
270533 - alaxala ax_router Unspecified vulnerability in AlaxalA AX routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related i… CWE-20
 Improper Input Validation  		CVE-2008-2171 2011-03-8 12:08 2008-05-14 Show GitHub Exploit DB Packet Storm
270534 - hitachi gr2000
gr3000
gr4000 		Unspecified vulnerability in Hitachi GR routers allows remote attackers to cause a denial of service (dropped session) via crafted BGP UPDATE messages, leading to route flapping, possibly a related i… CWE-20
 Improper Input Validation  		CVE-2008-2172 2011-03-8 12:08 2008-05-14 Show GitHub Exploit DB Packet Storm
270535 - openwsman openwsman The client in Openwsman 1.2.0 and 2.0.0, in unknown configurations, allows remote Openwsman servers to replay SSL sessions via unspecified vectors. CWE-94
Code Injection 		CVE-2008-2233 2011-03-8 12:08 2008-08-19 Show GitHub Exploit DB Packet Storm
270536 - apple safari Apple Safari before 3.1.2 on Windows does not properly interpret the URLACTION_SHELL_EXECUTE_HIGHRISK Internet Explorer zone setting, which allows remote attackers to bypass intended access restricti… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-2306 2011-03-8 12:08 2008-06-24 Show GitHub Exploit DB Packet Storm
270537 - clam_anti-virus clamav libclamav/chmunpack.c in the chm-parser in ClamAV before 0.94 allows remote attackers to cause a denial of service (application crash) via a malformed CHM file, related to an "invalid memory access." CWE-399
 Resource Management Errors 		CVE-2008-1389 2011-03-8 12:07 2008-09-5 Show GitHub Exploit DB Packet Storm
270538 - ibm websphere_mq MQSeries 5.1 in IBM WebSphere MQ 5.1 through 5.3.1 on the HP NonStop and Tandem NSK platforms does not require mqm group membership for execution of administrative tasks, which allows local users to … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-1592 2011-03-8 12:07 2008-04-1 Show GitHub Exploit DB Packet Storm
270539 - ibm aix Trusted Execution in IBM AIX 6.1 uses an incorrect pathname argument in a call to the trustchk_block_write function, which might allow local users to modify trusted files, related to missing checks i… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-1596 2011-03-8 12:07 2008-04-1 Show GitHub Exploit DB Packet Storm
270540 - ibm aix The kernel in IBM AIX 6.1 allows local users with ProbeVue privileges to read arbitrary kernel memory and obtain sensitive information via unspecified vectors. CWE-200
Information Exposure 		CVE-2008-1598 2011-03-8 12:07 2008-04-1 Show GitHub Exploit DB Packet Storm