Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
Urgent
Important
Warning
Warning
CVE
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
脅威度ソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 3, 2025, 1:14 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
198421 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
198422 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
198423 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
198424 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
198425 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
198426 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
198427 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
198428 4.3 警告 F5 Networks - F5 FirePass SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2637 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
198429 9.3 危険 barad dur - BitKinex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2635 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
198430 7.5 危険 bearrivernet.net - I-Pos Internet Pay Online Store の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2634 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:Feb. 9, 2025, 4:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274201 - ibm websphere_application_server Unspecified vulnerability in the PropFilePasswordEncoder utility in IBM WebSphere Application Server (WAS) before 6.0.2 Fix Pack 25 (6.0.2.25) has unknown impact and attack vectors. NVD-CWE-noinfo
CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0741 2011-03-8 12:05 2008-02-13 Show GitHub Exploit DB Packet Storm
274202 - horde groupware
groupware_webmail_edition
turba_contact_manager 		lib/Driver/sql.php in Turba 2 (turba2) Contact Manager H3 2.1.x before 2.1.7 and 2.2.x before 2.2-RC3, as used in products such as Horde Groupware before 1.0.4 and Horde Groupware Webmail Edition bef… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-0807 2011-03-8 12:05 2008-02-19 Show GitHub Exploit DB Packet Storm
274203 - caroline caroline SQL injection vulnerability in Claroline before 1.8.9 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2008-0825 2011-03-8 12:05 2008-02-20 Show GitHub Exploit DB Packet Storm
274204 - caroline caroline Cross-site scripting (XSS) vulnerability in Claroline before 1.8.9 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2008-0826 2011-03-8 12:05 2008-02-20 Show GitHub Exploit DB Packet Storm
274205 - ibm lotus_quickr Cross-site scripting (XSS) vulnerability in Lotus Quickr for i5/OS before 8.0.0.2 Hotfix 11, when anonymous access is disabled on HTTP ports, allows remote attackers to inject arbitrary web script or… CWE-79
Cross-site Scripting 		CVE-2008-0834 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm
274206 - sun solaris Unspecified vulnerability in the vuidmice STREAMS modules in Sun Solaris 9 and 10 on x86 architectures allows local users to cause a denial of service (panic) via unspecified vectors that trigger a N… NVD-CWE-noinfo
CVE-2008-0836 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm
274207 - kerio
visnetic 		kerio_mailserver
visnetic_antivirus_plug-in_for_mail_server 		Buffer overflow in the Visnetic anti-virus plugin in Kerio MailServer before 6.5.0 might allow remote attackers to execute arbitrary code via unspecified vectors. CWE-94
Code Injection 		CVE-2008-0858 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm
274208 - kerio kerio_mailserver Unspecified vulnerability in Kerio MailServer before 6.5.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to decoding of uuencoded input, which triggers … NVD-CWE-noinfo
CWE-399
 Resource Management Errors 		CVE-2008-0859 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm
274209 - kerio avg_plugin
kerio_mailserver 		Unspecified vulnerability in the AVG plugin in Kerio MailServer before 6.5.0 has unspecified impact via unknown remote attack vectors related to null DACLs. NVD-CWE-noinfo
CVE-2008-0860 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm
274210 - ibm lotus_quickplace Cross-site scripting (XSS) vulnerability in leg/Main.nsf in IBM Lotus Quickplace 7.0 allows remote attackers to inject arbitrary web script or HTML via an h_SearchString sub-parameter in the PreSetFi… CWE-79
Cross-site Scripting 		CVE-2008-0861 2011-03-8 12:05 2008-02-21 Show GitHub Exploit DB Packet Storm