Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226711 4.3 警告 w3matter - W3matter RevSense の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6385 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226712 7.5 危険 phpbb-seo - Multi SEO phpBB の include/global.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6377 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226713 8.5 危険 socialgroupie - Social Groupie の Photos/create_album.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6367 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226714 4.3 警告 phpf1 - Max's Guestbook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6359 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226715 7.5 危険 socialgroupie - Social Groupie の group_index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6358 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226716 5 警告 the net guys - The Net Guys ASPired2Protect におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6355 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226717 5 警告 the net guys - The Net Guys ASPired2poll におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6354 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226718 7.5 危険 xpoze - Xpoze Pro の home.html における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6352 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226719 4.3 警告 turnkeyforms - TurnkeyForms Local Classifieds の listtest.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6351 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
226720 7.5 危険 turnkeyforms - TurnkeyForms Local Classifieds の listtest.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6350 2012-12-20 19:10 2009-03-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313021 - - - An issue was discovered in llama_index before 0.10.38. download/integration.py includes an exec call for import {cls_name}. - CVE-2024-45201 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313022 - - - NGINX Agent's "config_dirs" restriction feature allows a highly privileged attacker to gain the ability to write/overwrite files outside of the designated secure directory. - CVE-2024-7634 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313023 - - - Kashipara Hotel Management System v1.0 is vulnerable to Unrestricted File Upload RCE via /admin/add_room_controller.php. - CVE-2024-42767 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313024 - - - Kashipara Hotel Management System v1.0 is vulnerable to Incorrect Access Control via /admin/users.php. - CVE-2024-42776 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313025 - - - An Incorrect Access Control vulnerability was found in /admin/add_room_controller.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to add the valid hotel room e… - CVE-2024-42775 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313026 - - - An Incorrect Access Control vulnerability was found in /admin/delete_room.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to delete valid hotel room entries in… - CVE-2024-42774 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313027 - - - An Incorrect Access Control vulnerability was found in /admin/rooms.php in Kashipara Hotel Management System v1.0, which allows an unauthenticated attacker to view valid hotel room entries in adminis… - CVE-2024-42772 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313028 - - - A Cross-Site Request Forgery (CSRF) vulnerability was found in Kashipara Hotel Management System v1.0 via /admin/delete_room.php. - CVE-2024-42768 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313029 - - - A Stored Cross Site Scripting (XSS) vulnerability was found in " /admin/edit_room_controller.php" of the Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary cod… - CVE-2024-42771 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm
313030 - - - A Stored Cross Site Scripting (XSS) vulnerability was found in "/core/signup_user.php" of Kashipara Hotel Management System v1.0, which allows remote attackers to execute arbitrary code via the "user… - CVE-2024-42770 2024-08-24 01:18 2024-08-23 Show GitHub Exploit DB Packet Storm