Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227141 4.3 警告 php heaven - phpHeaven phpMyChat の setup.php3 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1504 2012-12-20 18:52 2008-03-25 Show GitHub Exploit DB Packet Storm
227142 4.3 警告 tinyportal - TinyPortal の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1500 2012-12-20 18:52 2008-03-25 Show GitHub Exploit DB Packet Storm
227143 6.8 警告 VideoLAN - VLC 用の libmp4.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1489 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227144 4.3 警告 PunBB - PunBB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1485 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227145 3.5 注意 PunBB - PunBB のパスワードリセット機能における新規パスワードを特定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1484 2012-12-20 18:52 2008-02-20 Show GitHub Exploit DB Packet Storm
227146 6.8 警告 Xine - xine-lib における整数オーバーフローの脆弱性 CWE-119
CWE-189
CVE-2008-1482 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227147 4.3 警告 webSPELL - webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1481 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227148 4.3 警告 s9y - S9Y におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1476 2012-12-20 18:52 2008-03-18 Show GitHub Exploit DB Packet Storm
227149 6.4 警告 Roundup - Roundup の xml-rpc サーバにおける制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-1475 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
227150 4.3 警告 Roundup - Roundup における脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1474 2012-12-20 18:52 2008-03-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
313551 - infopop ultimate_bulletin_board Ultimate Bulletin Board stores data files in the cgi-bin directory, allowing remote attackers to view the data if an error occurs when the HTTP server attempts to execute the file. NVD-CWE-Other
CVE-1999-0854 2024-02-14 10:17 1999-11-1 Show GitHub Exploit DB Packet Storm
313552 - ethereal_group ethereal Ethereal allows local users to overwrite arbitrary files via a symlink attack on the packet capture file. NVD-CWE-Other
CVE-1999-1227 2024-02-14 10:17 1999-07-30 Show GitHub Exploit DB Packet Storm
313553 - puppets_place nukenabber NukeNabber allows remote attackers to cause a denial of service by connecting to the NukeNabber port (1080) without sending any data, which causes the CPU usage to rise to 100% from the report.exe pr… NVD-CWE-Other
CVE-1999-1284 2024-02-14 10:17 1998-11-5 Show GitHub Exploit DB Packet Storm
313554 - hp mpe_ix
hp-ux 		Vulnerability in Predictive on HP-UX 11.0 and earlier, and MPE/iX 5.5 and earlier, allows attackers to compromise data transfer for Predictive messages (using e-mail or modem) between customer and Re… CWE-200
Information Exposure 		CVE-1999-1136 2024-02-14 10:17 1998-07-30 Show GitHub Exploit DB Packet Storm
313555 - hp hp-ux Character-Terminal User Environment (CUE) in HP-UX 11.0 and earlier allows local users to overwrite arbitrary files and gain root privileges via a symlink attack on the IOERROR.mytty file. NVD-CWE-Other
CVE-1999-1139 2024-02-14 10:17 1997-09-1 Show GitHub Exploit DB Packet Storm
313556 - netscape
microsoft 		communicator
internet_explorer 		JavaScript in Internet Explorer 3.x and 4.x, and Netscape 2.x, 3.x and 4.x, allows remote attackers to monitor a user's web activities, aka the Bell Labs vulnerability. NVD-CWE-Other
CVE-1999-0031 2024-02-14 10:17 1997-07-8 Show GitHub Exploit DB Packet Storm
313557 - hp hp-ux Certain files in MPower in HP-UX 10.x are installed with insecure permissions, which allows local users to gain privileges. NVD-CWE-Other
CVE-1999-1144 2024-02-14 10:17 1997-01-30 Show GitHub Exploit DB Packet Storm
313558 - hp hp-ux movemail in HP-UX 10.20 has insecure permissions, which allows local users to gain privileges. NVD-CWE-Other
CVE-1999-1249 2024-02-14 10:17 1997-01-6 Show GitHub Exploit DB Packet Storm
313559 - hp hp-ux Vulnerability in ppl in HP-UX 10.x and earlier allows local users to gain root privileges by forcing ppl to core dump. NVD-CWE-Other
CVE-1999-1161 2024-02-14 10:17 1996-11-3 Show GitHub Exploit DB Packet Storm
313560 - sophos astaro_security_linux The firewall in Astaro Security Linux before 4.024 sends responses to SYN-FIN packets, which makes it easier for remote attackers to obtain information about the system and construct specialized atta… CWE-203
 Information Exposure Through Discrepancy 		CVE-2004-2252 2024-02-14 05:44 2004-12-31 Show GitHub Exploit DB Packet Storm