Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227981 7.5 危険 prakashatma mishra - phpfreeBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3208 2012-12-20 19:28 2009-09-16 Show GitHub Exploit DB Packet Storm
227982 4.3 警告 stivaforum - Stiva Forum におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3204 2012-12-20 19:28 2009-09-16 Show GitHub Exploit DB Packet Storm
227983 4.3 警告 uloki - ULoKI PHP Forum の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3202 2012-12-20 19:28 2009-09-16 Show GitHub Exploit DB Packet Storm
227984 4.3 警告 rob schultz - Media Player Classic における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-3201 2012-12-20 19:28 2009-09-15 Show GitHub Exploit DB Packet Storm
227985 5.9 警告 QNAP Systems - QNAP TS-239 Pro などにおけるパスフレーズ入力を回避される脆弱性 CWE-310
暗号の問題 		CVE-2009-3200 2012-12-20 19:28 2009-09-21 Show GitHub Exploit DB Packet Storm
227986 5 警告 uebimiau - Uebimiau Webmail におけるデータベースをダウンロードされる脆弱性 CWE-200
情報漏えい 		CVE-2009-3199 2012-12-20 19:28 2009-09-15 Show GitHub Exploit DB Packet Storm
227987 7.5 危険 uwix - Joomla! 用の digifolio コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3193 2012-12-20 19:28 2009-09-15 Show GitHub Exploit DB Packet Storm
227988 4.3 警告 standalonearcade - Stand Alone Arcade の gamelist.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3187 2012-12-20 19:28 2009-09-15 Show GitHub Exploit DB Packet Storm
227989 4.3 警告 videogirls - VideoGirls BiZ におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3186 2012-12-20 19:28 2009-09-15 Show GitHub Exploit DB Packet Storm
227990 10 危険 シマンテック - Symantec Altiris Deployment Solution における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2009-3179 2012-12-20 19:28 2009-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352901 - sws sws_simple_web_server Simple Web Server (SWS) 0.0.4 through 0.1.0 does not close file descriptors for 404 error messages, which could allow remote attackers to cause a denial of service (file descriptor exhaustion) via mu… NVD-CWE-Other
CVE-2002-1866 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352902 - daniel_stenberg dispair Dispair 0.1 and 0.2 allows remote attackers to execute arbitrary shell commands via certain form fields. NVD-CWE-Other
CVE-2002-1868 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352903 - sws sws_simple_web_server Simple Web Server (SWS) 0.0.4 through 0.1.0 does not properly handle when the recv function call fails, which may allow remote attackers to overwrite program data or perform actions on an uninitializ… NVD-CWE-Other
CVE-2002-1870 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352904 - astrocam astrocam astrocam.cgi in AstroCam 0.9-1-1 through 1.4.0 allows remote attackers to execute arbitrary commands via shell metacharacters in an HTTP request. NOTE: earlier disclosures stated that the affected v… CWE-20
 Improper Input Validation  		CVE-2002-1874 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352905 - mcafee entercept_agent Entercept Agent 2.5 agent for Windows, released before May 21, 2002, allows local administrative users to obtain the entercept agent password, which could allow the administrators to log on as the en… NVD-CWE-Other
CVE-2002-1875 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352906 - w-agora w-agora PHP remote file inclusion vulnerability in w-Agora 4.1.3 allows remote attackers to execute arbitrary PHP code via the inc_dir parameter. NVD-CWE-Other
CVE-2002-1878 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352907 - lokwa lokwabb SQL injection vulnerability in LokwaBB 1.2.2 allows remote attackers to execute arbitrary SQL commands via the (1) member parameter to member.php or (2) loser parameter to misc.php. NVD-CWE-Other
CVE-2002-1879 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352908 - lokwa lokwabb LokwaBB 1.2.2 allows remote attackers to read arbitrary messages by modifying the pmid parameter to pm.php. NVD-CWE-Other
CVE-2002-1880 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352909 - macromedia flash_player Macromedia Flash Player 4.0 r12 through 6.0.47.0 allows remote attackers to cause a denial of service (web browser crash) via malformed content in a Flash Shockwave (.SWF) file, as demonstrated by by… NVD-CWE-Other
CVE-2002-1881 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
352910 - oracle e-business_suite Unknown vulnerability in AolSecurityPrivate.class in Oracle E-Business Suite 11i 11.1 through 11.6 allows remote attackers to bypass user authentication checks via unknown attack vectors. NVD-CWE-Other
CVE-2002-1882 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm