Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228841 7.5 危険 virtual design studios - Virtual Design Studio vlbook の include/global.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2073 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
228842 4.3 警告 virtual design studios - Virtual Design Studio vlbook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2072 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
228843 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2068 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
228844 7.5 危険 YourFreeWorld.com - YourFreeWorld Jokes Site Script の jokes.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2065 2012-12-20 18:52 2008-05-2 Show GitHub Exploit DB Packet Storm
228845 10 危険 phpgedview - PhpGedView における脆弱性 CWE-noinfo
情報不足 		CVE-2008-2064 2012-12-20 18:52 2008-05-2 Show GitHub Exploit DB Packet Storm
228846 4.3 警告 softpedia - Softpedia SiteXS CMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2046 2012-12-20 18:52 2008-05-1 Show GitHub Exploit DB Packet Storm
228847 5 警告 SugarCRM - SugarCRM Sugar Community Edition における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2045 2012-12-20 18:52 2008-04-10 Show GitHub Exploit DB Packet Storm
228848 6.5 警告 turnkey solutions - Turnkey Web Tools SunShop Shopping Cart の admin/adminindex.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2038 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
228849 7.5 危険 Mike Jolley - WordPress 用の Download Monitor プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2034 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
228850 7.5 危険 WordPress.org - WordPress 用の Spreadsheet プラグインの ss_load.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1982 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352031 - ultrafunk popcorn Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Date field that is converted into a year greater than 2037. NVD-CWE-Other
CVE-2002-1045 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352032 - watchguard firebox
soho_firewall 		Dynamic VPN Configuration Protocol service (DVCP) in Watchguard Firebox firmware 5.x.x allows remote attackers to cause a denial of service (crash) via a malformed packet containing tab characters to… NVD-CWE-Other
CVE-2002-1046 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352033 - watchguard soho_firewall The FTP service in Watchguard Soho Firewall 5.0.35a allows remote attackers to gain privileges with a correct password but an incorrect user name. NVD-CWE-Other
CVE-2002-1047 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352034 - hp jetdirect HP JetDirect printers allow remote attackers to obtain the administrative password for the (1) web and (2) telnet services via an SNMP request to the variable (.iso.3.6.1.4.1.11.2.3.9.4.2.1.3.9.1.1.0. NVD-CWE-Other
CVE-2002-1048 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352035 - hylafax hylafax Format string vulnerability in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service (crash) via the TSI data element. NVD-CWE-Other
CVE-2002-1049 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352036 - hylafax hylafax Buffer overflow in HylaFAX faxgetty before 4.1.3 allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long line of image data. NVD-CWE-Other
CVE-2002-1050 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352037 - w3c jigsaw Cross-site scripting (XSS) vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed… NVD-CWE-Other
CVE-2002-1053 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352038 - brother nc-3100h Buffer overflow in administrative web server for Brother NC-3100h printer allows remote attackers to cause a denial of service via a long password. NVD-CWE-Other
CVE-2002-1055 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352039 - smartmax_software mailmax Buffer overflow in SmartMax MailMax POP3 daemon (popmax) 4.8 allows remote attackers to execute arbitrary code via a long USER command. NVD-CWE-Other
CVE-2002-1057 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm
352040 - cobalt qube Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cook… NVD-CWE-Other
CVE-2002-1058 2008-09-6 05:29 2002-10-4 Show GitHub Exploit DB Packet Storm