Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228941	4.3	警告	加藤和良	-	WRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6161	2012-12-20 19:10	2008-10-6	Show	GitHub Exploit DB Packet Storm

228942	5	警告	South River Technologies	-	Titan FTP Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-6082	2012-12-20 19:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

228943	7.5	危険	simplecustomer	-	Simple Customer の contact.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6081	2012-12-20 19:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

228944	7.5	危険	rasihbahar	-	Bahar Download Script の aspkat.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6075	2012-12-20 19:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

228945	5.1	警告	phpcrs	-	phpcrs の frame.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6074	2012-12-20 19:10	2009-02-6	Show	GitHub Exploit DB Packet Storm

228946	7.5	危険	web design hero	-	Joomla! 用の JoomlaDate コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6068	2012-12-20 19:10	2009-02-10	Show	GitHub Exploit DB Packet Storm

228947	4.3	警告	テックスミス株式会社	-	Techsmith Camtasia Studio が作成した任意の SWF コントローラーファイルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6061	2012-12-20 19:10	2009-02-4	Show	GitHub Exploit DB Packet Storm

228948	5	警告	syslserve	-	Syslserve におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-6058	2012-12-20 19:10	2009-02-4	Show	GitHub Exploit DB Packet Storm

228949	5	警告	PreProject.com	-	PreProjects Pre Classified Listings におけるパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6055	2012-12-20 19:10	2009-02-4	Show	GitHub Exploit DB Packet Storm

228950	5	警告	PreProject.com	-	PreProjects Pre Courier and Cargo Business におけるパスワードを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6054	2012-12-20 19:10	2009-02-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
318181	7.5	HIGH Network	oracle	sun_one_application_server	Sun ONE Application Server 7.0 for Windows 2000/XP allows remote attackers to obtain JSP source code via a request that uses the uppercase ".JSP" extension instead of the lowercase .jsp extension.	CWE-178 Improper Handling of Case Sensitivity	CVE-2003-0411	2024-02-2 11:18	2003-06-30	Show	GitHub Exploit DB Packet Storm

318182	7.5	HIGH Network	symantec	norton_antivirus	Norton Anti-Virus (NAV) allows remote attackers to bypass content filtering via attachments whose Content-Type and Content-Disposition headers are mixed upper and lower case, which is ignored by some…	CWE-178 Improper Handling of Case Sensitivity	CVE-2002-0485	2024-02-2 11:17	2002-08-12	Show	GitHub Exploit DB Packet Storm

318183	7.5	HIGH Network	netscape	fasttrack_server	Netscape FastTrack Web server lists files when a lowercase "get" command is used instead of an uppercase GET.	CWE-178 Improper Handling of Case Sensitivity	CVE-1999-0239	2024-02-2 11:16	1998-01-1	Show	GitHub Exploit DB Packet Storm

318184	9.8	CRITICAL Network	sir	gnuboard	The file extension check in GNUBoard 3.40 and earlier only verifies extensions that contain all lowercase letters, which allows remote attackers to upload arbitrary files via file extensions that inc…	CWE-178 Improper Handling of Case Sensitivity	CVE-2005-0269	2024-02-2 11:15	2005-05-2	Show	GitHub Exploit DB Packet Storm

318185	9.8	CRITICAL Network	apache	http_server	Apache on MacOS X Client 10.0.3 with the HFS+ file system allows remote attackers to bypass access restrictions via a URL that contains some characters whose case is not matched by Apache's filters.	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-0766	2024-02-2 11:13	2001-10-18	Show	GitHub Exploit DB Packet Storm

318186	7.5	HIGH Network	cmfperception	liteserve	Perception LiteServe 1.25 allows remote attackers to obtain source code of CGI scripts via URLs that contain MS-DOS conventions such as (1) upper case letters or (2) 8.3 file names.	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-0795	2024-02-2 11:12	2001-10-18	Show	GitHub Exploit DB Packet Storm

318187	7.8	HIGH Local	microsoft	windows_2000	Task Manager in Windows 2000 does not allow local users to end processes with uppercase letters named (1) winlogon.exe, (2) csrss.exe, (3) smss.exe and (4) services.exe via the Process tab which coul…	CWE-178 Improper Handling of Case Sensitivity	CVE-2001-1238	2024-02-2 11:11	2001-07-16	Show	GitHub Exploit DB Packet Storm

318188	7.5	HIGH Network	transsoft	broker_ftp_server	Transsoft Broker 5.9.5.0 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.	CWE-59 Link Following	CVE-2001-1042	2024-02-2 11:05	2001-07-2	Show	GitHub Exploit DB Packet Storm

318189	7.5	HIGH Network	qualcomm	eudora	Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."	CWE-59 Link Following	CVE-2000-0342	2024-02-2 11:05	2000-04-28	Show	GitHub Exploit DB Packet Storm

318190	7.5	HIGH Network	argosoft	ftp_server	ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.	CWE-59 Link Following	CVE-2001-1043	2024-02-2 11:04	2001-07-1	Show	GitHub Exploit DB Packet Storm