Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229761 7.5 危険 Powie - Powie pNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2673 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
229762 7.5 危険 y-blog - yBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2669 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229763 4.3 警告 y-blog - yBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2668 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
229764 7.5 危険 smeweb - SMEWeb の catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2652 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229765 4.3 警告 smeweb - SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2644 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
229766 7.5 危険 theflashblog - FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2572 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229767 4.3 警告 samtodo - SamTodo の dsp_main.php などにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2563 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229768 6.5 警告 powerphlogger - PowerPhlogger の edCss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2562 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
229769 4.3 警告 slashcode.com - Slash におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2553 2012-12-20 18:52 2008-06-5 Show GitHub Exploit DB Packet Storm
229770 9.3 危険 Skype Technologies S.A. - Skype における警告ダイアログを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2545 2012-12-20 18:52 2008-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312051 9.8 CRITICAL
Network 		- - Microsoft Configuration Manager Remote Code Execution Vulnerability CWE-89
SQL Injection 		CVE-2024-43468 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312052 - - - NULL pointer dereference in IP socket options processing of the Networking Stack in QNX Software Development Platform (SDP) version(s) 7.1 and 7.0 could allow an attacker with local access to cause a… - CVE-2024-35215 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312053 8.0 HIGH
Adjacent 		- - Windows Hyper-V Remote Code Execution Vulnerability CWE-20
CWE-829
 Improper Input Validation 
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2024-30092 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312054 - - - An issue in the getcolor function in utils.py of xhtml2pdf v0.2.13 allows attackers to cause a Regular expression Denial of Service (ReDOS) via supplying a crafted string. - CVE-2024-25885 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312055 7.1 HIGH
Adjacent 		- - Windows Hyper-V Security Feature Bypass Vulnerability CWE-20
 Improper Input Validation  		CVE-2024-20659 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312056 5.3 MEDIUM
Network 		- - A vulnerability was found in the resteasy-netty4 library arising from improper handling of HTTP requests using smuggling techniques. When an HTTP smuggling request with an ASCII control character is … CWE-444
HTTP Request Smuggling 		CVE-2024-9622 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312057 5.3 MEDIUM
Network 		- - A vulnerability was found in Quarkus CXF. Passwords and other secrets may appear in the application log in spite of the user configuring them to be hidden. This issue requires some special configura… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2024-9621 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312058 5.3 MEDIUM
Network 		- - A flaw was found in Event-Driven Automation (EDA) in Ansible Automation Platform (AAP), which lacks encryption of sensitive information. An attacker with network access could exploit this vulnerabili… - CVE-2024-9620 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312059 - - - A flaw exists whereby a user can make a specific call to a FlashArray endpoint allowing privilege escalation. - CVE-2024-3057 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm
312060 - - - A command injection vulnerability exists in Motorola CX2L router v1.0.2 and below. The vulnerability is present in the SetStationSettings function. The system directly invokes the system function to … - CVE-2024-45880 2024-10-10 21:56 2024-10-9 Show GitHub Exploit DB Packet Storm