Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231201 10 危険 plusphp - plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2480 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
231202 7.5 危険 vBulletin Solutions, Inc. - vBulletin Gold の faq.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2460 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231203 7.5 危険 phpclassifiedsscript - PHP Classifieds Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2453 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231204 4.3 警告 TYPO3 Association - TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2452 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231205 7.5 危険 TYPO3 Association - TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2451 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231206 4.3 警告 TYPO3 Association - TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2450 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231207 7.5 危険 wgcc - WGCC における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2446 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231208 4.3 警告 wgcc - WGCC の profile.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2445 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231209 7.5 危険 therealestatescript - The Real Estate Script の dpage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2443 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
231210 5 警告 トレンドマイクロ - Trend Micro OfficeScan および Worry-Free Business Security クライアントの OfficeScanNT Listener サービスにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2439 2012-12-20 18:52 2008-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
312631 9.8 CRITICAL
Network 		bookstore_management_system_project bookstore_management_system A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been declared as critical. This vulnerability affects unknown code of the file /book_list.php. The manipulation of t… CWE-89
SQL Injection 		CVE-2024-10997 2024-11-13 10:03 2024-11-8 Show GitHub Exploit DB Packet Storm
312632 9.8 CRITICAL
Network 		bookstore_management_system_project bookstore_management_system A vulnerability was found in 1000 Projects Bookstore Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/process_category_edit.php. The manipula… CWE-89
SQL Injection 		CVE-2024-10996 2024-11-13 10:03 2024-11-8 Show GitHub Exploit DB Packet Storm
312633 9.8 CRITICAL
Network 		codezips hospital_appointment_system A vulnerability was found in Codezips Hospital Appointment System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /removeDoctorResult.php. The manipul… CWE-89
SQL Injection 		CVE-2024-10995 2024-11-13 10:00 2024-11-8 Show GitHub Exploit DB Packet Storm
312634 6.5 MEDIUM
Network 		anisha e-health_care_system A vulnerability classified as critical has been found in code-projects E-Health Care System 1.0. This affects an unknown part of the file /Admin/detail.php. The manipulation of the argument s_id lead… CWE-89
SQL Injection 		CVE-2024-10989 2024-11-13 09:59 2024-11-8 Show GitHub Exploit DB Packet Storm
312635 9.1 CRITICAL
Network 		anisha e-health_care_system A vulnerability was found in code-projects E-Health Care System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /Doctor/doctor_login.php. The mani… CWE-89
SQL Injection 		CVE-2024-10988 2024-11-13 09:59 2024-11-8 Show GitHub Exploit DB Packet Storm
312636 6.5 MEDIUM
Network 		anisha e-health_care_system A vulnerability was found in code-projects E-Health Care System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /Doctor/user_appointment.… CWE-89
SQL Injection 		CVE-2024-10987 2024-11-13 09:58 2024-11-8 Show GitHub Exploit DB Packet Storm
312637 2.4 LOW
Physics 		samsung android Improper authorization in Settings prior to SMR Nov-2024 Release 1 allows physical attackers to access stored WiFi password in Maintenance Mode. NVD-CWE-noinfo
CVE-2024-34682 2024-11-13 09:56 2024-11-6 Show GitHub Exploit DB Packet Storm
312638 5.5 MEDIUM
Local 		samsung android Improper Input Validation in IpcProtocol in Modem prior to SMR Nov-2024 Release 1 allows local attackers to cause Denial-of-Service. NVD-CWE-noinfo
CVE-2024-34673 2024-11-13 09:56 2024-11-6 Show GitHub Exploit DB Packet Storm
312639 4.6 MEDIUM
Physics 		samsung video_player Improper Access Control in Samsung Video Player prior to versions 7.3.29.1 in Android 12, 7.3.36.1 in Android 13, and 7.3.41.230 in Android 14 allows physical attackers to access video file of other … NVD-CWE-noinfo
CVE-2024-49404 2024-11-13 09:55 2024-11-6 Show GitHub Exploit DB Packet Storm
312640 4.6 MEDIUM
Physics 		samsung voice_recorder Improper access control in Samsung Voice Recorder prior to version 21.5.40.37 allows physical attackers to access recording files on the lock screen. NVD-CWE-noinfo
CVE-2024-49403 2024-11-13 09:55 2024-11-6 Show GitHub Exploit DB Packet Storm