Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244231 6.8 警告 dd-wrt - DD-WRT 24 sp2 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6975 2012-06-26 16:10 2009-07-20 Show GitHub Exploit DB Packet Storm
244232 6.8 警告 dd-wrt - DD-WRT 24 sp1 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6974 2012-06-26 16:10 2009-07-20 Show GitHub Exploit DB Packet Storm
244233 5 警告 Alt-N - WorldClient in Alt-N MDaemon における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-6967 2012-06-26 16:10 2009-08-13 Show GitHub Exploit DB Packet Storm
244234 7.5 危険 aj square - AJ Square AJ Auction Pro Platinum Skin #1 における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6966 2012-06-26 16:10 2009-08-13 Show GitHub Exploit DB Packet Storm
244235 7.5 危険 aj square - AJ Square AJ Auction OOPD における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6965 2012-06-26 16:10 2009-08-13 Show GitHub Exploit DB Packet Storm
244236 7.2 危険 Avira - 複数の Avira 製品における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6962 2012-06-26 16:10 2009-08-13 Show GitHub Exploit DB Packet Storm
244237 9.3 危険 chilkatsoft - ChilkatSocket.dll の ChilkatSocket.ChilkatSocket.1 における任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-6959 2012-06-26 16:10 2009-08-12 Show GitHub Exploit DB Packet Storm
244238 6.5 警告 Comsenz Technology - Crossday Discuz! Board の wap/index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6958 2012-06-26 16:10 2009-08-12 Show GitHub Exploit DB Packet Storm
244239 7.5 危険 Discuz - Crossday Discuz! Board の member.php における任意ユーザのパスワードをリセットされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6957 2012-06-26 16:10 2009-08-12 Show GitHub Exploit DB Packet Storm
244240 7.5 危険 cms.maury91 - MauryCMS の Rss.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6952 2012-06-26 16:10 2009-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
351421 - iptechinside com_jquarks SQL injection vulnerability in the IP-Tech JQuarks (com_jquarks) Component 0.2.3, and possibly earlier, for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter to i… CWE-89
SQL Injection 		CVE-2010-0692 2010-03-3 14:00 2010-02-24 Show GitHub Exploit DB Packet Storm
351422 - tdiary tdiary Cross-site scripting (XSS) vulnerability in the tb-send.rb (TrackBack transmission) plugin in tDiary 2.2.2 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vecto… CWE-79
Cross-site Scripting 		CVE-2010-0726 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351423 - commodityrentals vacation_rental_software SQL injection vulnerability in index.php in CommodityRentals Vacation Rental Software allows remote attackers to execute arbitrary SQL commands via the rental_id parameter in a CalendarView action. CWE-89
SQL Injection 		CVE-2010-0763 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351424 - snowflake t3blog Cross-site scripting (XSS) vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2010-0797 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351425 - snowflake t3blog SQL injection vulnerability in the T3BLOG extension 0.6.2 and earlier for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2010-0798 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351426 - perlunity phpunity.newsmanager Directory traversal vulnerability in misc/tell_a_friend/tell.php in phpunity.newsmanager allows remote attackers to read arbitrary files via a .. (dot dot) in the id parameter. CWE-22
Path Traversal 		CVE-2010-0799 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351427 - autartica com_autartitarot Directory traversal vulnerability in the AutartiTarot (com_autartitarot) component 1.0.3 for Joomla! allows remote authenticated users, with "Public Back-end" group permissions, to read arbitrary fil… CWE-22
Path Traversal 		CVE-2010-0801 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351428 - aleinbeen \(nv2\)_awards SQL injection vulnerability in index.php in (nv2) Awards 1.1.0, a modification for Invision Power Board, allows remote attackers to execute arbitrary SQL commands via the id parameter in a view actio… CWE-89
SQL Injection 		CVE-2010-0802 2010-03-3 14:00 2010-03-3 Show GitHub Exploit DB Packet Storm
351429 - sun java_system_application_server Cross-site scripting (XSS) vulnerability in Sun Java System Application Server 7 allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NVD-CWE-Other
CVE-2005-0742 2010-03-2 14:36 2005-05-2 Show GitHub Exploit DB Packet Storm
351430 - basic-cms basic-cms Cross-site scripting (XSS) vulnerability in pages/index.php in BASIC-CMS allows remote attackers to inject arbitrary web script or HTML via the nav_id parameter. CWE-79
Cross-site Scripting 		CVE-2010-0695 2010-03-2 14:00 2010-02-24 Show GitHub Exploit DB Packet Storm