Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244651 6.9 警告 dia - Dia の Python プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2008-5984 2012-06-26 16:10 2009-01-28 Show GitHub Exploit DB Packet Storm
244652 10 危険 BMC Software - BMC PATROL Agent におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-5982 2012-06-26 16:10 2009-01-27 Show GitHub Exploit DB Packet Storm
244653 7.5 危険 Activewebsoftwares - Active Price Comparison の links.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5975 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
244654 7.5 危険 Activewebsoftwares - Active Price Comparison の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5974 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
244655 7.5 危険 Activewebsoftwares - Active Web Mail の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5973 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
244656 7.5 危険 Activewebsoftwares - Active Business Directory の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5972 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
244657 7.5 危険 globsy - Globsy の globsy_edit.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5966 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
244658 10 危険 gravity-gtd - Gravity GTD の library/setup/rpc.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5963 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
244659 6.8 警告 gravity-gtd - Gravity GTD の library/setup/rpc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5962 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
244660 7.5 危険 Activewebsoftwares - Active Test の start.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5959 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
350301 - slashcode.com slash The quick login feature in Slash Slashcode does not redirect the user to an alternate URL when the wrong password is provided, which makes it easier for remote web sites to guess the proper passwords… NVD-CWE-Other
CVE-2002-1647 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350302 - yahoo messenger Yahoo! Messenger before February 2002 allows remote attackers to add arbitrary users to another user's buddy list and possibly obtain sensitive information. NVD-CWE-Other
CVE-2002-1664 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350303 - yahoo messenger Buffer overflow in Yahoo! Messenger before February 2002 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long set_buddygrp field. NVD-CWE-Other
CVE-2002-1665 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350304 - ibm http_server IBM HTTP Server 1.0 on AS/400 allows remote attackers to obtain the path to the web root directory and other sensitive information, which is leaked in an error mesage when a request is made for a non… NVD-CWE-Other
CVE-2002-1822 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350305 - openbb openbb Open Bulletin Board (OpenBB) 1.0.0 RC3 allows remote attackers to bypass authentication and access modifier options via a direct request to moderator.php with the action and ismod parameters. NVD-CWE-Other
CVE-2002-1830 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350306 - bizdesign imagefolio The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph… NVD-CWE-Other
CVE-2002-1867 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350307 - qnx rtos /bin/su in QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows local users to obtain sensitive information from core dump files by sending the SIGSERV (invalid memory reference) signal. NVD-CWE-Other
CVE-2002-2039 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350308 - michael_baumer pfinger Buffer overflow in PFinger 0.7.8 client allows remote attackers to execute arbitrary code via a long query value passed to the (1) finger program, (2) -l, (3) -d, and (4) -t options. NOTE: if PFinge… NVD-CWE-Other
CVE-2002-2048 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350309 - teekai teekai_forum TeeKai Forum 1.2 allows remote attackers to authenticate as the administrator and and gain privileged web forum access by setting the valid_level cookie to admin. NVD-CWE-Other
CVE-2002-2054 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm
350310 - teekai teekai_tracking_online Cross-site scripting (XSS) vulnerability in userlog.php in TeeKai Tracking Online 1.0 allows remote attackers to inject arbitrary web script or HTML via the id parameter. NVD-CWE-Other
CVE-2002-2055 2016-10-18 11:27 2002-12-31 Show GitHub Exploit DB Packet Storm