Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247031 10 危険 BMC Software - BMC PATROL Agent におけるフォーマットストリングの脆弱性 CWE-134
書式文字列の問題 		CVE-2008-5982 2012-06-26 16:10 2009-01-27 Show GitHub Exploit DB Packet Storm
247032 7.5 危険 Activewebsoftwares - Active Price Comparison の links.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5975 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
247033 7.5 危険 Activewebsoftwares - Active Price Comparison の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5974 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
247034 7.5 危険 Activewebsoftwares - Active Web Mail の login.aspx における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5973 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
247035 7.5 危険 Activewebsoftwares - Active Business Directory の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5972 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
247036 7.5 危険 globsy - Globsy の globsy_edit.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5966 2012-06-26 16:10 2009-01-26 Show GitHub Exploit DB Packet Storm
247037 10 危険 gravity-gtd - Gravity GTD の library/setup/rpc.php における任意の PHP コードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5963 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
247038 6.8 警告 gravity-gtd - Gravity GTD の library/setup/rpc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5962 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
247039 7.5 危険 Activewebsoftwares - Active Test の start.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5959 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
247040 7.5 危険 Activewebsoftwares - Active Test における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5958 2012-06-26 16:10 2009-01-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
352861 - - - Cross-site scripting (XSS) vulnerability in Fastream NETFile Server 6.0.3.588 allows remote attackers to inject arbitrary web script or HTML via the URL, which is displayed on a "404 Not Found" error… CWE-79
Cross-site Scripting 		CVE-2003-1151 2017-07-11 10:29 2003-10-28 Show GitHub Exploit DB Packet Storm
352862 - infrontech webtide WebTide 7.04 allows remote attackers to list arbitrary directories via an HTTP request for %3f.jsp (encoded "?"). NVD-CWE-Other
CVE-2003-1152 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352863 - bytehoard bytehoard byteHoard 0.7 and 0.71 allows remote attackers to list arbitrary files and directories via a direct request to files.inc.php. NVD-CWE-Other
CVE-2003-1153 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352864 - clearswift mailsweeper MAILsweeper for SMTP 4.3 allows remote attackers to bypass virus protection via a mail message with a malformed zip attachment, as exploited by certain MIMAIL virus variants. NVD-CWE-Other
CVE-2003-1154 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352865 - x-cd-roast x-cd-roast X-CD-Roast 0.98 alpha10 through alpha14 allows local users to overwrite arbitrary files via a symlink attack on an unknown file. NVD-CWE-Other
CVE-2003-1155 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352866 - sun jdk
jre 		Java Runtime Environment (JRE) and Software Development Kit (SDK) 1.4.2 through 1.4.2_02 allows local users to overwrite arbitrary files via a symlink attack on (1) unpack.log, as created by the unpa… NVD-CWE-Other
CVE-2003-1156 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352867 - citrix metaframe Cross-site scripting (XSS) vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuse_Message parameter. NVD-CWE-Other
CVE-2003-1157 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352868 - plug_and_play_software plug_and_play_web_server Multiple buffer overflows in the FTP service in Plug and Play Web Server 1.0002c allow remote attackers to cause a denial of service (crash) via long (1) dir, (2) ls, (3) delete, (4) mkdir, (5) DELE,… NVD-CWE-Other
CVE-2003-1158 2017-07-11 10:29 2003-12-31 Show GitHub Exploit DB Packet Storm
352869 - plug_and_play plug_and_play_web_server_proxy Plug and Play Web Server Proxy 1.0002c allows remote attackers to cause a denial of service (server crash) via an invalid URI in an HTTP GET request to TCP port 8080. NVD-CWE-Other
CVE-2003-1159 2017-07-11 10:29 2003-10-31 Show GitHub Exploit DB Packet Storm
352870 - seyeon flexwatch_network_video_server FlexWATCH Network video server 132 allows remote attackers to bypass authentication and gain administrative privileges via an HTTP request to aindex.htm that contains double leading slashes (//). NVD-CWE-Other
CVE-2003-1160 2017-07-11 10:29 2003-10-30 Show GitHub Exploit DB Packet Storm