Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247331 4.3 警告 Acidcat - Acidcat CMS の admin_colors_swatch.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1991 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247332 7.5 危険 Acidcat - Acidcat CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1990 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247333 10 危険 e107.org
123flashchat		 - 123 Flash Chat の 123flashchat.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1989 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247334 9 危険 encaps - EncapsGallery の file_upload 関数における任意の PHP ファイルを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1988 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247335 4.3 警告 encaps - EncapsGallery の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1987 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247336 4.3 警告 digitalhive - DigitalHive の base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1985 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247337 4.3 警告 AEF Group - AEF におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1983 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247338 7.5 危険 cogites - E-RESERV の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1975 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247339 9.3 危険 artur sikora - SubEdit Player におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1973 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
247340 3.5 注意 cezannesw - Cezanne におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1969 2012-06-26 16:02 2008-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
353151 - gero_kohnert tutos TUTOS 1.1 allows remote attackers to execute arbitrary code by uploading the code using file_new.php, then directly accessing the uploaded code via a request to the repository containing the code. NVD-CWE-Other
CVE-2003-0482 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353152 - phpbb_group phpbb Cross-site scripting (XSS) vulnerability in viewtopic.php for phpBB allows remote attackers to insert arbitrary web script via the topic_id parameter. NVD-CWE-Other
CVE-2003-0484 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353153 - progress 4gl_compiler Buffer overflow in Progress 4GL Compiler 9.1D06 and earlier allows attackers to execute arbitrary code via source code containing a long, invalid data type. NVD-CWE-Other
CVE-2003-0485 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353154 - dantz retrospect_client The installation of Dantz Retrospect Client 5.0.540 on MacOS X 10.2.6, and possibly other versions, creates critical directories and files with world-writable permissions, which allows local users to… NVD-CWE-Other
CVE-2003-0490 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353155 - mytutorials tutorials The Tutorials 2.0 module in XOOPS and E-XOOPS allows remote attackers to execute arbitrary code by uploading a PHP file without a MIME image type, then directly accessing the uploaded file. NVD-CWE-Other
CVE-2003-0491 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353156 - snitz_communications snitz_forums_2000 Snitz Forums 3.4.03 and earlier allows attackers to gain privileges as other users by stealing and replaying the encrypted password after obtaining a valid session ID. NVD-CWE-Other
CVE-2003-0493 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353157 - microsoft windows_2000 Buffer overflow in the ShellExecute API function of SHELL32.DLL in Windows 2000 before SP4 may allow attackers to cause a denial of service or execute arbitrary code via a long third argument. NVD-CWE-Other
CVE-2003-0503 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353158 - phpgroupware phpgroupware Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware 0.9.14.003 (aka webdistro) allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a request to index.p… NVD-CWE-Other
CVE-2003-0504 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353159 - microsoft netmeeting Directory traversal vulnerability in Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to read arbitrary files via "..\.." (dot dot) sequences in a file transfer request. NVD-CWE-Other
CVE-2003-0505 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm
353160 - microsoft netmeeting Microsoft NetMeeting 3.01 2000 before SP4 allows remote attackers to cause a denial of service (shutdown of NetMeeting conference) via malformed packets, as demonstrated via the chat conversation. NVD-CWE-Other
CVE-2003-0506 2016-10-18 11:34 2003-08-7 Show GitHub Exploit DB Packet Storm