Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
193191 7.8 重要
Local 		Nitro Software, Inc. - Nitro Pro の PDF 構文解析機能におけるリモートでコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2016-8711 2017-03-7 16:51 2016-10-13 Show GitHub Exploit DB Packet Storm
193192 7.8 重要
Local 		Nitro Software, Inc. - Nitro Pro の PDF 構文解析機能におけるリモートでの境界外書き込みの脆弱性 CWE-119
バッファエラー 		CVE-2016-8709 2017-03-7 16:51 2016-09-30 Show GitHub Exploit DB Packet Storm
193193 9.8 緊急
Network 		Facebook - Facebook HHVM の wddx の無限再帰における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6875 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
193194 9.8 緊急
Network 		Facebook - Facebook HHVM の array_*_recursive 関数における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6874 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
193195 9.8 緊急
Network 		Facebook - Facebook HHVM の圧縮の自己再帰における脆弱性 CWE-674
不適切な再帰制御 		CVE-2016-6873 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
193196 9.8 緊急
Network 		Facebook - Facebook HHVM の StringUtil::implode における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6872 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
193197 9.8 緊急
Network 		Facebook - Facebook HHVM の bcmath における整数オーバーフローの脆弱性 CWE-190
整数オーバーフローまたはラップアラウンド 		CVE-2016-6871 2017-03-7 16:43 2016-08-2 Show GitHub Exploit DB Packet Storm
193198 9.8 緊急
Network 		Facebook - Facebook HHVM の複数の関数における境界外書き込みの脆弱性 CWE-787
境界外書き込み 		CVE-2016-6870 2017-03-7 16:43 2016-07-2 Show GitHub Exploit DB Packet Storm
193199 7.5 重要
Network 		WSO2 - WSO2 Identity Server の XACML フロー機能における XML 外部エンティティの脆弱性 CWE-611
XML 外部エンティティ参照の不適切な制限 		CVE-2016-4312 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
193200 8.8 重要
Network 		WSO2 - WSO2 Identity Server の XACML フロー機能におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2016-4311 2017-03-7 16:17 2016-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
294301 - siteadmin cms Additional source found during analysis: http://www.securityfocus.com/bid/30391 CWE-89
SQL Injection 		CVE-2008-3414 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294302 - cmscout cmscout Directory traversal vulnerability in common.php in CMScout 2.05, when .htaccess is not supported, allows remote attackers to include and execute arbitrary local files via directory traversal sequence… CWE-22
Path Traversal 		CVE-2008-3415 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294303 - icebb icebb SQL injection vulnerability in modules/members.php in IceBB before 1.0-rc9.3 allows remote attackers to execute arbitrary SQL commands via the username parameter in a members action to index.php, rel… CWE-89
SQL Injection 		CVE-2008-3416 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294304 - fipsasp fipscms_light SQL injection vulnerability in home/index.asp in fipsCMS light 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the r parameter, a different vector than CVE-2006-6115 and… CWE-89
SQL Injection 		CVE-2008-3417 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294305 - willo trio SQL injection vulnerability in browse.php in TriO 2.1 and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2008-3418 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294306 - greatclone youtuber_clone SQL injection vulnerability in ugroups.php in Youtuber Clone allows remote attackers to execute arbitrary SQL commands via the UID parameter. CWE-89
SQL Injection 		CVE-2008-3419 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294307 - willo mobius_web_publishing_software Multiple SQL injection vulnerabilities in Mobius for Mimsy XG 1 1.4.4.1 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the id parameter to browse.php or (2) the s parame… CWE-89
SQL Injection 		CVE-2008-3420 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294308 - apple itunes Apple iTunes before 10.5.1 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilg… CWE-94
Code Injection 		CVE-2008-3434 2017-09-29 10:31 2008-08-1 Show GitHub Exploit DB Packet Storm
294309 - phpmyrealty phpmyrealty SQL injection vulnerability in index.php in phpMyRealty (PMR) 2.0.0 allows remote attackers to execute arbitrary SQL commands via the location parameter. CWE-89
SQL Injection 		CVE-2008-3445 2017-09-29 10:31 2008-08-5 Show GitHub Exploit DB Packet Storm
294310 - letterit letterit Directory traversal vulnerability in inc/wysiwyg.php in LetterIt 2 allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the language parameter. CWE-22
Path Traversal 		CVE-2008-3446 2017-09-29 10:31 2008-08-5 Show GitHub Exploit DB Packet Storm