Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
194651 7.5 重要
Network 		サムスン - Samsung Note デバイスのソフトウェアにおける systemUI のクラッシュを引き起こされる脆弱性 CWE-388
エラー処理 		CVE-2017-5350 2017-01-24 13:54 2017-01-12 Show GitHub Exploit DB Packet Storm
194652 9.8 緊急
Network 		British Columbia Institute of Technology - CodeIgniter の system/libraries/Email.php における任意のコードを実行される脆弱性 CWE-74
インジェクション 		CVE-2016-10131 2017-01-24 13:53 2016-12-27 Show GitHub Exploit DB Packet Storm
194653 5.3 警告
Local 		Google - Telephony における権限昇格の脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6771 2017-01-24 11:11 2016-12-5 Show GitHub Exploit DB Packet Storm
194654 5.5 警告
Local 		Google - メディアサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2016-6767 2017-01-24 11:11 2016-12-5 Show GitHub Exploit DB Packet Storm
194655 7 重要
Local 		Linux - MediaTek ドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6785 2017-01-24 10:09 2016-12-5 Show GitHub Exploit DB Packet Storm
194656 7 重要
Local 		Google - MediaTek ドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6784 2017-01-24 10:09 2016-12-5 Show GitHub Exploit DB Packet Storm
194657 7 重要
Local 		Google - MediaTek ドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6783 2017-01-24 10:09 2016-12-5 Show GitHub Exploit DB Packet Storm
194658 7 重要
Local 		Linux - MediaTek ドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6782 2017-01-24 10:09 2016-12-5 Show GitHub Exploit DB Packet Storm
194659 7 重要
Local 		Linux - MediaTek ドライバにおける権限を昇格される脆弱性 CWE-284
不適切なアクセス制御 		CVE-2016-6781 2017-01-24 10:09 2016-12-5 Show GitHub Exploit DB Packet Storm
194660 4.7 警告
Local 		Linux - 複数のカーネルコンポーネントにおける情報を開示される脆弱性 CWE-200
情報漏えい 		CVE-2016-8407 2017-01-23 19:04 2016-12-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293561 - lotus_web_studios_inc smoothflash SQL injection vulnerability in admin_view_image.php in Smoothflash allows remote attackers to execute arbitrary SQL commands via the cid parameter. CWE-89
SQL Injection 		CVE-2008-1623 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293562 - lotus_web_studios_inc smoothflash Additional information can be found at: http://www.securityfocus.com/bid/28503 CWE-89
SQL Injection 		CVE-2008-1623 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293563 - whorl_ltd jshop_server Directory traversal vulnerability in v2demo/page.php in Jshop Server 1.x through 2.x allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the xPage parameter. CWE-22
Path Traversal 		CVE-2008-1624 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293564 - raven_php_scripts keep_it_simple_guest_book Directory traversal vulnerability in view_private.php in Keep It Simple Guest Book (KISGB) 5.0.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in… CWE-22
Path Traversal 		CVE-2008-1635 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293565 - neat_web neat-web SQL injection vulnerability in index.php in Neat weblog 0.2 allows remote attackers to execute arbitrary SQL commands via the articleId parameter in a show action, probably related to the showArticle… CWE-89
SQL Injection 		CVE-2008-1639 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293566 - jgs-xa jgs_treffen SQL injection vulnerability in jgs_treffen.php in the JGS-XA JGS-Treffen 2.0.2 and earlier addon for Woltlab Burning Board (wBB) allows remote attackers to execute arbitrary SQL commands via the view… CWE-89
SQL Injection 		CVE-2008-1640 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293567 - guillaume_meister php_spammanager Directory traversal vulnerability in body.php in phpSpamManager (phpSM) 0.53 beta allows remote attackers to read arbitrary local files via a .. (dot dot) in the filename parameter. CWE-22
Path Traversal 		CVE-2008-1645 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293568 - arnos_toolbox
wordpress 		wp-download
wp_download 		SQL injection vulnerability in wp-download.php in the WP-Download 1.2 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the dl_id parameter. CWE-89
SQL Injection 		CVE-2008-1646 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293569 - chilkat_software chilkathttp_activex The ChilkatHttp.ChilkatHttp.1 and ChilkatHttp.ChilkatHttpRequest.1 ActiveX controls in ChilkatHttp.dll 2.4.0.0, 2.3.0.0, and earlier in ChilkatHttp ActiveX expose the unsafe SaveLastError method, whi… CWE-20
 Improper Input Validation  		CVE-2008-1647 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm
293570 - adobe flash_player Interaction error between Adobe Flash and multiple Universal Plug and Play (UPnP) services allow remote attackers to perform Cross-Site Request Forgery (CSRF) style attacks by using the Flash navigat… CWE-352
 Origin Validation Error 		CVE-2008-1654 2017-09-29 10:30 2008-04-3 Show GitHub Exploit DB Packet Storm