Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
199101	9.8	緊急 Network	PoDoFo project	-	PoDoFo の base/PdfParser.cpp の PdfParser::ReadXRefSubsection 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2015-8981	2017-04-11 17:42	2015-06-14	Show	GitHub Exploit DB Packet Storm

199102	5.5	警告 Local	Artifex Software	-	Artifex Software, Inc. の MuPDF の Mujstest の jstest_main.c の my_getline 関数におけるバッファオーバーフローの脆弱性	CWE-787 境界外書き込み	CVE-2016-10247	2017-04-11 16:39	2016-09-23	Show	GitHub Exploit DB Packet Storm

199103	5.5	警告 Local	Artifex Software	-	Artifex Software, Inc. の MuPDF の Mujstest の jstest_main.c の main 関数におけるバッファオーバーフローの脆弱性	CWE-787 境界外書き込み	CVE-2016-10246	2017-04-11 16:39	2016-09-23	Show	GitHub Exploit DB Packet Storm

199104	8.1	重要 Network	GNU Project	-	GNU C Library の strxfrm 関数における整数オーバーフローの脆弱性	CWE-190 整数オーバーフローまたはラップアラウンド	CVE-2015-8982	2017-04-11 16:28	2015-01-13	Show	GitHub Exploit DB Packet Storm

199105	5.5	警告 Local	Fedora Project Netpbm	-	netpbm の tiffttopnm におけるサービス運用妨害 (DoS) の脆弱性	CWE-125 CWE-787	CVE-2017-5849	2017-04-11 16:27	2017-01-5	Show	GitHub Exploit DB Packet Storm

199106	6.5	警告 Local	virglrenderer project	-	Virgil 3d project の vrend_renderer.c の util_format_is_pure_uint 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-476 NULL ポインタデリファレンス	CVE-2017-5937	2017-04-11 16:26	2017-02-7	Show	GitHub Exploit DB Packet Storm

199107	7.5	重要 Network	Drupal	-	Drupal の administrative paths におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2017-6379	2017-04-11 16:25	2017-03-15	Show	GitHub Exploit DB Packet Storm

199108	7.5	重要 Network	EFS Software	-	Easy File Sharing FTP Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2017-6510	2017-04-11 16:25	2017-03-16	Show	GitHub Exploit DB Packet Storm

199109	5.5	警告 Local	calibre-ebook	-	calibre の E-book viewer における任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2016-10187	2017-04-11 16:24	2016-12-21	Show	GitHub Exploit DB Packet Storm

199110	6.1	警告 Network	MantisBT Group	-	MantisBT Source Integration プラグインの検索結果ページにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2017-6958	2017-04-11 16:23	2017-03-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
357681	-	levcgi.com	myguestbook	Cross-site scripting vulnerability (XSS) in (1) admin_index.php, (2) admin_pass.php, (3) admin_modif.php, and (4) admin_suppr.php in MyGuestbook 3.0 allows remote attackers to execute arbitrary PHP c…	NVD-CWE-Other	CVE-2003-1241	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357682	-	-	-	Sage 1.0 b3 allows remote attackers to obtain the root web server path via a URL request for a non-existent module, which returns the path in an error message.	NVD-CWE-Other	CVE-2003-1242	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357683	-	phpbb_group	phpbb	SQL injection vulnerability in page_header.php in phpBB 2.0, 2.0.1 and 2.0.2 allows remote attackers to brute force user passwords and possibly gain unauthorized access to forums via the forum_id par…	CWE-89 SQL Injection	CVE-2003-1244	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357684	-	pedestal_software	integrity_protection_driver	NtCreateSymbolicLinkObject in ntdll.dll in Integrity Protection Driver (IPD) 1.2 and 1.3 allows local users to create and overwrite arbitrary files via a symlink attack on \winnt\system32\drivers usi…	NVD-CWE-Other	CVE-2003-1246	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357685	-	positive_software	h-sphere	Multiple buffer overflows in H-Sphere WebShell 2.3 allow remote attackers to execute arbitrary code via (1) a long URL content type in CGI::readFile, (2) a long path in diskusage, and (3) a long fnam…	NVD-CWE-Other	CVE-2003-1247	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357686	-	positive_software	h-sphere	H-Sphere WebShell 2.3 allows remote attackers to execute arbitrary commands via shell metacharacters in the (1) mode and (2) zipfile parameters in a URL request.	NVD-CWE-Other	CVE-2003-1248	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357687	-	businessobjects	webintelligence	WebIntelligence 2.7.1 uses guessable user session cookies, which allows remote attackers to hijack sessions.	NVD-CWE-Other	CVE-2003-1249	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357688	-	efficient_networks	5861_dsl_router	Efficient Networks 5861 DSL router, when running firmware 5.3.80 configured to block incoming TCP SYN, packets allows remote attackers to cause a denial of service (crash) via a flood of TCP SYN pack…	NVD-CWE-Other	CVE-2003-1250	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357689	-	nx	n_x_web_content_management_system_2002	The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via …	NVD-CWE-Other	CVE-2003-1251	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm

357690	-	kelli_shaver	s8forum	register.php in S8Forum 3.0 allows remote attackers to execute arbitrary PHP commands by creating a user whose name ends in a .php extension and entering the desired commands into the E-mail field, w…	NVD-CWE-Other	CVE-2003-1252	2008-09-6 05:36	2003-12-31	Show	GitHub Exploit DB Packet Storm