Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
201681 9.3 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2015-8460 2016-01-4 16:00 2015-12-28 Show GitHub Exploit DB Packet Storm
201682 10 危険 マイクロソフト
アドビシステムズ
Google		 - Adobe Flash Player および Adobe AIR における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2015-8459 2016-01-4 16:00 2015-12-28 Show GitHub Exploit DB Packet Storm
201683 4.3 警告 シスコシステムズ - Windows 上で稼動する Cisco Jabber における STARTTLS ダウングレード攻撃を実行される脆弱性 CWE-200
情報漏えい 		CVE-2015-6409 2016-01-4 15:30 2015-12-24 Show GitHub Exploit DB Packet Storm
201684 3.5 注意 日立 - EUR における複数のクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2015-12-28 13:53 2015-12-7 Show GitHub Exploit DB Packet Storm
201685 4.9 警告 ヒューレット・パッカード
日立		 - HP Universal Configuration Management Database における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-5440 2015-12-28 13:52 2015-09-9 Show GitHub Exploit DB Packet Storm
201686 7.5 危険 Dovestones Software Ltd - Dovestones Software AD Self Password Reset に脆弱性 CWE-264
CWE-Other
CVE-2015-8267 2015-12-25 15:32 2015-12-18 Show GitHub Exploit DB Packet Storm
201687 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2015-2992 2015-12-25 13:45 2015-09-4 Show GitHub Exploit DB Packet Storm
201688 5 警告 Adcon Telemetry - Adcon Telemetry A840 Telemetry Gateway ベースステーションの Java クライアントにおけるログファイルのパス名を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-7934 2015-12-25 11:43 2015-12-15 Show GitHub Exploit DB Packet Storm
201689 5 警告 Adcon Telemetry - Adcon Telemetry A840 Telemetry Gateway ベースステーションおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2015-7932 2015-12-25 11:43 2015-12-15 Show GitHub Exploit DB Packet Storm
201690 5.8 警告 Adcon Telemetry - Adcon Telemetry A840 Telemetry Gateway ベースステーションの Java クライアントにおけるデバイスになりすまされる脆弱性 CWE-20
CWE-200
CVE-2015-7931 2015-12-25 11:43 2015-12-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
297571 - avaya ip_soft_phone Unspecified vulnerability in Avaya IP Softphone 6.0 SP4 and 6.01.85 allows remote attackers to cause a denial of service (crash) via a large amount of H.323 data. CWE-399
 Resource Management Errors 		CVE-2008-6141 2017-08-17 10:29 2009-02-14 Show GitHub Exploit DB Packet Storm
297572 - hispah text_links_ads SQL injection vulnerability in index.php in Hispah Text Links Ads 1.1 allows remote attackers to execute arbitrary SQL commands via the idtl parameter in a buy action. NOTE: the provenance of this i… CWE-89
SQL Injection 		CVE-2008-6155 2017-08-17 10:29 2009-02-17 Show GitHub Exploit DB Packet Storm
297573 - w3bcms w3b\>cms Multiple unspecified vulnerabilities in the admin backend in w3b>cms (aka w3blabor CMS) before 3.2.0 have unknown impact and remote attack vectors. NVD-CWE-noinfo
CVE-2008-6158 2017-08-17 10:29 2009-02-18 Show GitHub Exploit DB Packet Storm
297574 - drupal semantically_interconnected_online_communities Semantically-Interconnected Online Communities (SIOC) 5.x before 5.x-1.2 and 6.x before 6.x-1.1, a module for Drupal, does not properly implement menu and database APIs, which allows remote attackers… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-6160 2017-08-17 10:29 2009-02-19 Show GitHub Exploit DB Packet Storm
297575 - drupal localization_client
localization_server 		Cross-site request forgery (CSRF) vulnerability in the Localization client 5.x before 5.x-1.1 and 6.x before 6.x-1.6 and the Localization server 5.x before 5.x-1.0-alpha5 and 6.x before 6.x-alpha2, m… CWE-352
 Origin Validation Error 		CVE-2008-6169 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297576 - drupal drupal Cross-site scripting (XSS) vulnerability in Drupal 5.x before 5.12 and 6.x before 6.6 allows remote authenticated users with create book content or edit node book hierarchy permissions to inject arbi… CWE-79
Cross-site Scripting 		CVE-2008-6170 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297577 - drupal drupal includes/bootstrap.inc in Drupal 5.x before 5.12 and 6.x before 6.6, when the server is configured for "IP-based virtual hosts," allows remote attackers to include and execute arbitrary files via the… CWE-16
CWE-20
Configuration
 Improper Input Validation  		CVE-2008-6171 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297578 - clip-share clipshare Cross-site scripting (XSS) vulnerability in fullscreen.php in ClipShare Pro 4.0 allows remote attackers to inject arbitrary web script or HTML via the title parameter. CWE-79
Cross-site Scripting 		CVE-2008-6173 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297579 - jetbox jetbox_cms Cross-site scripting (XSS) vulnerability in admin/postlister/index.php in Jetbox CMS 2.1 allows remote attackers to inject arbitrary web script or HTML via the liste parameter. CWE-79
Cross-site Scripting 		CVE-2008-6174 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm
297580 - gforge gforge SQL injection vulnerability in GForge 4.5.19 allows remote attackers to execute arbitrary SQL commands via the offset parameter to (1) new/index.php, (2) news/index.php, and (3) top/topusers.php, whi… CWE-89
SQL Injection 		CVE-2008-6189 2017-08-17 10:29 2009-02-20 Show GitHub Exploit DB Packet Storm