Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
204731 4.3 警告
Network 		The PHP Group
Facebook		 - PHP の ext/zip/php_zip.c および HHVM の ext/zip/ext_zip.cpp の ZipArchive::extractTo 関数におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-9767 2016-05-25 16:55 2014-09-10 Show GitHub Exploit DB Packet Storm
204732 9.8 緊急
Network 		The PHP Group - PHP の ext/standard/string.c の str_pad 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4346 2016-05-25 16:28 2016-03-3 Show GitHub Exploit DB Packet Storm
204733 9.8 緊急
Network 		The PHP Group - PHP の ext/filter/sanitizing_filters.c の php_filter_encode_url 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4345 2016-05-25 16:28 2016-03-3 Show GitHub Exploit DB Packet Storm
204734 9.8 緊急
Network 		The PHP Group - PHP の ext/xml/xml.c の xml_utf8_encode 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2016-4344 2016-05-25 16:28 2016-03-3 Show GitHub Exploit DB Packet Storm
204735 9.8 緊急
Network 		The PHP Group - PHP のフォーマットプリンタにおけるメモリ二重解放の脆弱性 CWE-Other
その他 		CVE-2015-8880 2016-05-25 16:28 2015-12-17 Show GitHub Exploit DB Packet Storm
204736 7.5 重要
Network 		The PHP Group - PHP の ext/odbc/php_odbc.c の odbc_bindcols 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2015-8879 2016-05-25 16:28 2015-08-6 Show GitHub Exploit DB Packet Storm
204737 5.9 警告
Network 		The PHP Group - PHP の main/php_open_temporary_file.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
CWE-362
CVE-2015-8878 2016-05-25 16:28 2015-08-6 Show GitHub Exploit DB Packet Storm
204738 7.5 重要
Network 		The PHP Group
LibGD project		 - PHP で使用される GD Graphics Library の gd_interpolation.c の gdImageScaleTwoPass 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2015-8877 2016-05-25 16:28 2015-08-5 Show GitHub Exploit DB Packet Storm
204739 9.8 緊急
Network 		The PHP Group - PHP の Zend/zend_exceptions.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2015-8876 2016-05-25 16:28 2015-08-6 Show GitHub Exploit DB Packet Storm
204740 7.5 重要
Network 		The PHP Group - PHP の ext/openssl/openssl.c の openssl_random_pseudo_bytes 関数における暗号保護メカニズムを破られる脆弱性 CWE-310
暗号の問題 		CVE-2015-8867 2016-05-25 16:28 2015-08-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
355151 - qnx rtos ptrace in the QNX realtime operating system (RTOS) 4.25 and 6.1.0 allows programs to attach to privileged processes, which could allow local users to execute arbitrary code by modifying running proce… NVD-CWE-Other
CVE-2002-2042 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355152 - cyrus sasl SQL injection vulnerability in the LDAP and MySQL authentication patch for Cyrus SASL 1.5.24 and 1.5.27 allows remote attackers to execute arbitrary SQL commands and log in as arbitrary POP mail user… NVD-CWE-Other
CVE-2002-2043 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355153 - xqus x-stat Cross-site scripting (XSS) vulnerability in x_stat_admin.php in x-stat 2.3 and earlier allows remote attackers to inject arbitrary web script or HTML via a parameter to the phpinfo action. NVD-CWE-Other
CVE-2002-2044 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355154 - xqus x-news x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie. NVD-CWE-Other
CVE-2002-2046 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355155 - sketch sketch The file preview functionality in Sketch 0.6.12 and earlier allows remote attackers to execute arbitrary commands via shell metacharacters in the filename of an encapsulated Postscript (EPS) file. NVD-CWE-Other
CVE-2002-2047 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355156 - dug_song dsniff
fragroute
fragrouter 		configure for Dsniff 2.3, fragroute 1.2, and fragrouter 1.6, when downloaded from monkey.org on May 17, 2002, has been modified to contain a backdoor, which allows remote attackers to access the syst… NVD-CWE-Other
CVE-2002-2049 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355157 - modlogan modlogan Directory traversal vulnerability in processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a .. (dot dot) in t… NVD-CWE-Other
CVE-2002-2050 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355158 - modlogan modlogan The processor_web plugin for ModLogAn 0.5.0 through 0.7.11, when used with the splitby option, allows local users to overwrite arbitrary files via a symlink attack on files specified as hostnames in … NVD-CWE-Other
CVE-2002-2051 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355159 - cisco ios Cisco 2611 router running IOS 12.1(6.5), possibly an interim release, allows remote attackers to cause a denial of service via port scans such as (1) scanning all ports on a single host and (2) scann… NVD-CWE-Other
CVE-2002-2052 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm
355160 - cisco ios The design of the Hot Standby Routing Protocol (HSRP), as implemented on Cisco IOS 12.1, when using IRPAS, allows remote attackers to cause a denial of service (CPU consumption) via a router with the… NVD-CWE-Other
CVE-2002-2053 2008-09-6 05:32 2002-12-31 Show GitHub Exploit DB Packet Storm