Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
211211 4.9 警告 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-8481 2014-11-11 18:02 2014-10-13 Show GitHub Exploit DB Packet Storm
211212 4.9 警告 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-8480 2014-11-11 18:01 2014-10-13 Show GitHub Exploit DB Packet Storm
211213 4.9 警告 Linux - Linux Kernel の IPv6 の実装に対する特定の Debian パッチにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2014-7207 2014-11-11 17:58 2014-10-27 Show GitHub Exploit DB Packet Storm
211214 5 警告 Elipse Software - Elipse E3 におけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2014-8652 2014-11-11 15:59 2014-07-15 Show GitHub Exploit DB Packet Storm
211215 2.1 注意 Linux - Linux Kernel の KVM サブシステムの arch/x86/kvm/emulate.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3647 2014-11-11 15:56 2014-10-24 Show GitHub Exploit DB Packet Storm
211216 4.9 警告 Linux - Linux Kernel の KVM サブシステムの WRMSR 処理機能におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-3610 2014-11-11 15:55 2014-10-24 Show GitHub Exploit DB Packet Storm
211217 5 警告 Ruby on Rails project
RubyGems.org		 - Ruby on Rails に同梱されている Sprockets の server.rb におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-7819 2014-11-11 13:55 2014-10-15 Show GitHub Exploit DB Packet Storm
211218 4.3 警告 Ruby on Rails project - Ruby on Rails の Action Pack の actionpack/lib/action_dispatch/middleware/static.rb におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2014-7818 2014-11-11 13:54 2014-10-10 Show GitHub Exploit DB Packet Storm
211219 4.3 警告 The phpMyAdmin Project - phpMyAdmin の micro history の実装におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-6300 2014-11-11 13:54 2014-09-13 Show GitHub Exploit DB Packet Storm
211220 4.9 警告 シトリックス・システムズ - Citrix NetScaler Application Delivery Controller および NetScaler Gateway における他のユーザのネットワークリソースにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-8580 2014-11-11 13:33 2014-10-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
293161 - cisco adaptive_security_appliance_5500_series
pix_security_appliance 		Memory leak in Cisco Adaptive Security Appliances (ASA) 5500 Series and PIX Security Appliances 8.0 before 8.0(4) and 8.1 before 8.1(2) allows remote attackers to cause a denial of service (memory co… CWE-399
 Resource Management Errors 		CVE-2008-3817 2017-09-29 10:31 2008-10-24 Show GitHub Exploit DB Packet Storm
293162 - freedesktop dbus
dbus1.0
dbus1.1.0 		The dbus_signature_validate function in the D-bus library (libdbus) before 1.2.4 allows remote attackers to cause a denial of service (application abort) via a message containing a malformed signatur… CWE-20
 Improper Input Validation  		CVE-2008-3834 2017-09-29 10:31 2008-10-8 Show GitHub Exploit DB Packet Storm
293163 - mozilla firefox
seamonkey
thunderbird 		The nsXMLDocument::OnChannelRedirect function in Mozilla Firefox before 2.0.0.17, Thunderbird before 2.0.0.17, and SeaMonkey before 1.1.12 allows remote attackers to bypass the Same Origin Policy and… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3835 2017-09-29 10:31 2008-09-25 Show GitHub Exploit DB Packet Storm
293164 - mozilla firefox
seamonkey
thunderbird 		NOTE: Thunderbird shares the browser engine with Firefox and could be vulnerable if JavaScript were to be enabled in mail. This is not the default setting and we strongly discourage users from runnin… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3835 2017-09-29 10:31 2008-09-25 Show GitHub Exploit DB Packet Storm
293165 - pdesigner z-breaknews SQL injection vulnerability in single.php in Z-Breaknews 2.0 allows remote attackers to execute arbitrary SQL commands via the id parameter. CWE-89
SQL Injection 		CVE-2008-3848 2017-09-29 10:31 2008-08-28 Show GitHub Exploit DB Packet Storm
293166 - davlin thickbox_gallery Davlin Thickbox Gallery 2 allows remote attackers to obtain the administrative username and MD5 password hash via a direct request to conf/admins.php. CWE-255
Credentials Management 		CVE-2008-3859 2017-09-29 10:31 2008-08-30 Show GitHub Exploit DB Packet Storm
293167 - phpmyrealty phpmyrealty Multiple SQL injection vulnerabilities in phpMyRealty (PMR) 1.0.9 and earlier allow remote attackers to execute arbitrary SQL commands via (1) the id parameter in pages.php and (2) the price_max para… CWE-89
SQL Injection 		CVE-2008-3861 2017-09-29 10:31 2008-08-30 Show GitHub Exploit DB Packet Storm
293168 - sun opensolaris
solaris 		The kernel in Sun Solaris 8 through 10 and OpenSolaris before snv_90 allows local users to bypass chroot, zones, and the Solaris Trusted Extensions multi-level security policy, and establish a covert… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3875 2017-09-29 10:31 2008-09-2 Show GitHub Exploit DB Packet Storm
293169 - acoustica mixcraft Stack-based buffer overflow in Acoustica Mixcraft 4.1 Build 96 and 4.2 Build 98 allows user-assisted attackers to execute arbitrary code via a crafted .mx4 file. NOTE: it was later reported that ver… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2008-3877 2017-09-29 10:31 2008-09-3 Show GitHub Exploit DB Packet Storm
293170 - hans_oesterholt cmme Multiple cross-site scripting (XSS) vulnerabilities in statistics.php in Content Management Made Easy (CMME) 1.12 allow remote attackers to inject arbitrary web script or HTML via the (1) page and (2… CWE-79
Cross-site Scripting 		CVE-2008-3923 2017-09-29 10:31 2008-09-5 Show GitHub Exploit DB Packet Storm