Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
216691 8.3 危険 Samba Project - Samba の winbindd の librpc/rpc/dcerpc_util.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4408 2014-01-17 11:06 2013-12-9 Show GitHub Exploit DB Packet Storm
216692 4.3 警告 Mozilla Foundation - Linux 上で稼働する Mozilla Firefox および SeaMonkey におけるクリップボードデータを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2013-6672 2014-01-17 10:59 2013-12-10 Show GitHub Exploit DB Packet Storm
216693 6.4 警告 Nagios Enterprises, LLC - Nagios Core の contrib/daemonchk.c 内の process_cgivars 関数における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2013-7205 2014-01-16 17:55 2013-12-20 Show GitHub Exploit DB Packet Storm
216694 5.5 警告 Nagios Enterprises, LLC
The Icinga Project		 - Nagios Core および Icinga におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7108 2014-01-16 17:52 2013-12-17 Show GitHub Exploit DB Packet Storm
216695 4.3 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0379 2014-01-16 17:47 2014-01-14 Show GitHub Exploit DB Packet Storm
216696 5.5 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0372 2014-01-16 17:46 2014-01-14 Show GitHub Exploit DB Packet Storm
216697 3.5 注意 オラクル - Oracle Supply Chain Products Suite の Oracle Demantra Demand Management における DM Others に関する脆弱性 CWE-noinfo
情報不足 		CVE-2014-0371 2014-01-16 17:46 2014-01-14 Show GitHub Exploit DB Packet Storm
216698 5.5 警告 オラクル - Oracle Supply Chain Products Suite の Oracle Agile Product Lifecycle Management for Process における Manage Data Cache に関する脆弱性 CWE-noinfo
情報不足 		CVE-2013-5897 2014-01-16 17:45 2014-01-14 Show GitHub Exploit DB Packet Storm
216699 4 警告 Apache Software Foundation - Apache CloudStack におけるネットワーク ACL を一覧表示される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0031 2014-01-16 17:19 2014-01-10 Show GitHub Exploit DB Packet Storm
216700 6.9 警告 クアルコム
Android for MSM		 - MSM デバイス用 Qualcomm Innovation Center Android コントリビューションなどで使用される Linux Kernel 用 MSM カメラドライバにおける権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6123 2014-01-16 16:48 2013-10-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
298751 - vim vim The Netrw plugin 125 in netrw.vim in Vim 7.2a.10 allows user-assisted attackers to execute arbitrary code via shell metacharacters in filenames used by the execute and system functions within the (1)… CWE-78
OS Command  		CVE-2008-3076 2017-08-8 10:31 2009-02-22 Show GitHub Exploit DB Packet Storm
298752 - opera opera_browser Opera before 9.51 does not properly manage memory within functions supporting the CANVAS element, which allows remote attackers to read uninitialized memory contents by using JavaScript to read a can… CWE-200
Information Exposure 		CVE-2008-3078 2017-08-8 10:31 2008-07-9 Show GitHub Exploit DB Packet Storm
298753 - opera opera Unspecified vulnerability in Opera before 9.51 on Windows allows attackers to execute arbitrary code via unknown vectors. NVD-CWE-noinfo
CVE-2008-3079 2017-08-8 10:31 2008-07-9 Show GitHub Exploit DB Packet Storm
298754 - avaya messaging_storage_server Multiple unspecified "input validation" vulnerabilities in the Web management interface (aka Messaging Administration interface) in Avaya Message Storage Server (MSS) 3.x and 4.0, and possibly Commun… CWE-20
 Improper Input Validation  		CVE-2008-3081 2017-08-8 10:31 2008-07-9 Show GitHub Exploit DB Packet Storm
298755 - commtouch enterprise_anti-spam_gateway Cross-site scripting (XSS) vulnerability in UPM/English/login/login.asp in Commtouch Enterprise Anti-Spam Gateway 4 and 5 allows remote attackers to inject arbitrary web script or HTML via the PARAMS… CWE-79
Cross-site Scripting 		CVE-2008-3082 2017-08-8 10:31 2008-07-9 Show GitHub Exploit DB Packet Storm
298756 - blognplus blognplus Multiple SQL injection vulnerabilities in index.php in BlognPlus (BURO GUN +) 2.5.5 MySQL and PostgreSQL editions allow remote attackers to execute arbitrary SQL commands via the (1) p, (2) e, (3) d,… CWE-89
SQL Injection 		CVE-2008-3090 2017-08-8 10:31 2008-07-10 Show GitHub Exploit DB Packet Storm
298757 - drupal taxonomy_autotagger_module Cross-site scripting (XSS) vulnerability in the Taxonomy Autotagger module 5.x before 5.x-1.8 for Drupal allows remote authenticated users, with create or edit post permissions, to inject arbitrary w… CWE-79
Cross-site Scripting 		CVE-2008-3091 2017-08-8 10:31 2008-07-10 Show GitHub Exploit DB Packet Storm
298758 - drupal taxonomy_autotagger_module SQL injection vulnerability in the Taxonomy Autotagger module 5.x before 5.x-1.8 for Drupal allows remote authenticated users, with create or edit post permissions, to execute arbitrary SQL commands … CWE-89
SQL Injection 		CVE-2008-3092 2017-08-8 10:31 2008-07-10 Show GitHub Exploit DB Packet Storm
298759 - drupal organic_groups_module Cross-site scripting (XSS) vulnerability in the Organic Groups (OG) module 5.x before 5.x-7.3 and 6.x before 6.x-1.0-RC1, a module for Drupal, allows remote authenticated users, with group owner perm… CWE-79
Cross-site Scripting 		CVE-2008-3095 2017-08-8 10:31 2008-07-10 Show GitHub Exploit DB Packet Storm
298760 - drupal outline_designer_module The Outline Designer module 5.x before 5.x-1.4 for Drupal changes each content reader's authentication level to match that of the content author, which might allow remote attackers to gain privileges. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2008-3096 2017-08-8 10:31 2008-07-10 Show GitHub Exploit DB Packet Storm