Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227381 4.3 警告 日立 - 複数の日立製品に含まれる Collaboration - Bulletin board におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		- 2012-12-28 16:17 2012-12-25 Show GitHub Exploit DB Packet Storm
227382 4.3 警告 Catalin Florian Radut - Drupal 用 Zero Point モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5591 2012-12-28 16:06 2012-11-28 Show GitHub Exploit DB Packet Storm
227383 7.5 危険 Script Head - Drupal 用 Webmail Plus モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-5590 2012-12-28 16:06 2012-11-28 Show GitHub Exploit DB Packet Storm
227384 3.5 注意 Net Genius - Drupal 用 MultiLink モジュールにおける任意のノードタイトルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-5589 2012-12-28 16:04 2012-11-28 Show GitHub Exploit DB Packet Storm
227385 2.6 注意 Matthias Hutterer - Drupal 用 Email Field モジュールにおける電子メールを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5588 2012-12-28 16:02 2012-11-28 Show GitHub Exploit DB Packet Storm
227386 4.3 警告 Matthias Hutterer - Drupal 用 Email Field モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5587 2012-12-28 15:58 2012-11-28 Show GitHub Exploit DB Packet Storm
227387 2.1 注意 Marc Ingram - Drupal 用 Services モジュールにおける任意のユーザの電子メールにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5586 2012-12-28 15:57 2012-11-28 Show GitHub Exploit DB Packet Storm
227388 2.1 注意 Mixpanel Project - Drupal 用 Mixpanel モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5585 2012-12-28 15:50 2012-11-28 Show GitHub Exploit DB Packet Storm
227389 4.3 警告 Made to Order Software - Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5584 2012-12-28 15:49 2012-11-14 Show GitHub Exploit DB Packet Storm
227390 6.8 警告 Sensio Labs - Symfony における任意のサービスにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6432 2012-12-28 15:20 2012-12-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
273621 7.8 HIGH
Local 		fedoraproject
debian
canonical
freedesktop 		fedora
debian_linux
ubuntu_linux
poppler 		Heap-based buffer overflow in the ExponentialFunction::ExponentialFunction function in Poppler before 0.40.0 allows remote attackers to cause a denial of service (memory corruption and crash) or poss… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8868 2024-11-21 11:39 2016-05-7 Show GitHub Exploit DB Packet Storm
273622 9.8 CRITICAL
Network 		opensuse
jq_project 		leap
opensuse
jq 		Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8863 2024-11-21 11:39 2016-05-7 Show GitHub Exploit DB Packet Storm
273623 5.1 MEDIUM
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5 allow local users to cause a denial of service (disk corruption) by writing to a page that is associated … CWE-362
Race Condition 		CVE-2015-8839 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
273624 7.8 HIGH
Local 		linux linux_kernel Integer overflow in the aio_setup_single_vector function in fs/aio.c in the Linux kernel 4.0 allows local users to cause a denial of service or possibly have unspecified other impact via a large AIO … NVD-CWE-Other
CVE-2015-8830 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
273625 7.5 HIGH
Network 		linux linux_kernel fs/nfs/nfs4proc.c in the NFS client in the Linux kernel before 4.2.2 does not properly initialize memory for migration recovery operations, which allows remote NFS servers to cause a denial of servic… NVD-CWE-Other
CVE-2015-8746 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
273626 5.5 MEDIUM
Local 		linux
suse
novell 		linux_kernel
suse_linux_enterprise_module_for_public_cloud
suse_linux_enterprise_live_patching
suse_linux_enterprise_server
suse_linux_enterprise_software_development_kit
suse_linux_en… 		The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim c… CWE-284
Improper Access Control 		CVE-2015-8845 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
273627 5.5 MEDIUM
Local 		linux linux_kernel The signal implementation in the Linux kernel before 4.3.5 on powerpc platforms does not check for an MSR with both the S and T bits set, which allows local users to cause a denial of service (TM Bad… CWE-20
 Improper Input Validation  		CVE-2015-8844 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
273628 9.8 CRITICAL
Network 		novell
linux
canonical 		suse_linux_enterprise_real_time_extension
linux_kernel
ubuntu_linux 		drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service … NVD-CWE-Other
CVE-2015-8812 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
273629 6.8 MEDIUM
Physics 		novell
linux
suse 		suse_linux_enterprise_server
suse_linux_enterprise_debuginfo
suse_linux_enterprise_live_patching
suse_linux_enterprise_real_time_extension
suse_linux_enterprise_desktop
suse_linux_ente… 		The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a … NVD-CWE-Other
CVE-2015-8816 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
273630 7.5 HIGH
Network 		varnish_cache_project
debian 		varnish_cache
debian_linux 		Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated… NVD-CWE-Other
CVE-2015-8852 2024-11-21 11:39 2016-04-25 Show GitHub Exploit DB Packet Storm