Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228401 7.5 危険 samhain labs - Samhain の SRP 実装における認証を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4810 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228402 5 警告 EFS Software - EFS Web Server の thumbnail.ghp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4809 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228403 6.8 警告 will kraft - EZ-Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4805 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228404 7.5 危険 will kraft - EZ-Blog における任意の投稿を作成される脆弱性 CWE-287
不適切な認証 		CVE-2009-4801 2012-12-20 19:28 2010-04-23 Show GitHub Exploit DB Packet Storm
228405 4 警告 Codeorigin - Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4800 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228406 6.8 警告 xlightftpd - Xlight FTP Server における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4795 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228407 7.5 危険 ryan haudenschilt - Family Connections における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4791 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
228408 5 警告 XOOPS - XOOPS の Profiles モジュールにおける管理者による承認を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4851 2012-12-20 19:28 2009-11-11 Show GitHub Exploit DB Packet Storm
228409 7.5 危険 phplivesupport - PHP Live! における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4749 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
228410 7.5 危険 Tecnick.com - AIOCP の public/code/cp_html2xhtmlbasic.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4747 2012-12-20 19:28 2010-03-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
274631 5.5 MEDIUM
Local 		linux linux_kernel fs/overlayfs/copy_up.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service (dentry reference leak) via filesystem operations on… CWE-399
 Resource Management Errors 		CVE-2015-8953 2024-11-21 11:39 2016-10-17 Show GitHub Exploit DB Packet Storm
274632 5.5 MEDIUM
Local 		linux linux_kernel The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service (soft lockup) … CWE-19
 Data Processing Errors 		CVE-2015-8952 2024-11-21 11:39 2016-10-17 Show GitHub Exploit DB Packet Storm
274633 6.1 MEDIUM
Local 		linux
google 		linux_kernel
android 		The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) … CWE-476
 NULL Pointer Dereference 		CVE-2015-8956 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
274634 7.3 HIGH
Local 		linux
google 		linux_kernel
android 		arch/arm64/kernel/perf_event.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via vectors involving… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8955 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
274635 7.8 HIGH
Local 		google android Multiple use-after-free vulnerabilities in sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm sound driver in Android before 2016-10-05 on Nexus 5X, Nexus 6P, and Android One devices allow attack… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8951 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
274636 5.5 MEDIUM
Local 		linux linux_kernel arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obta… CWE-200
Information Exposure 		CVE-2015-8950 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
274637 9.8 CRITICAL
Network 		debian
uclouvain 		debian_linux
openjpeg 		Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG before 2.1.1 allows remote attackers to have unspecified impact via unknown vectors. CWE-416
 Use After Free 		CVE-2015-8871 2024-11-21 11:39 2016-09-21 Show GitHub Exploit DB Packet Storm
274638 8.1 HIGH
Network 		ietf
netapp 		transport_layer_security
snap_creator_framework
data_ontap_edge
snapdrive
snapmanager
smi-s_provider
host_agent
clustered_data_ontap_antivirus_connector
solidfire_\&_hci_m… 		The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute t… CWE-295
Improper Certificate Validation  		CVE-2015-8960 2024-11-21 11:39 2016-09-21 Show GitHub Exploit DB Packet Storm
274639 5.5 MEDIUM
Local 		suse
canonical
libarchive 		linux_enterprise_software_development_kit
linux_enterprise_server
linux_enterprise_desktop
ubuntu_linux
libarchive 		The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ra… CWE-125
Out-of-bounds Read 		CVE-2015-8934 2024-11-21 11:39 2016-09-20 Show GitHub Exploit DB Packet Storm
274640 5.5 MEDIUM
Local 		libarchive
suse
canonical 		libarchive
linux_enterprise_software_development_kit
linux_enterprise_server
linux_enterprise_desktop
ubuntu_linux 		Integer overflow in the archive_read_format_tar_skip function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafte… CWE-190
 Integer Overflow or Wraparound 		CVE-2015-8933 2024-11-21 11:39 2016-09-20 Show GitHub Exploit DB Packet Storm