Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230791	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan および Client Server Messaging Security の cgiRecvFile.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2437	2012-12-20 18:52	2008-09-12	Show	GitHub Exploit DB Packet Storm

230792	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-2435	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

230793	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおけるクライアントシステム上へ任意のライブラリファイルをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-2434	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

230794	7.5	危険	トレンドマイクロ	-	Trend Micro OfficeScan などの Web 管理コンソールにおけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2008-2433	2012-12-20 18:52	2008-08-20	Show	GitHub Exploit DB Packet Storm

230795	9.3	危険	VideoLAN	-	Windows 上で稼動する VLC Media Player の modules/demux/wav.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-2430	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

230796	6.8	警告	torrenttrader	-	TorrentTrader Classic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2428	2012-12-20 18:52	2008-06-18	Show	GitHub Exploit DB Packet Storm

230797	7.5	危険	webslider	-	Web Slider の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2422	2012-12-20 18:52	2008-05-23	Show	GitHub Exploit DB Packet Storm

230798	4.3	警告	SAP	-	SAP WAS などの Web GUI におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2421	2012-12-20 18:52	2008-05-23	Show	GitHub Exploit DB Packet Storm

230799	6.8	警告	stunnel	-	stunnel の OCSP 関数におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2420	2012-12-20 18:52	2008-05-23	Show	GitHub Exploit DB Packet Storm

230800	6.8	警告	sazcart	-	SazCart の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2411	2012-12-20 18:52	2008-05-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
291241	-	canonical debian linux oracle	ubuntu_linux debian_linux linux_kernel linux	The Crypto API in the Linux kernel before 3.18.5 allows local users to load arbitrary kernel modules via a bind system call for an AF_ALG socket with a module name in the salg_name field, a different…	CWE-269 Improper Privilege Management	CVE-2013-7421	2024-11-21 11:00	2015-03-2	Show	GitHub Exploit DB Packet Storm

291242	-	redhat canonical opensuse gnu	enterprise_linux_server_aus ubuntu_linux opensuse glibc	The send_dg function in resolv/res_send.c in GNU C Library (aka glibc or libc6) before 2.20 does not properly reuse file descriptors, which allows remote attackers to send DNS queries to unintended l…	CWE-17 Code	CVE-2013-7423	2024-11-21 11:00	2015-02-25	Show	GitHub Exploit DB Packet Storm

291243	-	kde	kde_applications	kwalletd in KWallet before KDE Applications 14.12.0 uses Blowfish with ECB mode instead of CBC mode when encrypting the password store, which makes it easier for attackers to guess passwords via a co…	CWE-310 Cryptographic Issues	CVE-2013-7252	2024-11-21 11:00	2015-01-19	Show	GitHub Exploit DB Packet Storm

291244	-	hancom	hancom_office_2010_se	Buffer overflow in Hancom Office 2010 SE allows remote attackers to execute arbitrary via a long string in the Text attribute in a TEXTART XML element in an HML file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7420	2024-11-21 11:00	2015-01-13	Show	GitHub Exploit DB Packet Storm

291245	-	joomlaskin	js_multi_hotel	Cross-site scripting (XSS) vulnerability in includes/refreshDate.php in the Joomlaskin JS Multi Hotel (aka JS MultiHotel and Js-Multi-Hotel) plugin 2.2.1 for WordPress allows remote attackers to inje…	CWE-79 Cross-site Scripting	CVE-2013-7419	2024-11-21 11:00	2015-01-10	Show	GitHub Exploit DB Packet Storm

291246	-	ipcop	ipcop	cgi-bin/iptablesgui.cgi in IPCop (aka IPCop Firewall) before 2.1.5 allows remote authenticated users to execute arbitrary code via shell metacharacters in the TABLE parameter. NOTE: this can be expl…	CWE-77 Command Injection	CVE-2013-7418	2024-11-21 11:00	2015-01-3	Show	GitHub Exploit DB Packet Storm

291247	-	ipcop	ipcop	Cross-site scripting (XSS) vulnerability in cgi-bin/ipinfo.cgi in IPCop (aka IPCop Firewall) before 2.1.3 allows remote attackers to inject arbitrary web script or HTML via the QUERY_STRING. NOTE: t…	CWE-79 Cross-site Scripting	CVE-2013-7417	2024-11-21 11:00	2015-01-3	Show	GitHub Exploit DB Packet Storm

291248	-	c-icap_project	c-icap	The parse_request function in request.c in c-icap 0.2.x allows remote attackers to cause a denial of service (crash) via a URI without a " " or "?" character in an ICAP request, as demonstrated by us…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2013-7401	2024-11-21 11:00	2014-12-20	Show	GitHub Exploit DB Packet Storm

291249	-	c-icap_project	c-icap	Multiple unspecified vulnerabilities in request.c in c-icap 0.2.x allow remote attackers to cause a denial of service (crash) via a crafted ICAP request.	NVD-CWE-noinfo	CVE-2013-7402	2024-11-21 11:00	2014-12-18	Show	GitHub Exploit DB Packet Storm

291250	-	canto	canto_curses	canto_curses/guibase.py in Canto Curses before 0.9.0 allows remote feed servers to execute arbitrary commands via shell metacharacters in a URL in a feed.	CWE-77 Command Injection	CVE-2013-7416	2024-11-21 11:00	2014-12-4	Show	GitHub Exploit DB Packet Storm