Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231481 6.8 警告 Ruby on Rails project - Ruby on Rails におけるクロスサイトリクエストフォージェリ (CSRF) 保護を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7248 2012-12-20 19:10 2008-11-18 Show GitHub Exploit DB Packet Storm
231482 5.8 警告 silcnet - SILC Toolkit の silcd におけるスタック領域を上書きされる脆弱性 CWE-134
書式文字列の問題 		CVE-2008-7160 2012-12-20 19:10 2009-09-10 Show GitHub Exploit DB Packet Storm
231483 5.8 警告 silcnet - SILC Toolkit の lib/silcasn1/silcasn1_encode.c におけるスタック領域を上書きされる脆弱性 CWE-134
書式文字列の問題 		CVE-2008-7159 2012-12-20 19:10 2009-09-10 Show GitHub Exploit DB Packet Storm
231484 7.5 危険 phprisk - NetRisk における任意のユーザのパスワードを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7155 2012-12-20 19:10 2009-09-2 Show GitHub Exploit DB Packet Storm
231485 6.8 警告 Simon Rycroft - SID における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7152 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
231486 10 危険 synfig - Synfig Animation Studio における任意のコードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7148 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
231487 10 危険 RARLAB - RARLAB WinRAR における脆弱性 CWE-noinfo
情報不足 		CVE-2008-7144 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
231488 6.8 警告 phpBB - phpBB におけるセッションをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-7143 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
231489 4.3 警告 redgalaxy - Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7134 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
231490 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
295281 - microsoft office_2013_rt
office 		Microsoft Office 2013 and 2013 RT allows remote attackers to discover authentication tokens via a crafted response to a file-open request for an Office file on a web site, as exploited in the wild in… CWE-200
Information Exposure 		CVE-2013-5054 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295282 - microsoft windows_server_2008
windows_server_2012
windows_rt
windows_8.1
windows_xp
windows_7
windows_rt_8.1
windows_vista
windows_8
windows_server_2003 		Use-after-free vulnerability in the Scripting Runtime Object Library in Microsoft Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1… CWE-416
 Use After Free 		CVE-2013-5056 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295283 - microsoft internet_explorer Microsoft Internet Explorer 7 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corruption Vulne… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5052 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295284 - microsoft internet_explorer Microsoft Internet Explorer 10 and 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrupti… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5051 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295285 - microsoft internet_explorer Microsoft Internet Explorer 6 through 9 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corrup… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5049 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295286 - microsoft internet_explorer Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5048 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295287 - microsoft internet_explorer Microsoft Internet Explorer 6 through 11 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted web site, aka "Internet Explorer Memory Corru… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2013-5047 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295288 - microsoft internet_explorer Microsoft Internet Explorer 7 through 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, a… CWE-20
 Improper Input Validation  		CVE-2013-5046 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295289 - microsoft internet_explorer Microsoft Internet Explorer 10 and 11 allows local users to bypass the Protected Mode protection mechanism, and consequently gain privileges, by leveraging the ability to execute sandboxed code, aka … CWE-20
 Improper Input Validation  		CVE-2013-5045 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm
295290 - microsoft asp.net_signalr
visual_studio_team_foundation_server 		Cross-site scripting (XSS) vulnerability in Microsoft ASP.NET SignalR 1.1.x before 1.1.4 and 2.0.x before 2.0.1, and Visual Studio Team Foundation Server 2013, allows remote attackers to inject arbit… CWE-79
Cross-site Scripting 		CVE-2013-5042 2024-11-21 10:56 2013-12-11 Show GitHub Exploit DB Packet Storm