Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
236451 5 警告 Novell - Novell eDirectory の eDirectory Host Environment サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1777 2012-09-25 17:16 2008-04-14 Show GitHub Exploit DB Packet Storm
236452 3.5 注意 Zoho Corporation - ManageEngine Firewall Analyzer の mindex.do におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1775 2012-09-25 17:16 2008-04-14 Show GitHub Exploit DB Packet Storm
236453 5 警告 iScripts - iScripts SocialWare における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2008-1772 2012-09-25 17:16 2008-04-14 Show GitHub Exploit DB Packet Storm
236454 7.5 危険 kwsphp
jeuxflash		 - KwsPHP 用の jeuxflash モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1759 2012-09-25 17:16 2008-04-12 Show GitHub Exploit DB Packet Storm
236455 7.5 危険 kwsphp - KwsPHP の ConcoursPhoto モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1758 2012-09-25 17:16 2008-04-12 Show GitHub Exploit DB Packet Storm
236456 4.3 警告 kwsphp - KwsPHP の ConcoursPhoto モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1757 2012-09-25 17:16 2008-04-12 Show GitHub Exploit DB Packet Storm
236457 6.8 警告 ksemail - Ksemail の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1751 2012-09-25 17:16 2008-04-11 Show GitHub Exploit DB Packet Storm
236458 7.5 危険 livecart - Integry Systems LiveCart における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1750 2012-09-25 17:16 2008-04-11 Show GitHub Exploit DB Packet Storm
236459 4 警告 Ignite Realtime - Ignite Realtime Openfire におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1728 2012-09-25 17:16 2008-03-4 Show GitHub Exploit DB Packet Storm
236460 7.5 危険 myknowledgequest - KnowledgeQuest における任意の admin アカウントを作成される脆弱性 CWE-287
不適切な認証 		CVE-2008-1727 2012-09-25 17:16 2008-04-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
451 - - - An out-of-bounds read in power management firmware by a malicious local attacker with low privileges could potentially lead to a partial loss of confidentiality and availability. New CWE-125
Out-of-bounds Read 		CVE-2025-0044 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
452 - - - An out of bounds write within the AMD Platform Management Framework (PMF) could allow an attacker to execute arbitrary code at an elevated privilege level potentially leading to loss of confidentiali… New CWE-787
 Out-of-bounds Write 		CVE-2025-29935 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
453 - - - Improper input validation within the AMD Platform Management Framework (PMF) could allow an attacker to unmap arbitrary memory pages potentially impacting integrity and availability, or allowing priv… New CWE-20
 Improper Input Validation  		CVE-2025-29936 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
454 - - - An out of bounds read within the AMD Platform Management Framework (PMF) could allow an attacker to trigger a read of an arbitrary memory location potentially resulting in loss of availability or con… New CWE-125
Out-of-bounds Read 		CVE-2025-29937 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
455 - - - An unchecked return value within the AMD Platform Management Framework (PMF) could allow an attacker to write to an arbitrary memory address resulting in denial of service or arbitrary code execution. New CWE-252
 Unchecked Return Value 		CVE-2025-29938 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
456 - - - A buffer overflow vulnerability within AMD Sensor Fusion Hub Driver can allow a local attacker to write out of bounds, potentially resulting in denial of service or crash New CWE-120
Classic Buffer Overflow 		CVE-2025-29944 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
457 - - - Use of uninitialized resource within the AMD Platform Management Framework (PMF) could allow an attacker to read a uninitialized kernel memory resulting in loss of confidentiality or availability. New CWE-908
 Use of Uninitialized Resource 		CVE-2025-48513 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
458 - - - Insecure default configuration state of DDR5 memory module by AGESA Bootloader Firmware could allow an attacker with local user privilege to abuse the unprotected PMIC interface to create a permanent… New CWE-276
Incorrect Default Permissions  		CVE-2025-48516 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
459 - - - Improper handling of insufficient privileges in the AMD Secure Processor (ASP) could allow an attacker to provide an input value to a function without sufficient privileges and successfully write dat… New CWE-274
 Improper Handling of Insufficient Privileges 		CVE-2025-54511 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm
460 - - - Out of bounds write in AMD AMDGV_CMD_GET_DIAG_DATA ioctl handler could allow a local user to escalate privileges via remote code execution. New CWE-787
 Out-of-bounds Write 		CVE-2025-54517 2026-05-15 23:10 2026-05-15 Show GitHub Exploit DB Packet Storm