Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
237111 6.5 警告 ovidentia - Ovidentia の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4423 2012-09-25 17:17 2008-10-3 Show GitHub Exploit DB Packet Storm
237112 7.8 危険 hammer-software - MetaGauge におけるディレクトリトラバーサルの脆弱性の脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4421 2012-09-25 17:17 2008-10-7 Show GitHub Exploit DB Packet Storm
237113 9 危険 ヒューレット・パッカード - HPSM における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4415 2012-09-25 17:17 2008-11-17 Show GitHub Exploit DB Packet Storm
237114 6.2 警告 ヒューレット・パッカード - HP-UX 上の HP SMH における "許可されないアクセス権" を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4413 2012-09-25 17:17 2008-11-3 Show GitHub Exploit DB Packet Storm
237115 5 警告 ヒューレット・パッカード - HP SIM における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4412 2012-09-25 17:17 2008-10-15 Show GitHub Exploit DB Packet Storm
237116 4.3 警告 ヒューレット・パッカード - HP SMH におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4411 2012-09-25 17:17 2008-10-8 Show GitHub Exploit DB Packet Storm
237117 4.9 警告 Linux - Linux kernel の VMI におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4410 2012-09-25 17:17 2008-10-3 Show GitHub Exploit DB Packet Storm
237118 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4408 2012-09-25 17:17 2008-10-3 Show GitHub Exploit DB Packet Storm
237119 8.3 危険 Linux
Canonical		 - Linux Kernel の ndiswrapper モジュールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4395 2012-09-25 17:17 2008-11-5 Show GitHub Exploit DB Packet Storm
237120 9.3 危険 ROXIO
iseemedia
mgi software		 - Roxio などにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4384 2012-09-25 17:17 2008-10-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
346691 - mozilla mozilla Mozilla does not prevent cookies that are sent over an insecure channel (HTTP) from also being sent over a secure channel (HTTPS/SSL) in the same domain, which could allow remote attackers to steal c… NVD-CWE-Other
CVE-2004-0871 2017-07-11 10:30 2004-09-16 Show GitHub Exploit DB Packet Storm
346692 - apple ichat
ichat_av 		Apple iChat AV 2.1, AV 2.0, and 1.0.1 allows remote attackers to execute arbitrary programs via a "link" that references the program. NVD-CWE-Other
CVE-2004-0873 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
346693 - phpgroupware phpgroupware Multiple cross-site scripting (XSS) vulnerabilities in Phpgroupware (aka webdistro) 0.9.16.002 and earlier allow remote attackers to insert arbitrary HTML or web script, as demonstrated with a reques… NVD-CWE-Other
CVE-2004-0875 2017-07-11 10:30 2004-12-23 Show GitHub Exploit DB Packet Storm
346694 - getmail
gentoo
slackware 		getmail
linux
slackware_linux 		getmail 4.x before 4.2.0, when run as root, allows local users to overwrite arbitrary files via a symlink attack on an mbox file. NVD-CWE-Other
CVE-2004-0880 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346695 - getmail
gentoo
slackware 		getmail
linux
slackware_linux 		getmail 4.x before 4.2.0, and other versions before 3.2.5, when run as root, allows local users to write files in arbitrary directories via a symlink attack on subdirectories in the maildir. NVD-CWE-Other
CVE-2004-0881 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346696 - linux
suse 		linux_kernel
suse_linux 		SUSE Linux Enterprise Server 9 on the S/390 platform does not properly handle a certain privileged instruction, which allows local users to gain root privileges. NVD-CWE-Other
CVE-2004-0887 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346697 - easy_software_products
gnome
kde
pdftohtml
tetex
xpdf
debian
gentoo
redhat
suse
ubuntu 		cups
gpdf
koffice
kpdf
pdftohtml
tetex
xpdf
debian_linux
linux
kde
enterprise_linux
enterprise_linux_desktop
fedora_core
linux_advanced_workstation
suse_linu… 		Multiple integer overflows in xpdf 3.0, and other packages that use xpdf code such as CUPS, allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code, a differen… NVD-CWE-Other
CVE-2004-0889 2017-07-11 10:30 2005-01-27 Show GitHub Exploit DB Packet Storm
346698 - mozilla mozilla
thunderbird 		The Linux install .tar.gz archives for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8, create certain files with insecure permissions, which could allow … NVD-CWE-Other
CVE-2004-0907 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
346699 - mozilla mozilla
thunderbird 		Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 may allow remote attackers to trick users into performing unexpected actions, including installing softwar… NVD-CWE-Other
CVE-2004-0909 2017-07-11 10:30 2004-12-31 Show GitHub Exploit DB Packet Storm
346700 - debian netkit telnetd for netkit 0.17 and earlier, and possibly other versions, on Debian GNU/Linux allows remote attackers to cause a denial of service (free of an invalid pointer), a different vulnerability than… NVD-CWE-Other
CVE-2004-0911 2017-07-11 10:30 2004-11-3 Show GitHub Exploit DB Packet Storm