Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 16, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239471 10 危険 libcaudio - libcdaudio の cddb.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5030 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239472 6.8 警告 op5
Nagios Enterprises, LLC		 - Nagios などの製品で使用される cmd.cgi におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5028 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239473 3.5 注意 マイクロソフト - Microsoft SharePoint におけるクロスサイトスクリプティング (XSS) 攻撃を実行される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5026 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239474 4.3 警告 IBM - Lotus Domino の IBM Lotus Quickr サービスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5011 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239475 9.3 危険 Erik de Castro Lopo - Secret Rabbit Code の src/src_sinc.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5008 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239476 6.9 警告 lazarus - lazarus の create_lazarus_export_tgz.sh における任意のファイルを削除される脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5007 2012-09-25 17:17 2008-08-24 Show GitHub Exploit DB Packet Storm
239477 7.5 危険 mywebland - myWebland Bloggie Lite の genscode.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5004 2012-09-25 17:17 2008-11-10 Show GitHub Exploit DB Packet Storm
239478 7.8 危険 Nortel Networks - Nortel Networks UNIStim IP Phone におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4999 2012-09-25 17:17 2008-11-7 Show GitHub Exploit DB Packet Storm
239479 6.9 警告 jose m.vidal - bk2site の redirect.pl における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4995 2012-09-25 17:17 2008-08-24 Show GitHub Exploit DB Packet Storm
239480 6.9 警告 lars bahner - xcal の pscal における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4988 2012-09-25 17:17 2008-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268011 5.5 MEDIUM
Local 		libming libming Buffer overflow in the printMP3Headers function in listmp3.c in Libming 0.4.7 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mp3 file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9264 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268012 5.5 MEDIUM
Local 		jasper_project jasper Multiple integer overflows in the (1) jas_realloc function in base/jas_malloc.c and (2) mem_resize function in base/jas_stream.c in JasPer before 1.900.22 allow remote attackers to cause a denial of … CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9262 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268013 5.5 MEDIUM
Local 		wvware libwmf The wmf_malloc function in api.c in libwmf 0.2.8.4 allows remote attackers to cause a denial of service (application crash) via a crafted wmf file, which triggers a memory allocation failure. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-9011 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268014 5.5 MEDIUM
Local 		jasper_project
fedoraproject 		jasper
fedora 		The jp2_colr_destroy function in libjasper/jp2/jp2_cod.c in JasPer before 1.900.10 allows remote attackers to cause a denial of service (NULL pointer dereference). CWE-476
 NULL Pointer Dereference 		CVE-2016-8887 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268015 7.8 HIGH
Local 		jasper_project jasper The jas_malloc function in libjasper/base/jas_malloc.c in JasPer before 1.900.11 allows remote attackers to have unspecified impact via a crafted file, which triggers a memory allocation failure. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8886 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268016 5.5 MEDIUM
Local 		jasper_project jasper The bmp_getdata function in libjasper/bmp/bmp_dec.c in JasPer before 1.900.9 allows remote attackers to cause a denial of service (NULL pointer dereference) by calling the imginfo command with a craf… CWE-476
 NULL Pointer Dereference 		CVE-2016-8885 2024-11-21 12:00 2017-03-24 Show GitHub Exploit DB Packet Storm
268017 6.1 MEDIUM
Network 		novell groupwise A reflected XSS vulnerability exists in the web console of the Document Viewer Agent in Novell GroupWise before 2014 R2 Support Pack 1 Hot Patch 2 that may enable a remote attacker to execute JavaScr… CWE-79
Cross-site Scripting 		CVE-2016-9169 2024-11-21 12:00 2017-03-23 Show GitHub Exploit DB Packet Storm
268018 6.5 MEDIUM
Network 		novell edirectory A missing X-Frame-Options header in the NDS Utility Monitor in NDSD in Novell eDirectory before 9.0.2 could be used by remote attackers for clickjacking. CWE-20
 Improper Input Validation  		CVE-2016-9168 2024-11-21 12:00 2017-03-23 Show GitHub Exploit DB Packet Storm
268019 7.5 HIGH
Network 		novell edirectory NDSD in Novell eDirectory before 9.0.2 did not calculate ACLs on LDAP objects across partition boundaries correctly, which could lead to a privilege escalation by modifying user attributes that would… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-9167 2024-11-21 12:00 2017-03-23 Show GitHub Exploit DB Packet Storm
268020 7.5 HIGH
Network 		ca unified_infrastructure_management_snap
unified_infrastructure_management 		The get_sessions servlet in CA Unified Infrastructure Management (formerly CA Nimsoft Monitor) before 8.5 and CA Unified Infrastructure Management Snap (formerly CA Nimsoft Monitor Snap) allows remot… CWE-200
Information Exposure 		CVE-2016-9165 2024-11-21 12:00 2017-03-21 Show GitHub Exploit DB Packet Storm