Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
239731 6.8 警告 homeph design - HomePH Design におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2982 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239732 6.8 警告 homeph design - HomePH Design における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2981 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239733 4.3 警告 homeph design - HomePH Design におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2980 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239734 4.3 警告 ourvideo cms - Ourvideo CMS の phpi/login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2979 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239735 6.8 警告 ourvideo cms - Ourvideo CMS の phpi/rss.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2978 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239736 7.5 危険 ourvideo cms - Ourvideo CMS における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2977 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239737 6.8 警告 mm chat - MM Chat の chatconfig.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2974 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239738 4.3 警告 mm chat - MM Chat の chathead.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2973 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239739 7.5 危険 kblance.com - KbLance の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2972 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
239740 7.5 危険 jaxultrabb - JaxUltraBB の viewprofile.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2966 2012-09-25 17:17 2008-07-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268131 5.3 MEDIUM
Network 		exponentcms exponent_cms getUsersByJSON in framework/modules/users/controllers/usersController.php in Exponent CMS v2.4.0 allows remote attackers to read user information via users/getUsersByJSON/sort/ and a trailing string. CWE-200
Information Exposure 		CVE-2016-9284 2024-11-21 12:00 2016-11-12 Show GitHub Exploit DB Packet Storm
268132 7.5 HIGH
Network 		exponentcms exponent_cms SQL Injection in framework/core/subsystems/expRouter.php in Exponent CMS v2.4.0 allows remote attackers to read database information via address/addContentToSearch/id/ and a trailing string, related … CWE-89
SQL Injection 		CVE-2016-9283 2024-11-21 12:00 2016-11-12 Show GitHub Exploit DB Packet Storm
268133 7.5 HIGH
Network 		exponentcms exponent_cms SQL Injection in framework/modules/search/controllers/searchController.php in Exponent CMS v2.4.0 allows remote attackers to read database information via action=search&module=search with the search_… CWE-89
SQL Injection 		CVE-2016-9282 2024-11-21 12:00 2016-11-12 Show GitHub Exploit DB Packet Storm
268134 7.5 HIGH
Network 		samsung samsung_mobile Integer overflow in SystemUI in KK(4.4) and L(5.0/5.1) on Samsung Note devices allows attackers to cause a denial of service (UI restart) via vectors involving APIs and an activity that computes an o… CWE-190
 Integer Overflow or Wraparound 		CVE-2016-9277 2024-11-21 12:00 2016-11-12 Show GitHub Exploit DB Packet Storm
268135 7.8 HIGH
Local 		git_for_windows_project git_for_windows Untrusted search path vulnerability in Git 1.x for Windows allows local users to gain privileges via a Trojan horse git.exe file in the current working directory. NOTE: 2.x is unaffected. CWE-426
 Untrusted Search Path 		CVE-2016-9274 2024-11-21 12:00 2016-11-12 Show GitHub Exploit DB Packet Storm
268136 9.1 CRITICAL
Network 		exponentcms exponent_cms A Blind SQL Injection Vulnerability in Exponent CMS through 2.4.0, with the rerank array parameter, can lead to site database information disclosure and denial of service. CWE-89
SQL Injection 		CVE-2016-9272 2024-11-21 12:00 2016-11-11 Show GitHub Exploit DB Packet Storm
268137 7.2 HIGH
Network 		dotclear dotclear Unrestricted file upload vulnerability in the Blog appearance in the "Install or upgrade manually" module in Dotclear through 2.10.4 allows remote authenticated super-administrators to execute arbitr… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2016-9268 2024-11-21 12:00 2016-11-11 Show GitHub Exploit DB Packet Storm
268138 8.8 HIGH
Local 		nvidia geforce_experience For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA GeForce Experience R340 before GFE 2.11.4.125 and R375 before GFE 3.1.0.52 contains a vulnerability in the kernel mode layer (nvstreamkms.sys)… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-8812 2024-11-21 12:00 2016-11-9 Show GitHub Exploit DB Packet Storm
268139 7.8 HIGH
Local 		nvidia gpu_driver For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8811 2024-11-21 12:00 2016-11-9 Show GitHub Exploit DB Packet Storm
268140 7.8 HIGH
Local 		nvidia gpu_driver For the NVIDIA Quadro, NVS, and GeForce products, NVIDIA Windows GPU Display Driver R340 before 342.00 and R375 before 375.63 contains a vulnerability in the kernel mode layer (nvlddmkm.sys) handler … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-8810 2024-11-21 12:00 2016-11-9 Show GitHub Exploit DB Packet Storm