Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
239921	6.8	警告	kkeim	-	Kmita Mail における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2199	2012-09-25 17:17	2008-05-14	Show	GitHub Exploit DB Packet Storm

239922	6	警告	IBM	-	IBM DB2 における任意のファイルを作成される脆弱性	CWE-16 環境設定	CVE-2008-2154	2012-09-25 17:16	2009-05-28	Show	GitHub Exploit DB Packet Storm

239923	6.8	警告	kmita tellfriend	-	Kmita Tellfriend における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2198	2012-09-25 17:16	2008-05-14	Show	GitHub Exploit DB Packet Storm

239924	7.5	危険	miniweb2	-	Miniweb の blogwriter モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2197	2012-09-25 17:16	2008-05-14	Show	GitHub Exploit DB Packet Storm

239925	4.3	警告	LifeType	-	LifeType の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2196	2012-09-25 17:16	2008-05-8	Show	GitHub Exploit DB Packet Storm

239926	10	危険	itcms	-	IT!CMS の box/minichat/boxpop.php における任意の PHP コードを挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2008-2192	2012-09-25 17:16	2008-05-14	Show	GitHub Exploit DB Packet Storm

239927	4.3	警告	mdsjack	-	Mjguest の mjguest.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2187	2012-09-25 17:16	2008-05-13	Show	GitHub Exploit DB Packet Storm

239928	4.3	警告	SysAid Technologies Ltd.	-	SysAid の SystemList.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2179	2012-09-25 17:16	2008-05-13	Show	GitHub Exploit DB Packet Storm

239929	4.3	警告	LifeType	-	LifeType の admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2178	2012-09-25 17:16	2008-05-8	Show	GitHub Exploit DB Packet Storm

239930	6.8	警告	php directory source	-	phpDirectorySource における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2177	2012-09-25 17:16	2008-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268421	7.8	HIGH Local	potrace_project	potrace	Heap-based buffer overflow in the bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to have unspecified impact via a crafted BMP image, a different vulnerability …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8698	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268422	5.5	MEDIUM Local	potrace_project	potrace	The bm_new function in bitmap.h in potrace before 1.13 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a crafted BMP image.	CWE-369 Divide By Zero	CVE-2016-8697	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268423	5.5	MEDIUM Local	potrace_project	potrace	The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulne…	CWE-476 NULL Pointer Dereference	CVE-2016-8696	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268424	5.5	MEDIUM Local	potrace_project	potrace	The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulne…	CWE-476 NULL Pointer Dereference	CVE-2016-8695	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268425	5.5	MEDIUM Local	potrace_project	potrace	The bm_readbody_bmp function in bitmap_io.c in potrace before 1.13 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted BMP image, a different vulne…	CWE-476 NULL Pointer Dereference	CVE-2016-8694	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268426	7.8	HIGH Local	potrace_project	potrace	The bm_new function in bitmap.h in potrace 1.13 allows remote attackers to have unspecified impact via a crafted image, which triggers a memory allocation failure.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8686	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268427	5.5	MEDIUM Local	potrace_project	potrace	The findnext function in decompose.c in potrace 1.13 allows remote attackers to cause a denial of service (invalid memory access and crash) via a crafted BMP image.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8685	2024-11-21 11:59	2017-02-1	Show	GitHub Exploit DB Packet Storm

268428	9.8	CRITICAL Network	tcpdump	tcpdump	The Q.933 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:q933_print(), a different vulnerability than CVE-2017-5482.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8575	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268429	9.8	CRITICAL Network	tcpdump	tcpdump	The FRF.15 parser in tcpdump before 4.9.0 has a buffer overflow in print-fr.c:frf15_print().	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-8574	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

268430	3.7	LOW Network	oracle	solaris	Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Kernel). The supported version that is affected is 11.3. Difficult to exploit vulnerability allows unauthent…	CWE-284 Improper Access Control	CVE-2016-8330	2024-11-21 11:59	2017-01-28	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed