Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
240421 5.8 警告 opendb - OpenDb の user_admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3938 2012-09-25 17:17 2008-09-5 Show GitHub Exploit DB Packet Storm
240422 4.3 警告 opendb - OpenDb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3937 2012-09-25 17:17 2008-09-5 Show GitHub Exploit DB Packet Storm
240423 5.8 警告 hans oesterholt - CMME におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3926 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240424 4.3 警告 hans oesterholt - CMME の admin.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-3925 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240425 4.3 警告 hans oesterholt - CMME の "バックアップ作成" 機能におけるアカウント名を発見される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3924 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240426 4.3 警告 hans oesterholt - CMME の statistics.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3923 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240427 9.3 危険 ジャストシステム - ジャストシステムの一太郎などの製品における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3919 2012-09-25 17:17 2008-08-26 Show GitHub Exploit DB Packet Storm
240428 7.5 危険 ovidentia - Ovidentia の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3918 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240429 4.3 警告 ovidentia - Ovidentia の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3917 2012-09-25 17:17 2008-09-4 Show GitHub Exploit DB Packet Storm
240430 9.3 危険 Linux - Linux kernel の nfsd におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3915 2012-09-25 17:17 2008-08-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
265781 9.8 CRITICAL
Network 		graphicsmagick
debian 		graphicsmagick
debian_linux 		GraphicsMagick 1.3.26 has double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c. CWE-415
 Double Free 		CVE-2017-11139 2024-11-21 12:07 2017-07-10 Show GitHub Exploit DB Packet Storm
265782 5.5 MEDIUM
Local 		mpg123 mpg123 The III_i_stereo function in libmpg123/layer3.c in mpg123 through 1.25.1 allows remote attackers to cause a denial of service (buffer over-read and application crash) via a crafted audio file that is… CWE-125
Out-of-bounds Read 		CVE-2017-11126 2024-11-21 12:07 2017-07-10 Show GitHub Exploit DB Packet Storm
265783 9.8 CRITICAL
Network 		xar_project xar libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_get_path function in util.c. CWE-476
 NULL Pointer Dereference 		CVE-2017-11125 2024-11-21 12:07 2017-07-10 Show GitHub Exploit DB Packet Storm
265784 9.8 CRITICAL
Network 		xar_project xar libxar.so in xar 1.6.1 has a NULL pointer dereference in the xar_unserialize function in archive.c. CWE-476
 NULL Pointer Dereference 		CVE-2017-11124 2024-11-21 12:07 2017-07-10 Show GitHub Exploit DB Packet Storm
265785 7.5 HIGH
Network 		gnu ncurses In ncurses 6.0, there is a NULL Pointer Dereference in the _nc_parse_entry function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is used to … CWE-476
 NULL Pointer Dereference 		CVE-2017-11113 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm
265786 7.5 HIGH
Network 		gnu ncurses In ncurses 6.0, there is an attempted 0xffffffffffffffff access in the append_acs function of tinfo/parse_entry.c. It could lead to a remote denial of service attack if the terminfo library code is u… CWE-20
 Improper Input Validation  		CVE-2017-11112 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm
265787 7.8 HIGH
Local 		nasm
canonical 		netwide_assembler
ubuntu_linux 		In Netwide Assembler (NASM) 2.14rc0, preproc.c allows remote attackers to cause a denial of service (heap-based buffer overflow and application crash) or possibly have unspecified other impact via a … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-11111 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm
265788 7.8 HIGH
Local 		fossies catdoc The ole_init function in ole.c in catdoc 0.95 allows remote attackers to cause a denial of service (heap-based buffer underflow and application crash) or possibly have unspecified other impact via a … CWE-787
 Out-of-bounds Write 		CVE-2017-11110 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm
265789 7.8 HIGH
Local 		vim vim Vim 8.0 allows attackers to cause a denial of service (invalid free) or possibly have unspecified other impact via a crafted source (aka -S) file. NOTE: there might be a limited number of scenarios i… CWE-416
 Use After Free 		CVE-2017-11109 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm
265790 7.5 HIGH
Network 		tcpdump tcpdump tcpdump 4.9.0 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via crafted packet data. The crash occurs in the EXTRACT_16BITS function, called… CWE-125
Out-of-bounds Read 		CVE-2017-11108 2024-11-21 12:07 2017-07-9 Show GitHub Exploit DB Packet Storm