Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
240421	5.8	警告	opendb	-	OpenDb の user_admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3938	2012-09-25 17:17	2008-09-5	Show	GitHub Exploit DB Packet Storm

240422	4.3	警告	opendb	-	OpenDb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3937	2012-09-25 17:17	2008-09-5	Show	GitHub Exploit DB Packet Storm

240423	5.8	警告	hans oesterholt	-	CMME におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3926	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240424	4.3	警告	hans oesterholt	-	CMME の admin.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-3925	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240425	4.3	警告	hans oesterholt	-	CMME の "バックアップ作成" 機能におけるアカウント名を発見される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3924	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240426	4.3	警告	hans oesterholt	-	CMME の statistics.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3923	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240427	9.3	危険	ジャストシステム	-	ジャストシステムの一太郎などの製品における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3919	2012-09-25 17:17	2008-08-26	Show	GitHub Exploit DB Packet Storm

240428	7.5	危険	ovidentia	-	Ovidentia の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3918	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240429	4.3	警告	ovidentia	-	Ovidentia の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3917	2012-09-25 17:17	2008-09-4	Show	GitHub Exploit DB Packet Storm

240430	9.3	危険	Linux	-	Linux kernel の nfsd におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3915	2012-09-25 17:17	2008-08-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
284241	5.9	MEDIUM Network	okb	smart_passbook	Smartphone Passbook 1.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to obtain sensitive information from encrypted communications via a crafted cer…	CWE-295 Improper Certificate Validation	CVE-2015-0874	2024-11-21 11:23	2017-09-26	Show	GitHub Exploit DB Packet Storm

284242	7.5	HIGH Network	cisco	cloud_web_security	Cisco Cloud Web Security before 3.0.1.7 allows remote attackers to bypass intended filtering protection mechanisms by leveraging improper handling of HTTP methods, aka Bug ID CSCut69743.	CWE-119 CWE-19 Incorrect Access of Indexable Resource ('Range Error') Data Processing Errors	CVE-2015-0689	2024-11-21 11:23	2017-09-20	Show	GitHub Exploit DB Packet Storm

284243	8.8	HIGH Network	pysvn_project	svn-workbench	svn-workbench 1.6.2 and earlier on a system with xeyes installed allows local users to execute arbitrary commands by using the "Command Shell" menu item while in the directory trunk/$(xeyes).	CWE-20 Improper Input Validation	CVE-2015-0853	2024-11-21 11:23	2017-09-7	Show	GitHub Exploit DB Packet Storm

284244	7.0	HIGH Local	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, a buffer overflow vulnerability exists in HSDPA.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-0576	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

284245	9.8	CRITICAL Network	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, insecure ciphersuites were included in the default configuration.	CWE-326 Inadequate Encryption Strength	CVE-2015-0575	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

284246	9.8	CRITICAL Network	google	android	In all Qualcomm products with Android releases from CAF using the Linux kernel, the validation of filesystem access was insufficient.	CWE-20 Improper Input Validation	CVE-2015-0574	2024-11-21 11:23	2017-08-19	Show	GitHub Exploit DB Packet Storm

284247	9.8	CRITICAL Network	novell	zenworks_configuration_management	Stack-based buffer overflow in the logging functionality in the Preboot Policy service in Novell ZENworks Configuration Management (ZCM) allows remote attackers to execute arbitrary code via unspecif…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-0786	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

284248	7.5	HIGH Network	novell	zenworks_configuration_management	com.novell.zenworks.inventory.rtr.actionclasses.wcreports in Novell ZENworks Configuration Management (ZCM) allows remote attackers to read arbitrary folders via the dirname variable.	CWE-200 Information Exposure	CVE-2015-0785	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

284249	7.5	HIGH Network	novell	zenworks_configuration_management	Rtrlet.class in Novell ZENworks Configuration Management (ZCM) allows remote attackers to obtain Session IDs of logged in users via a value of ShowLogins for the maintenance variable.	CWE-200 Information Exposure	CVE-2015-0784	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm

284250	6.5	MEDIUM Network	novell	zenworks_configuration_management	The FileViewer class in Novell ZENworks Configuration Management (ZCM) allows remote authenticated users to read arbitrary files via the filename variable.	CWE-200 Information Exposure	CVE-2015-0783	2024-11-21 11:23	2017-08-10	Show	GitHub Exploit DB Packet Storm