Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241191 7.5 危険 miniweb2 - Miniweb の blogwriter モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2197 2012-09-25 17:16 2008-05-14 Show GitHub Exploit DB Packet Storm
241192 4.3 警告 LifeType - LifeType の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2196 2012-09-25 17:16 2008-05-8 Show GitHub Exploit DB Packet Storm
241193 10 危険 itcms - IT!CMS の box/minichat/boxpop.php における任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2192 2012-09-25 17:16 2008-05-14 Show GitHub Exploit DB Packet Storm
241194 4.3 警告 mdsjack - Mjguest の mjguest.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2187 2012-09-25 17:16 2008-05-13 Show GitHub Exploit DB Packet Storm
241195 4.3 警告 SysAid Technologies Ltd. - SysAid の SystemList.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2179 2012-09-25 17:16 2008-05-13 Show GitHub Exploit DB Packet Storm
241196 4.3 警告 LifeType - LifeType の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2178 2012-09-25 17:16 2008-05-8 Show GitHub Exploit DB Packet Storm
241197 6.8 警告 php directory source - phpDirectorySource における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2177 2012-09-25 17:16 2008-05-13 Show GitHub Exploit DB Packet Storm
241198 7.1 危険 日立 - Hitachi GR ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2172 2012-09-25 17:16 2008-05-13 Show GitHub Exploit DB Packet Storm
241199 4.3 警告 IBM - IBM Lotus Quickr におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2163 2012-09-25 17:16 2008-05-13 Show GitHub Exploit DB Packet Storm
241200 9.3 危険 マイクロソフト - Microsoft Windows CE 5.0 の JPEG および GIF のイメージ処理における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2160 2012-09-25 17:16 2008-05-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
269951 8.1 HIGH
Network 		debian
charybdis_project 		debian_linux
charybdis 		The m_authenticate function in modules/m_sasl.c in Charybdis before 3.5.3 allows remote attackers to spoof certificate fingerprints and consequently log in as another user via a crafted AUTHENTICATE … CWE-285
Improper Authorization 		CVE-2016-7143 2024-11-21 11:57 2016-09-21 Show GitHub Exploit DB Packet Storm
269952 4.1 MEDIUM
Local 		xen xen Buffer overflow in Xen 4.7.x and earlier allows local x86 HVM guest OS administrators on guests running with shadow paging to cause a denial of service via a pagetable update. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7094 2024-11-21 11:57 2016-09-21 Show GitHub Exploit DB Packet Storm
269953 8.2 HIGH
Local 		xen xen Xen 4.5.3, 4.6.3, and 4.7.x allow local HVM guest OS administrators to overwrite hypervisor memory and consequently gain host OS privileges by leveraging mishandling of instruction pointer truncation… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-7093 2024-11-21 11:57 2016-09-21 Show GitHub Exploit DB Packet Storm
269954 8.2 HIGH
Local 		xen xen The get_page_from_l3e function in arch/x86/mm.c in Xen allows local 32-bit PV guest OS administrators to gain host OS privileges via vectors related to L3 recursive pagetables. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-7092 2024-11-21 11:57 2016-09-21 Show GitHub Exploit DB Packet Storm
269955 5.4 MEDIUM
Network 		nextcloud
owncloud 		nextcloud_server
owncloud 		Cross-site scripting (XSS) vulnerability in share.js in the gallery application in ownCloud Server before 9.0.4 and Nextcloud Server before 9.0.52 allows remote authenticated users to inject arbitrar… CWE-79
Cross-site Scripting 		CVE-2016-7419 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm
269956 7.5 HIGH
Network 		php php The php_wddx_push_element function in ext/wddx/wddx.c in PHP before 5.6.26 and 7.x before 7.0.11 allows remote attackers to cause a denial of service (invalid pointer access and out-of-bounds read) o… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7418 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm
269957 9.8 CRITICAL
Network 		php php ext/spl/spl_array.c in PHP before 5.6.26 and 7.x before 7.0.11 proceeds with SplArray unserialization without validating a return value and data type, which allows remote attackers to cause a denial … CWE-20
 Improper Input Validation  		CVE-2016-7417 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm
269958 7.5 HIGH
Network 		php php ext/intl/msgformat/msgformat_format.c in PHP before 5.6.26 and 7.x before 7.0.11 does not properly restrict the locale length provided to the Locale class in the ICU library, which allows remote atta… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7416 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm
269959 9.8 CRITICAL
Network 		icu-project international_components_for_unicode Stack-based buffer overflow in the Locale class in common/locid.cpp in International Components for Unicode (ICU) through 57.1 for C/C++ allows remote attackers to cause a denial of service (applicat… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7415 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm
269960 9.8 CRITICAL
Network 		php php The ZIP signature-verification feature in PHP before 5.6.26 and 7.x before 7.0.11 does not ensure that the uncompressed_filesize field is large enough, which allows remote attackers to cause a denial… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-7414 2024-11-21 11:57 2016-09-18 Show GitHub Exploit DB Packet Storm