Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241241	5	警告	funscripts	-	ColdFusion の Red_Reservations スクリプトにおけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6580	2012-06-26 16:10	2009-04-2	Show	GitHub Exploit DB Packet Storm

241242	6.8	警告	abledating	-	ABK-Soft AbleDating の search_results.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6572	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

241243	4.3	警告	gallarific	-	Gallarific Free Edition におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6567	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

241244	10	危険	8pussy	-	Octopussy における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6566	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

241245	9.3	危険	Cerulean Studios	-	Trillian の XML 解析におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6563	2012-06-26 16:10	2009-03-31	Show	GitHub Exploit DB Packet Storm

241246	10	危険	Aztech Group Ltd	-	Aztech ADSL2/2+ 4-port ルータの cgi-bin/script における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2008-6554	2012-06-26 16:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

241247	5.1	警告	e-vision	-	e-Vision CMS におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6551	2012-06-26 16:10	2009-03-30	Show	GitHub Exploit DB Packet Storm

241248	4.3	警告	davidbourrier	-	Glossaire の glossaire.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6550	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

241249	7.5	危険	formencode	-	python-formencode の schema.py におけるアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6547	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

241250	10	危険	alecwh	-	phpns における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6546	2012-06-26 16:10	2009-03-29	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267521	7.8	HIGH Local	microsoft	infopath	Microsoft InfoPath 2007 SP3, 2010 SP2, and 2013 SP1 allows remote attackers to execute arbitrary code via a crafted Office document, aka "Microsoft Office Memory Corruption Vulnerability."	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-0021	2024-11-21 11:40	2016-03-9	Show	GitHub Exploit DB Packet Storm

267522	7.8	HIGH Local	microsoft	word word_for_mac office office_web_apps_server sharepoint_server office_compatibility_pack word_viewer	Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer, Word Automation …	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2016-0052	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267523	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	The WebDAV client in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 allows …	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0051	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267524	5.3	MEDIUM Network	microsoft	windows_server_2012 windows_server_2008	Network Policy Server (NPS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 Gold and R2 misparses username queries, which allows remote attackers to cause a denial of service (RADIUS …	CWE-20 Improper Input Validation	CVE-2016-0050	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267525	6.2	MEDIUM Local	microsoft	windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Kerberos in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 Gold and 1511 does not properly validate passw…	CWE-255 Credentials Management	CVE-2016-0049	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267526	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	The kernel-mode drivers in Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 a…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2016-0048	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267527	7.5	HIGH Network	microsoft	.net_framework	WinForms in Microsoft .NET Framework 2.0 SP2, 3.5, 3.5.1, 4.5.2, 4.6, and 4.6.1 allows remote attackers to obtain sensitive information from process memory via crafted icon data, aka "Windows Forms I…	CWE-200 Information Exposure	CVE-2016-0047	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267528	7.8	HIGH Local	microsoft	windows_server_2012 windows_8.1 windows_10	Windows Reader in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows remote attackers to execute arbitrary code via a crafted Reader file, aka "Microsoft Windows Reader Vul…	CWE-20 Improper Input Validation	CVE-2016-0046	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267529	7.5	HIGH Network	microsoft	windows_server_2012 windows_8.1 windows_rt_8.1	Sync Framework in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows RT 8.1 allows remote attackers to cause a denial of service (SyncShareSvc service outage) via crafted "change batch" data,…	CWE-20 Improper Input Validation	CVE-2016-0044	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm

267530	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_7 windows_10 windows_8.1 windows_server_2008 windows_vista	Microsoft Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, and Windows 10 Gold and 1511 mishandle DLL loading, which…	NVD-CWE-Other	CVE-2016-0042	2024-11-21 11:40	2016-02-10	Show	GitHub Exploit DB Packet Storm