Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241271 5 警告 easy-news - Easy Content Management Publishing におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6493 2012-06-26 16:10 2009-03-19 Show GitHub Exploit DB Packet Storm
241272 7.5 危険 denis moinel - PHPGKit における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6491 2012-06-26 16:10 2009-03-19 Show GitHub Exploit DB Packet Storm
241273 7.5 危険 flysforum - FLABER の function/update_xml.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6490 2012-06-26 16:10 2009-03-19 Show GitHub Exploit DB Packet Storm
241274 7.5 危険 digiappz - Digiappz DigiAffiliate の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6487 2012-06-26 16:10 2009-03-18 Show GitHub Exploit DB Packet Storm
241275 4.3 警告 BlogEngine.NET - BlogEngine.NET の blog/search.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6476 2012-06-26 16:10 2009-03-16 Show GitHub Exploit DB Packet Storm
241276 7.5 危険 drake team - Drake CMS の components/guestbook/guestbook.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6475 2012-06-26 16:10 2009-03-16 Show GitHub Exploit DB Packet Storm
241277 6.8 警告 edikon - Edikon phpShop におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-6455 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241278 7.5 危険 6rbscript - 6rbScript の section.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6454 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241279 4.3 警告 6rbscript - 6rbScript の section.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6453 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241280 7.5 危険 geniuscyber - CMS MAXSITE の Guestbook コンポーネントにおける guestbook に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6446 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267801 8.8 HIGH
Network 		squareup git-fastclone git-fastclone before 1.0.1 permits arbitrary shell command execution from .gitmodules. If an attacker can instruct a user to run a recursive clone from a repository they control, they can get a clien… CWE-77
Command Injection 		CVE-2015-8968 2024-11-21 11:39 2016-11-3 Show GitHub Exploit DB Packet Storm
267802 5.5 MEDIUM
Local 		linux linux_kernel fs/overlayfs/copy_up.c in the Linux kernel before 4.2.6 uses an incorrect cleanup code path, which allows local users to cause a denial of service (dentry reference leak) via filesystem operations on… CWE-399
 Resource Management Errors 		CVE-2015-8953 2024-11-21 11:39 2016-10-17 Show GitHub Exploit DB Packet Storm
267803 5.5 MEDIUM
Local 		linux linux_kernel The mbcache feature in the ext2 and ext4 filesystem implementations in the Linux kernel before 4.6 mishandles xattr block caching, which allows local users to cause a denial of service (soft lockup) … CWE-19
 Data Processing Errors 		CVE-2015-8952 2024-11-21 11:39 2016-10-17 Show GitHub Exploit DB Packet Storm
267804 6.1 MEDIUM
Local 		linux
google 		linux_kernel
android 		The rfcomm_sock_bind function in net/bluetooth/rfcomm/sock.c in the Linux kernel before 4.2 allows local users to obtain sensitive information or cause a denial of service (NULL pointer dereference) … CWE-476
 NULL Pointer Dereference 		CVE-2015-8956 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
267805 7.3 HIGH
Local 		linux
google 		linux_kernel
android 		arch/arm64/kernel/perf_event.c in the Linux kernel before 4.1 on arm64 platforms allows local users to gain privileges or cause a denial of service (invalid pointer dereference) via vectors involving… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8955 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
267806 7.8 HIGH
Local 		google android Multiple use-after-free vulnerabilities in sound/soc/msm/qdsp6v2/msm-lsm-client.c in the Qualcomm sound driver in Android before 2016-10-05 on Nexus 5X, Nexus 6P, and Android One devices allow attack… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8951 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
267807 5.5 MEDIUM
Local 		linux linux_kernel arch/arm64/mm/dma-mapping.c in the Linux kernel before 4.0.3, as used in the ION subsystem in Android and other products, does not initialize certain data structures, which allows local users to obta… CWE-200
Information Exposure 		CVE-2015-8950 2024-11-21 11:39 2016-10-10 Show GitHub Exploit DB Packet Storm
267808 9.8 CRITICAL
Network 		debian
uclouvain 		debian_linux
openjpeg 		Use-after-free vulnerability in the opj_j2k_write_mco function in j2k.c in OpenJPEG before 2.1.1 allows remote attackers to have unspecified impact via unknown vectors. CWE-416
 Use After Free 		CVE-2015-8871 2024-11-21 11:39 2016-09-21 Show GitHub Exploit DB Packet Storm
267809 8.1 HIGH
Network 		ietf
netapp 		transport_layer_security
snap_creator_framework
data_ontap_edge
snapdrive
snapmanager
smi-s_provider
host_agent
clustered_data_ontap_antivirus_connector
solidfire_\&_hci_m… 		The TLS protocol 1.2 and earlier supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute t… CWE-295
Improper Certificate Validation  		CVE-2015-8960 2024-11-21 11:39 2016-09-21 Show GitHub Exploit DB Packet Storm
267810 5.5 MEDIUM
Local 		suse
canonical
libarchive 		linux_enterprise_software_development_kit
linux_enterprise_server
linux_enterprise_desktop
ubuntu_linux
libarchive 		The copy_from_lzss_window function in archive_read_support_format_rar.c in libarchive 3.2.0 and earlier allows remote attackers to cause a denial of service (out-of-bounds heap read) via a crafted ra… CWE-125
Out-of-bounds Read 		CVE-2015-8934 2024-11-21 11:39 2016-09-20 Show GitHub Exploit DB Packet Storm