Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241371	9.3	危険	ESET マイクロソフト	-	ESet NOD32 Antivirus における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5534	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241372	9.3	危険	フォーティネットマイクロソフト	-	Fortinet Antivirus における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5531	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241373	9.3	危険	マイクロソフト AVG Technologies	-	Ewido Security Suite における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5530	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241374	9.3	危険	マイクロソフトアラジン	-	Aladdin eSafe における HTML 文書のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5528	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241375	9.3	危険	ESET マイクロソフト	-	ESET Smart Security における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5527	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241376	9.3	危険	マイクロソフト Doctor Web	-	DrWeb Anti-virus における HTML 文書のマルウェアの検知が回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5526	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241377	9.3	危険	マイクロソフト ClamAV	-	ClamAV における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5525	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241378	9.3	危険	マイクロソフト AVAST Software s.r.o.	-	avast! antivirus における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5523	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241379	9.3	危険	マイクロソフト AVG Technologies	-	AVG Anti-Virus における HTML ドキュメント内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5522	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

241380	9.3	危険	マイクロソフト free-av	-	Avira AntiVir における HTML 文書内のマルウェアの検知を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5521	2012-06-26 16:03	2008-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267811	7.3	HIGH Network	apple libpng	mac_os_x libpng	Buffer overflow in the png_set_PLTE function in libpng before 1.0.65, 1.1.x and 1.2.x before 1.2.55, 1.3.x, 1.4.x before 1.4.18, 1.5.x before 1.5.25, and 1.6.x before 1.6.20 allows remote attackers t…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8472	2024-11-21 11:38	2016-01-22	Show	GitHub Exploit DB Packet Storm

267812	7.0	HIGH Network	isc	bind	buffer.c in named in ISC BIND 9.10.x before 9.10.3-P3, when debug logging is enabled, allows remote attackers to cause a denial of service (REQUIRE assertion failure and daemon exit, or daemon crash)…	CWE-20 Improper Input Validation	CVE-2015-8705	2024-11-21 11:38	2016-01-21	Show	GitHub Exploit DB Packet Storm

267813	6.5	MEDIUM Network	isc	bind	apl_42.c in ISC BIND 9.x before 9.9.8-P3, 9.9.x, and 9.10.x before 9.10.3-P3 allows remote authenticated users to cause a denial of service (INSIST assertion failure and daemon exit) via a malformed …	CWE-20 Improper Input Validation	CVE-2015-8704	2024-11-21 11:38	2016-01-21	Show	GitHub Exploit DB Packet Storm

267814	9.8	CRITICAL Network	php	php	Format string vulnerability in the zend_throw_or_error function in Zend/zend_execute_API.c in PHP 7.x before 7.0.1 allows remote attackers to execute arbitrary code via format string specifiers in a …	CWE-134 Use of Externally-Controlled Format String	CVE-2015-8617	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

267815	8.6	HIGH Network	php	php	Use-after-free vulnerability in the Collator::sortWithSortKeys function in ext/intl/collator/collator_sort.c in PHP 7.x before 7.0.1 allows remote attackers to cause a denial of service (application …	NVD-CWE-Other	CVE-2015-8616	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

267816	5.4	MEDIUM Network	gajim	gajim	Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.	CWE-20 Improper Input Validation	CVE-2015-8688	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267817	6.1	MEDIUM Network	dolibarr	dolibarr	Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) external calendar url or (2) the ba…	CWE-79 Cross-site Scripting	CVE-2015-8685	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267818	6.2	MEDIUM Local	huawei	s5300_firmware	Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password informa…	CWE-255 Credentials Management	CVE-2015-8675	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267819	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.	CWE-310 Cryptographic Issues	CVE-2015-8281	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

267820	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.	CWE-200 Information Exposure	CVE-2015-8280	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm