Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241401	6.9	警告	gpsdrive	-	gpsdrive-scripts における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5380	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241402	6.9	警告	アップル	-	CUPS の pstopdf における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5377	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241403	6.9	警告	crip	-	crip の editcomment における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5376	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241404	6.9	警告	cmus	-	cmus の cmus-status-display における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5375	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241405	7.5	危険	Activewebsoftwares	-	ActiveWebSoftwares ActiveVotes の VoteHistory.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5365	2012-06-26 16:03	2008-12-8	Show	GitHub Exploit DB Packet Storm

241406	7.5	危険	bdigital web solutions	-	WebStudio CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5336	2012-06-26 16:03	2008-12-4	Show	GitHub Exploit DB Packet Storm

241407	4.3	警告	easy-script	-	Wysi Wiki Wyg の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5323	2012-06-26 16:03	2008-12-3	Show	GitHub Exploit DB Packet Storm

241408	7.8	危険	easy-script	-	Wysi Wiki Wyg におけるシステム情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-5322	2012-06-26 16:03	2008-12-3	Show	GitHub Exploit DB Packet Storm

241409	6.5	警告	e107.org	-	e107 の usersettings.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5320	2012-06-26 16:03	2008-12-3	Show	GitHub Exploit DB Packet Storm

241410	7.8	危険	アップルマイクロソフト	-	Apple iPhone Configuration Web Utility の Web インターフェースにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5315	2012-06-26 16:03	2008-12-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267531	3.3	LOW Local	opensuse	opensuse	tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8842	2024-11-21 11:39	2016-04-21	Show	GitHub Exploit DB Packet Storm

267532	9.8	CRITICAL Network	suse opensuse canonical debian gnu fedoraproject	linux_enterprise_server linux_enterprise_desktop linux_enterprise_debuginfo linux_enterprise_software_development_kit opensuse suse_linux_enterprise_server ubuntu_linux debian_li…	Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possib…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8779	2024-11-21 11:39	2016-04-20	Show	GitHub Exploit DB Packet Storm

267533	9.8	CRITICAL Network	fedoraproject debian canonical gnu suse opensuse	fedora debian_linux ubuntu_linux glibc linux_enterprise_server linux_enterprise_desktop linux_enterprise_debuginfo linux_enterprise_software_development_kit opensuse suse_l…	Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the s…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8778	2024-11-21 11:39	2016-04-20	Show	GitHub Exploit DB Packet Storm

267534	9.1	CRITICAL Network	suse opensuse canonical debian fedoraproject gnu	linux_enterprise_server linux_enterprise_desktop linux_enterprise_debuginfo linux_enterprise_software_development_kit opensuse suse_linux_enterprise_server ubuntu_linux debian_li…	The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive informatio…	CWE-189 Numeric Errors	CVE-2015-8776	2024-11-21 11:39	2016-04-20	Show	GitHub Exploit DB Packet Storm

267535	7.5	HIGH Network	xmlsoft canonical debian	libxml2 ubuntu_linux debian_linux	dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring…	NVD-CWE-noinfo	CVE-2015-8806	2024-11-21 11:39	2016-04-14	Show	GitHub Exploit DB Packet Storm

267536	6.5	MEDIUM Network	libtiff debian	libtiff debian_linux	The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif.	CWE-787 Out-of-bounds Write	CVE-2015-8784	2024-11-21 11:39	2016-04-14	Show	GitHub Exploit DB Packet Storm

267537	6.1	MEDIUM Network	fedoraproject horde debian	fedora groupware debian_linux	Cross-site scripting (XSS) vulnerability in the _renderVarInput_number function in horde/framework/Core/lib/Horde/Core/Ui/VarRenderer/Html.php in Horde Groupware before 5.2.12 and Horde Groupware Web…	CWE-79 Cross-site Scripting	CVE-2015-8807	2024-11-21 11:39	2016-04-14	Show	GitHub Exploit DB Packet Storm

267538	7.4	HIGH Local	foxitsoftware	foxit_reader	The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8843	2024-11-21 11:39	2016-04-14	Show	GitHub Exploit DB Packet Storm

267539	9.8	CRITICAL Network	eset	nod32	Heap-based buffer overflow in the Archive support module in ESET NOD32 before update 11861 allows remote attackers to execute arbitrary code via a large number of languages in an EPOC installation fi…	CWE-787 Out-of-bounds Write	CVE-2015-8841	2024-11-21 11:39	2016-04-12	Show	GitHub Exploit DB Packet Storm

267540	9.8	CRITICAL Network	cypherpunks	pidgin-otr	Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbit…	NVD-CWE-Other	CVE-2015-8833	2024-11-21 11:39	2016-04-12	Show	GitHub Exploit DB Packet Storm