Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241401 6.9 警告 gpsdrive - gpsdrive-scripts における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5380 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
241402 6.9 警告 アップル - CUPS の pstopdf における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5377 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
241403 6.9 警告 crip - crip の editcomment における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5376 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
241404 6.9 警告 cmus - cmus の cmus-status-display における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5375 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
241405 7.5 危険 Activewebsoftwares - ActiveWebSoftwares ActiveVotes の VoteHistory.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5365 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
241406 7.5 危険 bdigital web solutions - WebStudio CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5336 2012-06-26 16:03 2008-12-4 Show GitHub Exploit DB Packet Storm
241407 4.3 警告 easy-script - Wysi Wiki Wyg の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5323 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
241408 7.8 危険 easy-script - Wysi Wiki Wyg におけるシステム情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-5322 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
241409 6.5 警告 e107.org - e107 の usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5320 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
241410 7.8 危険 アップル
マイクロソフト		 - Apple iPhone Configuration Web Utility の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5315 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267901 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR S… CWE-416
 Use After Free 		CVE-2015-8821 2024-11-21 11:39 2016-03-5 Show GitHub Exploit DB Packet Storm
267902 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … CWE-787
 Out-of-bounds Write 		CVE-2015-8820 2024-11-21 11:39 2016-03-5 Show GitHub Exploit DB Packet Storm
267903 9.8 CRITICAL
Network 		nettle_project
canonical
opensuse 		nettle
ubuntu_linux
leap
opensuse 		The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allo… CWE-310
Cryptographic Issues 		CVE-2015-8805 2024-11-21 11:39 2016-02-24 Show GitHub Exploit DB Packet Storm
267904 9.8 CRITICAL
Network 		nettle_project
canonical
opensuse 		nettle
ubuntu_linux
leap
opensuse 		x86_64/ecc-384-modp.asm in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-384 NIST elliptic curve, which allows attackers to… CWE-310
CWE-254
Cryptographic Issues
 7PK - Security Features 		CVE-2015-8804 2024-11-21 11:39 2016-02-24 Show GitHub Exploit DB Packet Storm
267905 9.8 CRITICAL
Network 		nettle_project
canonical
opensuse 		nettle
ubuntu_linux
leap
opensuse 		The ecc_256_modp function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allo… CWE-310
CWE-254
Cryptographic Issues
 7PK - Security Features 		CVE-2015-8803 2024-11-21 11:39 2016-02-24 Show GitHub Exploit DB Packet Storm
267906 6.1 MEDIUM
Network 		apache solr Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/plugins.js in the stats page in the Admin UI in Apache Solr before 5.3.1 allows remote attackers to inject arbitrary web script or HT… CWE-79
Cross-site Scripting 		CVE-2015-8797 2024-11-21 11:39 2016-02-15 Show GitHub Exploit DB Packet Storm
267907 6.1 MEDIUM
Network 		apache solr Cross-site scripting (XSS) vulnerability in webapp/web/js/scripts/schema-browser.js in the Admin UI in Apache Solr before 5.3 allows remote attackers to inject arbitrary web script or HTML via a craf… CWE-79
Cross-site Scripting 		CVE-2015-8796 2024-11-21 11:39 2016-02-15 Show GitHub Exploit DB Packet Storm
267908 6.1 MEDIUM
Network 		apache solr Multiple cross-site scripting (XSS) vulnerabilities in the Admin UI in Apache Solr before 5.1 allow remote attackers to inject arbitrary web script or HTML via crafted fields that are mishandled duri… CWE-79
Cross-site Scripting 		CVE-2015-8795 2024-11-21 11:39 2016-02-15 Show GitHub Exploit DB Packet Storm
267909 9.8 CRITICAL
Network 		linux linux_kernel The nf_nat_redirect_ipv4 function in net/netfilter/nf_nat_redirect.c in the Linux kernel before 4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and system crash) or… CWE-476
 NULL Pointer Dereference 		CVE-2015-8787 2024-11-21 11:39 2016-02-8 Show GitHub Exploit DB Packet Storm
267910 6.2 MEDIUM
Local 		linux
suse 		linux_kernel
linux_enterprise_real_time_extension 		The fuse_fill_write_pages function in fs/fuse/file.c in the Linux kernel before 4.4 allows local users to cause a denial of service (infinite loop) via a writev system call that triggers a zero lengt… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2015-8785 2024-11-21 11:39 2016-02-8 Show GitHub Exploit DB Packet Storm