Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241461 7.2 危険 dcgrendel
Canonical		 - Ubuntu におけるログイン制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-5104 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
241462 7.2 危険 dcgrendel
Canonical		 - Ubuntu の VMBuilder におけるログイン制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-5103 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
241463 10 危険 AEF Group - Electron Inc. Advanced Electron Forum における任意の PHP コードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5090 2012-06-26 16:03 2008-11-14 Show GitHub Exploit DB Packet Storm
241464 9.3 危険 datadynamics - Data Dynamics ActiveReports の DDActiveReportsViewer2.ARViewer2 ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-5089 2012-06-26 16:03 2008-11-14 Show GitHub Exploit DB Packet Storm
241465 4.3 警告 Laurent Destailleur - AWStats の awstats.pl におけるクロスサイトスクリプティング攻撃を実行する脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5080 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
241466 7.5 危険 deeserver - Panuwat PromoteWeb MySQL の go.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5069 2012-06-26 16:03 2008-11-14 Show GitHub Exploit DB Packet Storm
241467 10 危険 agaresmedia - Agares Media ThemeSiteScript の upload/admin/frontpage_right.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5066 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
241468 6.9 警告 enomaly - ECP における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4990 2012-06-26 16:03 2009-02-2 Show GitHub Exploit DB Packet Storm
241469 7.5 危険 easy-script - TlGuestBook における管理アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-5065 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
241470 7.5 危険 ASP indir - Yigit Aybuga Dizi Portali の film.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5057 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267901 - xen xen The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly release locks, which might allow guest OS administrators to cause a denial of service (deadlock or host cr… CWE-17
Code 		CVE-2015-8340 2024-11-21 11:38 2015-12-18 Show GitHub Exploit DB Packet Storm
267902 - xen xen The memory_exchange function in common/memory.c in Xen 3.2.x through 4.6.x does not properly hand back pages to a domain, which might allow guest OS administrators to cause a denial of service (host … CWE-19
 Data Processing Errors 		CVE-2015-8339 2024-11-21 11:38 2015-12-18 Show GitHub Exploit DB Packet Storm
267903 - xen xen Xen 4.6.x and earlier does not properly enforce limits on page order inputs for the (1) XENMEM_increase_reservation, (2) XENMEM_populate_physmap, (3) XENMEM_exchange, and possibly other HYPERVISOR_me… CWE-254
 7PK - Security Features 		CVE-2015-8338 2024-11-21 11:38 2015-12-18 Show GitHub Exploit DB Packet Storm
267904 - redhat
linuxfoundation
canonical
debian 		enterprise_linux_server_eus
enterprise_linux_hpc_node
enterprise_linux_desktop
enterprise_linux_server
enterprise_linux_workstation
foomatic-filters
ubuntu_linux
cups-filters
 Incomplete blacklist vulnerability in util.c in foomatic-rip in cups-filters 1.0.42 before 1.2.0 and in foomatic-filters in Foomatic 4.0.x allows remote attackers to execute arbitrary commands via ` … NVD-CWE-Other
CVE-2015-8327 2024-11-21 11:38 2015-12-18 Show GitHub Exploit DB Packet Storm
267905 - foxitsoftware foxit_reader
phantompdf 		Multiple use-after-free vulnerabilities in the (1) Print method and (2) App object handling in Foxit Reader before 7.2.2 and Foxit PhantomPDF before 7.2.2 allow remote attackers to execute arbitrary … NVD-CWE-Other
CVE-2015-8580 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm
267906 - joomla session The Session package 1.x before 1.3.1 for Joomla! Framework allows remote attackers to execute arbitrary code via unspecified session values. NVD-CWE-noinfo
CVE-2015-8566 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm
267907 - joomla joomla\! Directory traversal vulnerability in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via unknown vectors. CWE-22
CWE-20
Path Traversal
 Improper Input Validation  		CVE-2015-8565 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm
267908 - joomla joomla\! Directory traversal vulnerability in Joomla! 3.4.x before 3.4.6 allows remote attackers to have unspecified impact via directory traversal sequences in the XML install file in an extension package ar… CWE-22
CWE-20
Path Traversal
 Improper Input Validation  		CVE-2015-8564 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm
267909 - joomla joomla\! Cross-site request forgery (CSRF) vulnerability in the com_templates component in Joomla! 3.2.0 through 3.3.x and 3.4.x before 3.4.6 allows remote attackers to hijack the authentication of unspecifie… CWE-352
 Origin Validation Error 		CVE-2015-8563 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm
267910 - joomla joomla\! Joomla! 1.5.x, 2.x, and 3.x before 3.4.6 allow remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via the HTTP User-Agent header, as exploited in the wild in Dece… CWE-20
 Improper Input Validation  		CVE-2015-8562 2024-11-21 11:38 2015-12-17 Show GitHub Exploit DB Packet Storm