Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 30, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241511	7.5	危険	icebb	-	IceBB の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4431	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241512	10	危険	phlatline	-	pPIM の upload.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4428	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241513	7.5	危険	phlatline	-	pPIM の changepassword.php における任意のパスワードを変更される脆弱性	CWE-287 不適切な認証	CVE-2008-4427	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241514	4.3	警告	phlatline	-	pPIM の events.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4426	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241515	8.8	危険	phlatline	-	pPIM の upload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4425	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241516	6.5	警告	ovidentia	-	Ovidentia の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4423	2012-09-25 17:17	2008-10-3	Show	GitHub Exploit DB Packet Storm

241517	7.8	危険	hammer-software	-	MetaGauge におけるディレクトリトラバーサルの脆弱性の脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4421	2012-09-25 17:17	2008-10-7	Show	GitHub Exploit DB Packet Storm

241518	9	危険	ヒューレット・パッカード	-	HPSM における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4415	2012-09-25 17:17	2008-11-17	Show	GitHub Exploit DB Packet Storm

241519	6.2	警告	ヒューレット・パッカード	-	HP-UX 上の HP SMH における "許可されないアクセス権" を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-4413	2012-09-25 17:17	2008-11-3	Show	GitHub Exploit DB Packet Storm

241520	5	警告	ヒューレット・パッカード	-	HP SIM における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-4412	2012-09-25 17:17	2008-10-15	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
287881	-	bullguard	bdagent.sys internet_security online_backup premium_protection	bdagent.sys in BullGuard Antivirus, Internet Security, Premium Protection, and Online Backup before 15.0.288 allows local users to write data to arbitrary memory locations, and consequently gain priv…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9642	2024-11-21 11:21	2015-02-7	Show	GitHub Exploit DB Packet Storm

287882	-	trendmicro	tmeext.sys	The tmeext.sys driver before 2.0.0.1015 in Trend Micro Antivirus Plus, Internet Security, and Maximum Security allows local users to write to arbitrary memory locations, and consequently gain privile…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9641	2024-11-21 11:21	2015-02-7	Show	GitHub Exploit DB Packet Storm

287883	-	unzip_project canonical debian fedoraproject	unzip ubuntu_linux debian_linux fedora	unzip 6.0 allows remote attackers to cause a denial of service (out-of-bounds read or write and crash) via an extra field with an uncompressed size smaller than the compressed field size in a zip arc…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2014-9636	2024-11-21 11:21	2015-02-7	Show	GitHub Exploit DB Packet Storm

287884	-	avg	protection internet_security	The TDI driver (avgtdix.sys) in AVG Internet Security before 2013.3495 Hot Fix 18 and 2015.x before 2015.5315 and Protection before 2015.5315 allows local users to write to arbitrary memory locations…	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9632	2024-11-21 11:21	2015-02-7	Show	GitHub Exploit DB Packet Storm

287885	-	m2_technologies	optimalsite	Cross-site scripting (XSS) vulnerability in display_dialog.php in M2 OptimalSite 0.1 and 2.4 allows remote attackers to inject arbitrary web script or HTML via the image parameter.	CWE-79 Cross-site Scripting	CVE-2014-9562	2024-11-21 11:21	2015-02-5	Show	GitHub Exploit DB Packet Storm

287886	-	comodo	backup	The bdisk.sys driver in COMODO Backup before 4.4.1.23 allows remote attackers to gain privileges via a crafted device handle, which triggers a NULL pointer dereference.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2014-9633	2024-11-21 11:21	2015-02-4	Show	GitHub Exploit DB Packet Storm

287887	-	fluxbb	fluxbb	Directory traversal vulnerability in install.php in FluxBB before 1.5.8 allows remote attackers to include and execute arbitrary local install.php files via a .. (dot dot) in the install_lang paramet…	CWE-22 Path Traversal	CVE-2014-9574	2024-11-21 11:21	2015-02-4	Show	GitHub Exploit DB Packet Storm

287888	-	voxpupuli	rabbitmq	puppetlabs-rabbitmq 3.0 through 4.1 stores the RabbitMQ Erlang cookie value in the facts of a node, which allows local users to obtain sensitive information as demonstrated by using Facter.	CWE-200 Information Exposure	CVE-2014-9568	2024-11-21 11:21	2015-02-4	Show	GitHub Exploit DB Packet Storm

287889	-	snipsnap	snipsnap	Cross-site scripting (XSS) vulnerability in SnipSnap 0.5.2a, 1.0b1, and 1.0b2 allows remote attackers to inject arbitrary web script or HTML via the query parameter to /snipsnap-search.	CWE-79 Cross-site Scripting	CVE-2014-9559	2024-11-21 11:21	2015-02-4	Show	GitHub Exploit DB Packet Storm

287890	-	libmspack_project	libmspack	Integer overflow in the qtmd_decompress function in libmspack 0.4 allows remote attackers to cause a denial of service (hang) via a crafted CAB file, which triggers an infinite loop.	CWE-189 Numeric Errors	CVE-2014-9556	2024-11-21 11:21	2015-02-4	Show	GitHub Exploit DB Packet Storm