Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241531	7.5	危険	fr.simon rundell TYPO3 Association	-	TYPO3 の ste_prayer2 拡張における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6461	2012-06-26 16:10	2008-07-9	Show	GitHub Exploit DB Packet Storm

241532	6.4	警告	blogator-script	-	Blogator-script の _blogadata/include/init_pass2.php における任意のユーザのパスワードを変更される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-6473	2012-06-26 16:10	2009-03-16	Show	GitHub Exploit DB Packet Storm

241533	5	警告	csphere	-	ClanSphere における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2008-6470	2012-06-26 16:10	2009-03-13	Show	GitHub Exploit DB Packet Storm

241534	7.5	危険	dieselscripts	-	Diesel Pay の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6468	2012-06-26 16:10	2009-03-13	Show	GitHub Exploit DB Packet Storm

241535	7.5	危険	dieselscripts	-	Diesel Job Site の jobs/jobseekers/job-info.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6467	2012-06-26 16:10	2009-03-13	Show	GitHub Exploit DB Packet Storm

241536	7.5	危険	e107.org akirapowered	-	Akira Powered Image Gallery プラグインの image_gallery.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6466	2012-06-26 16:10	2009-03-13	Show	GitHub Exploit DB Packet Storm

241537	7.5	危険	dieter mayer TYPO3 Association	-	TYPO3 の dmaddredit の FE address edit における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6458	2012-06-26 16:10	2009-03-13	Show	GitHub Exploit DB Packet Storm

241538	7.5	危険	brian wilson	-	ol'bookmarks manager の show.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6410	2012-06-26 16:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

241539	7.5	危険	brian wilson	-	ol'bookmarks manager の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6409	2012-06-26 16:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

241540	7.5	危険	brian wilson	-	ol'bookmarks manager の frame.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6408	2012-06-26 16:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268131	7.5	HIGH Network	suse libarchive canonical	linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive ubuntu_linux	bsdtar in libarchive before 3.2.0 allows remote attackers to cause a denial of service (infinite loop) via an ISO with a directory that is a member of itself.	CWE-20 Improper Input Validation	CVE-2015-8930	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268132	5.5	MEDIUM Local	suse libarchive	linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive	Memory leak in the __archive_read_get_extract function in archive_read_extract2.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service via a tar file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8929	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268133	5.5	MEDIUM Local	canonical libarchive suse	ubuntu_linux libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop	The process_add_entry function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.	CWE-125 Out-of-bounds Read	CVE-2015-8928	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268134	5.5	MEDIUM Local	libarchive	libarchive	The trad_enc_decrypt_update function in archive_read_support_format_zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds heap read and crash) via a cra…	CWE-125 Out-of-bounds Read	CVE-2015-8927	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268135	5.5	MEDIUM Local	canonical suse libarchive	ubuntu_linux linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop libarchive	The archive_read_format_rar_read_data function in archive_read_support_format_rar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (crash) via a crafted rar archive.	CWE-476 NULL Pointer Dereference	CVE-2015-8926	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268136	5.5	MEDIUM Local	canonical libarchive suse	ubuntu_linux libarchive linux_enterprise_software_development_kit linux_enterprise_server linux_enterprise_desktop	The readline function in archive_read_support_format_mtree.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (invalid read) via a crafted mtree file, related to newlin…	CWE-125 Out-of-bounds Read	CVE-2015-8925	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268137	5.5	MEDIUM Local	libarchive novell canonical	libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux	The archive_read_format_tar_read_header function in archive_read_support_format_tar.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafte…	CWE-125 Out-of-bounds Read	CVE-2015-8924	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268138	6.5	MEDIUM Network	libarchive novell canonical	libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux	The process_extra function in libarchive before 3.2.0 uses the size field and a signed number in an offset, which allows remote attackers to cause a denial of service (crash) via a crafted zip file.	CWE-20 Improper Input Validation	CVE-2015-8923	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268139	5.5	MEDIUM Local	libarchive novell canonical oracle	libarchive suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit ubuntu_linux linux	The read_CodersInfo function in archive_read_support_format_7zip.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted 7…	CWE-476 NULL Pointer Dereference	CVE-2015-8922	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm

268140	7.5	HIGH Network	novell libarchive canonical	suse_linux_enterprise_server suse_linux_enterprise_desktop suse_linux_enterprise_software_development_kit libarchive ubuntu_linux	The ae_strtofflags function in archive_entry.c in libarchive before 3.2.0 allows remote attackers to cause a denial of service (out-of-bounds read) via a crafted mtree file.	CWE-125 Out-of-bounds Read	CVE-2015-8921	2024-11-21 11:39	2016-09-20	Show	GitHub Exploit DB Packet Storm