Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241591 7.5 危険 Activewebsoftwares - Active Newsletter の SubscriberStart.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6286 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
241592 7.5 危険 businessvein - PHP TV Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6285 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
241593 7.5 危険 1scripts - Z1Exchange の edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6284 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
241594 7.5 危険 bluocms - Bluo CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6281 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
241595 7.5 危険 appstate - Appalachian State University phpWebSite の links.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6266 2012-06-26 16:10 2009-02-25 Show GitHub Exploit DB Packet Storm
241596 6.8 警告 cyberfolio - Cyberfolio の portfolio/css.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6265 2012-06-26 16:10 2009-02-24 Show GitHub Exploit DB Packet Storm
241597 7.5 危険 e-topbiz - E-topbiz Slide Popups の admin/admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6264 2012-06-26 16:10 2009-02-24 Show GitHub Exploit DB Packet Storm
241598 7.5 危険 e-topbiz - E-topbiz AdManager の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6261 2012-06-26 16:10 2009-02-24 Show GitHub Exploit DB Packet Storm
241599 6.8 警告 comdev - Comdev Web Blogger における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6250 2012-06-26 16:10 2009-02-23 Show GitHub Exploit DB Packet Storm
241600 4.3 警告 galatolo - Galatolo WebManager の all.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6248 2012-06-26 16:10 2009-02-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268121 5.5 MEDIUM
Local 		huawei p7_firmware Huawei Sophia-L10 smartphones with software before P7-L10C900B852 allow attackers to cause a denial of service (system panic) via a crafted application with the system or camera privilege. CWE-20
 Improper Input Validation  		CVE-2015-8305 2024-11-21 11:38 2016-04-8 Show GitHub Exploit DB Packet Storm
268122 7.5 HIGH
Network 		ibm tivoli_storage_manager_fastback The server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to cause a denial of service (service crash) via crafted packets to a TCP port. CWE-284
Improper Access Control 		CVE-2015-8523 2024-11-21 11:38 2016-04-6 Show GitHub Exploit DB Packet Storm
268123 9.8 CRITICAL
Network 		ibm tivoli_storage_manager_fastback Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8522 2024-11-21 11:38 2016-04-6 Show GitHub Exploit DB Packet Storm
268124 9.8 CRITICAL
Network 		ibm tivoli_storage_manager_fastback Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8521 2024-11-21 11:38 2016-04-6 Show GitHub Exploit DB Packet Storm
268125 9.8 CRITICAL
Network 		ibm tivoli_storage_manager_fastback Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8520 2024-11-21 11:38 2016-04-6 Show GitHub Exploit DB Packet Storm
268126 9.8 CRITICAL
Network 		ibm tivoli_storage_manager_fastback Buffer overflow in the server in IBM Tivoli Storage Manager FastBack 5.5.x and 6.x before 6.1.12.2 allows remote attackers to execute arbitrary code via a crafted command, a different vulnerability t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8519 2024-11-21 11:38 2016-04-6 Show GitHub Exploit DB Packet Storm
268127 8.8 HIGH
Network 		symantec endpoint_protection_manager The SysPlant.sys driver in the Application and Device Control (ADC) component in the client in Symantec Endpoint Protection (SEP) 12.1 before RU6-MP4 allows remote attackers to execute arbitrary code… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8154 2024-11-21 11:38 2016-03-18 Show GitHub Exploit DB Packet Storm
268128 8.8 HIGH
Network 		symantec endpoint_protection_manager SQL injection vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors. CWE-89
SQL Injection 		CVE-2015-8153 2024-11-21 11:38 2016-03-18 Show GitHub Exploit DB Packet Storm
268129 8.0 HIGH
Network 		symantec endpoint_protection_manager Cross-site request forgery (CSRF) vulnerability in Symantec Endpoint Protection Manager (SEPM) 12.1 before RU6-MP4 allows remote authenticated users to hijack the authentication of administrators for… CWE-352
 Origin Validation Error 		CVE-2015-8152 2024-11-21 11:38 2016-03-18 Show GitHub Exploit DB Packet Storm
268130 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … CWE-787
 Out-of-bounds Write 		CVE-2015-8658 2024-11-21 11:38 2016-03-5 Show GitHub Exploit DB Packet Storm