Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241621	6.8	警告	alice	-	TELECOM ITALIA Alice Gate2 Plus Wi-Fi の管理者パネルにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7165	2012-06-26 16:10	2009-09-4	Show	GitHub Exploit DB Packet Storm

241622	7.5	危険	フォーティネット	-	Fortinet FortiGuard Fortinet FortiGate-1000 における URL フィルタを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7161	2012-06-26 16:10	2009-09-4	Show	GitHub Exploit DB Packet Storm

241623	6.8	警告	ekinboard	-	EkinBoard における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7157	2012-06-26 16:10	2009-09-2	Show	GitHub Exploit DB Packet Storm

241624	6.8	警告	ekinboard	-	EkinBoard における管理者権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-7156	2012-06-26 16:10	2009-09-2	Show	GitHub Exploit DB Packet Storm

241625	5	警告	Docebo	-	Docebo における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-7154	2012-06-26 16:10	2009-09-2	Show	GitHub Exploit DB Packet Storm

241626	7.5	危険	Docebo	-	Docebo の doceboCore/lib/lib.regset.php の autoDetectRegion 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7153	2012-06-26 16:10	2009-09-2	Show	GitHub Exploit DB Packet Storm

241627	10	危険	agilewiki	-	AgileWiki における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-7149	2012-06-26 16:10	2009-09-1	Show	GitHub Exploit DB Packet Storm

241628	7.5	危険	coronamatrix	-	CoronaMatrix phpAddressBook の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7145	2012-06-26 16:10	2009-09-1	Show	GitHub Exploit DB Packet Storm

241629	5	警告	cPanel	-	cPanel の Disk Usage モジュールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-7142	2012-06-26 16:10	2009-09-1	Show	GitHub Exploit DB Packet Storm

241630	4.3	警告	alexphpteam	-	@lex Poll の setup.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7141	2012-06-26 16:10	2009-09-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267101	6.1	MEDIUM Network	python debian fedoraproject	python debian_linux fedora	The CGIHandler class in Python before 2.7.12 does not protect against the HTTP_PROXY variable name clash in a CGI script, which could allow a remote attacker to redirect HTTP requests.	CWE-601 Open Redirect	CVE-2016-1000110	2024-11-21 11:42	2019-11-28	Show	GitHub Exploit DB Packet Storm

267102	9.8	CRITICAL Network	facebook	hhvm	hhvm before 3.12.11 has a use-after-free in the serialize_memoize_param() and ResourceBundle::__construct() functions.	CWE-416 Use After Free	CVE-2016-1000006	2024-11-21 11:42	2019-11-20	Show	GitHub Exploit DB Packet Storm

267103	6.1	MEDIUM Network	redhat fedoraproject	pagure fedora enterprise_linux	Pagure: XSS possible in file attachment endpoint	CWE-79 Cross-site Scripting	CVE-2016-1000037	2024-11-21 11:42	2019-11-7	Show	GitHub Exploit DB Packet Storm

267104	2.4	LOW Physics	gnome redhat debian opensuse	gnome_display_manager enterprise_linux debian_linux leap	gdm3 3.14.2 and possibly later has an information leak before screen lock	CWE-200 Information Exposure	CVE-2016-1000002	2024-11-21 11:42	2019-11-5	Show	GitHub Exploit DB Packet Storm

267105	5.9	MEDIUM Network	pivotal_software	cloud_foundry_elastic_runtime	Pivotal Cloud Foundry Elastic Runtime version 1.4.0 through 1.4.5, 1.5.0 through 1.5.11 and 1.6.0 through 1.6.11 is vulnerable to a remote information disclosure. It was found that original mitigatio…	CWE-200 Information Exposure	CVE-2016-0715	2024-11-21 11:42	2018-09-12	Show	GitHub Exploit DB Packet Storm

267106	8.8	HIGH Network	infinispan	infinispan	The hotrod java client in infinispan before 9.1.0.Final automatically deserializes bytearray message contents in certain events. A malicious user could exploit this flaw by injecting a specially-craf…	CWE-502 Deserialization of Untrusted Data	CVE-2016-0750	2024-11-21 11:42	2018-09-11	Show	GitHub Exploit DB Packet Storm

267107	9.8	CRITICAL Network	suse pidgin	linux_enterprise_server pidgin	Pidgin version <2.11.0 contains a vulnerability in X.509 Certificates imports specifically due to improper check of return values from gnutls_x509_crt_init() and gnutls_x509_crt_import() that can res…	CWE-295 Improper Certificate Validation	CVE-2016-1000030	2024-11-21 11:42	2018-09-6	Show	GitHub Exploit DB Packet Storm

267108	5.9	MEDIUM Network	cloudfoundry	java_buildpack cf-release	Applications deployed to Cloud Foundry, versions v166 through v227, may be vulnerable to a remote disclosure of information, including, but not limited to environment variables and bound service deta…	CWE-200 Information Exposure	CVE-2016-0708	2024-11-21 11:42	2018-07-12	Show	GitHub Exploit DB Packet Storm

267109	10.0	CRITICAL Network	vmware	pivotal_software_mysql	MySQL for PCF tiles 1.7.x before 1.7.10 were discovered to log the AWS access key in plaintext. These credentials were logged to the Service Backup component logs, and not the system log, thus were n…	CWE-255 CWE-532 Credentials Management Inclusion of Sensitive Information in Log Files	CVE-2016-0898	2024-11-21 11:42	2018-03-30	Show	GitHub Exploit DB Packet Storm

267110	9.8	CRITICAL Network	kabona	webdatorcentral	A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral (WDC) versions prior to Version 3.4.0. WDC stores password credentials in plaintext.	CWE-255 Credentials Management	CVE-2016-0872	2024-11-21 11:42	2017-11-8	Show	GitHub Exploit DB Packet Storm