Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241631 4.3 警告 alexguestbook - @lex Guestbook におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7140 2012-06-26 16:10 2009-09-1 Show GitHub Exploit DB Packet Storm
241632 6.8 警告 eye.fi - Eye-Fi の WS-Proxy におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7139 2012-06-26 16:10 2009-09-1 Show GitHub Exploit DB Packet Storm
241633 5 警告 eye.fi - Eye-Fi の Manager における任意のイメージをアップロードされる脆弱性 CWE-310
暗号の問題 		CVE-2008-7138 2012-06-26 16:10 2009-09-1 Show GitHub Exploit DB Packet Storm
241634 5 警告 eye.fi - Eye-Fi の WS-Proxy におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7137 2012-06-26 16:10 2009-09-1 Show GitHub Exploit DB Packet Storm
241635 9 危険 ariadne-cms - Ariadne の pphoto における任意のシェルコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-7125 2012-06-26 16:10 2009-08-31 Show GitHub Exploit DB Packet Storm
241636 4.3 警告 ber kessels
Drupal		 - Drupal のモジュールの Taxonomy による Refine におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7150 2012-06-26 16:10 2008-05-5 Show GitHub Exploit DB Packet Storm
241637 10 危険 evansprogramming - Evans Programming Registry Pro の (epRegPro.ocx) における重要なレジストリキーを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2008-7122 2012-06-26 16:10 2009-08-31 Show GitHub Exploit DB Packet Storm
241638 10 危険 Belkin International - Belkin Wireless G ルータ の Web インターフェースにおける管理者権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7115 2012-06-26 16:10 2009-08-28 Show GitHub Exploit DB Packet Storm
241639 7.2 危険 ESET - ESET Smart Security の easdrv.sys におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7107 2012-06-26 16:10 2009-08-28 Show GitHub Exploit DB Packet Storm
241640 7.8 危険 アルバネットワークス株式会社 - Aruba Mobility Controller の ArubaOS の SNMP デーモンにおける SNMPv3 ユーザ名を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7095 2012-06-26 16:10 2009-08-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267211 7.8 HIGH
Local 		microsoft word
sharepoint_server
office
office_web_apps_server
office_compatibility_pack
word_viewer 		Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Auto… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0127 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267212 7.8 HIGH
Local 		microsoft excel
word_for_mac
excel_viewer
office_compatibility_pack 		Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0122 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267213 7.1 HIGH
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Information … CWE-200
Information Exposure 		CVE-2016-0090 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267214 7.1 HIGH
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Inf… CWE-200
Information Exposure 		CVE-2016-0089 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267215 9.3 CRITICAL
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to execute arbitrary code on the host OS via a crafted application, aka "Hyper-V Remote Code Ex… CWE-284
Improper Access Control 		CVE-2016-0088 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267216 4.3 MEDIUM
Network 		ibm maximo_asset_management shiprec.xml in the SHIPREC application in IBM Maximo Asset Management 7.1 and 7.5 before 7.5.0.10 and 7.6 before 7.6.0.4 allows remote authenticated users to bypass intended item-selection restrictio… CWE-284
Improper Access Control 		CVE-2016-0289 2024-11-21 11:41 2016-04-6 Show GitHub Exploit DB Packet Storm
267217 7.8 HIGH
Local 		ibm informix_dynamic_server The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local use… CWE-284
Improper Access Control 		CVE-2016-0226 2024-11-21 11:41 2016-03-29 Show GitHub Exploit DB Packet Storm
267218 6.1 MEDIUM
Network 		ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) client web application in IBM WebSphere Application Server (WAS) Liberty Profile 8.5.5 before 8.5.5.9 allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2016-0283 2024-11-21 11:41 2016-03-20 Show GitHub Exploit DB Packet Storm
267219 5.4 MEDIUM
Network 		ibm maximo_asset_management Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0 before 7.5.0.9 IFIX004, and 7.6.0 before 7.6.0.3 IFIX001 allows remote authenticated users to inje… CWE-79
Cross-site Scripting 		CVE-2016-0262 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm
267220 4.3 MEDIUM
Network 		ibm maximo_asset_management
smartcloud_control_desk
maximo_for_government
maximo_for_life_sciences
maximo_for_nuclear_power
maximo_for_oil_and_gas
maximo_for_transportation
maximo_fo… 		IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote authenticated users to bypass intended access restrictions and read arbitrary purchase-order work logs via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-0222 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm