Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241641 6.8 警告 ekkaia
rssmodule		 - Pie Web M{a,e}sher の RSS モジュールにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7073 2012-06-26 16:10 2009-08-25 Show GitHub Exploit DB Packet Storm
241642 4.3 警告 Chipmunk Scripts - Chipmunk Topsites の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7072 2012-06-26 16:10 2009-08-25 Show GitHub Exploit DB Packet Storm
241643 7.5 危険 Chipmunk Scripts - Chipmunk Topsites の authenticate.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7071 2012-06-26 16:10 2009-08-25 Show GitHub Exploit DB Packet Storm
241644 7.5 危険 2enetworx - OpenForum における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7066 2012-06-26 16:10 2009-08-25 Show GitHub Exploit DB Packet Storm
241645 7.5 危険 aled owen - One-News Beta の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7059 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
241646 6.8 警告 grayscalecms - BandSite CMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7058 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
241647 4.3 警告 grayscalecms - BandSite CMS の merchandise.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7057 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
241648 5 警告 grayscalecms - BandSite CMS におけるデータベースのコピーを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7056 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
241649 7.5 危険 aj square - AJ Square AJ Article における管理者機能へアクセスされる脆弱性 CWE-287
不適切な認証 		CVE-2008-7051 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
241650 6.4 警告 aj square - AJPoll における新たにアンケートを作成される脆弱性 CWE-287
不適切な認証 		CVE-2008-7046 2012-06-26 16:10 2009-08-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
268211 9.8 CRITICAL
Network 		cypherpunks pidgin-otr Use-after-free vulnerability in the create_smp_dialog function in gtk-dialog.c in the Off-the-Record Messaging (OTR) pidgin-otr plugin before 4.0.2 for Pidgin allows remote attackers to execute arbit… NVD-CWE-Other
CVE-2015-8833 2024-11-21 11:39 2016-04-12 Show GitHub Exploit DB Packet Storm
268212 9.8 CRITICAL
Network 		xmlsoft
debian 		libxml2
debian_linux 		The htmlParseComment function in HTMLparser.c in libxml2 allows attackers to obtain sensitive information, cause a denial of service (out-of-bounds heap memory access and application crash), or possi… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8710 2024-11-21 11:39 2016-04-12 Show GitHub Exploit DB Packet Storm
268213 7.3 HIGH
Network 		claws-mail claws-mail Stack-based buffer overflow in the conv_euctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set c… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8708 2024-11-21 11:39 2016-04-12 Show GitHub Exploit DB Packet Storm
268214 8.8 HIGH
Network 		sap netweaver_application_server_java The XML Data Archiving Service (XML DAS) in SAP NetWeaver AS Java does not check authorization, which allows remote authenticated users to obtain sensitive information, gain privileges, or possibly h… CWE-862
 Missing Authorization 		CVE-2015-8840 2024-11-21 11:39 2016-04-8 Show GitHub Exploit DB Packet Storm
268215 7.3 HIGH
Local 		fuseiso_project
debian
fedoraproject 		fuseiso
debian_linux
fedora 		Stack-based buffer overflow in the isofs_real_readdir function in isofs.c in FuseISO 20070708 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary co… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8837 2024-11-21 11:39 2016-03-30 Show GitHub Exploit DB Packet Storm
268216 7.3 HIGH
Local 		fedoraproject
fuseiso_project 		fedora
fuseiso 		Integer overflow in the isofs_real_read_zf function in isofs.c in FuseISO 20070708 might allow remote attackers to cause a denial of service (application crash) or possibly have unspecified other imp… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8836 2024-11-21 11:39 2016-03-30 Show GitHub Exploit DB Packet Storm
268217 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR S… CWE-416
 Use After Free 		CVE-2015-8822 2024-11-21 11:39 2016-03-5 Show GitHub Exploit DB Packet Storm
268218 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Use-after-free vulnerability in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR S… CWE-416
 Use After Free 		CVE-2015-8821 2024-11-21 11:39 2016-03-5 Show GitHub Exploit DB Packet Storm
268219 8.8 HIGH
Network 		adobe flash_player
flash_player_desktop_runtime
air_desktop_runtime
air_sdk
air_sdk_\&_compiler
air 		Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, Adobe AIR before 20.0.0.204, Adobe AIR SDK before 20.0.0.204, and Adobe … CWE-787
 Out-of-bounds Write 		CVE-2015-8820 2024-11-21 11:39 2016-03-5 Show GitHub Exploit DB Packet Storm
268220 9.8 CRITICAL
Network 		nettle_project
canonical
opensuse 		nettle
ubuntu_linux
leap
opensuse 		The ecc_256_modq function in ecc-256.c in Nettle before 3.2 does not properly handle carry propagation and produces incorrect output in its implementation of the P-256 NIST elliptic curve, which allo… CWE-310
Cryptographic Issues 		CVE-2015-8805 2024-11-21 11:39 2016-02-24 Show GitHub Exploit DB Packet Storm