Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241691	4.3	警告	fullrevolution	-	Full Revolution aspWebAlbum の album.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6977	2012-06-26 16:10	2009-08-19	Show	GitHub Exploit DB Packet Storm

241692	6.8	警告	dd-wrt	-	DD-WRT 24 sp2 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6975	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241693	6.8	警告	dd-wrt	-	DD-WRT 24 sp1 の apply.cgi におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-6974	2012-06-26 16:10	2009-07-20	Show	GitHub Exploit DB Packet Storm

241694	5	警告	Alt-N	-	WorldClient in Alt-N MDaemon における詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2008-6967	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

241695	7.5	危険	aj square	-	AJ Square AJ Auction Pro Platinum Skin #1 における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6966	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

241696	7.5	危険	aj square	-	AJ Square AJ Auction OOPD における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-6965	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

241697	7.2	危険	Avira	-	複数の Avira 製品における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-6962	2012-06-26 16:10	2009-08-13	Show	GitHub Exploit DB Packet Storm

241698	9.3	危険	chilkatsoft	-	ChilkatSocket.dll の ChilkatSocket.ChilkatSocket.1 における任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-6959	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

241699	6.5	警告	Comsenz Technology	-	Crossday Discuz! Board の wap/index.php における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-6958	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

241700	7.5	危険	Discuz	-	Crossday Discuz! Board の member.php における任意ユーザのパスワードをリセットされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6957	2012-06-26 16:10	2009-08-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
268171	9.1	CRITICAL Network	fedoraproject opensuse ocaml	fedora opensuse ocaml	OCaml before 4.03.0 does not properly handle sign extensions, which allows remote attackers to conduct buffer overflow attacks or obtain sensitive information as demonstrated by a long string to the …	CWE-119 CWE-200 Incorrect Access of Indexable Resource ('Range Error') Information Exposure	CVE-2015-8869	2024-11-21 11:39	2016-06-14	Show	GitHub Exploit DB Packet Storm

268172	7.3	HIGH Network	broadcom	symantec_critical_system_protection symantec_data_center_security_server symantec_data_center_security_server_and_agents symantec_embedded_security_critical_system_protection symantec_emb…	Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for Controllers and Devices (SES:CSP) 6.5.0 before MP1, Critical S…	CWE-74 Injection	CVE-2015-8800	2024-11-21 11:39	2016-06-8	Show	GitHub Exploit DB Packet Storm

268173	7.6	HIGH Adjacent	broadcom	symantec_data_center_security_server symantec_data_center_security_server_and_agents symantec_embedded_security_critical_system_protection_for_controllers_and_devices symantec_critical_syste…	Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for …	CWE-22 Path Traversal	CVE-2015-8799	2024-11-21 11:39	2016-06-8	Show	GitHub Exploit DB Packet Storm

268174	8.0	HIGH Adjacent	broadcom	symantec_data_center_security_server symantec_critical_system_protection symantec_embedded_security_critical_system_protection symantec_data_center_security_server_and_agents symantec_emb…	Directory traversal vulnerability in the Management Server in Symantec Embedded Security: Critical System Protection (SES:CSP) 1.0.x before 1.0 MP5, Embedded Security: Critical System Protection for …	CWE-22 Path Traversal	CVE-2015-8798	2024-11-21 11:39	2016-06-8	Show	GitHub Exploit DB Packet Storm

268175	6.2	MEDIUM Local	canonical opensuse dosfstools_project	ubuntu_linux leap opensuse dosfstools	The set_fat function in fat.c in dosfstools before 4.0 might allow attackers to corrupt a FAT12 filesystem or cause a denial of service (invalid memory read and crash) by writing an odd number of clu…	CWE-189 Numeric Errors	CVE-2015-8872	2024-11-21 11:39	2016-06-3	Show	GitHub Exploit DB Packet Storm

268176	7.8	HIGH Local	gnome	gdk-pixbuf	Multiple integer overflows in the (1) pixops_composite_nearest, (2) pixops_composite_color_nearest, and (3) pixops_process functions in pixops/pixops.c in gdk-pixbuf before 2.33.1 allow remote attack…	CWE-189 Numeric Errors	CVE-2015-8875	2024-11-21 11:39	2016-06-2	Show	GitHub Exploit DB Packet Storm

268177	7.5	HIGH Network	fedoraproject perl	fedora perl	The (1) S_reghop3, (2) S_reghop4, and (3) S_reghopmaybe3 functions in regexec.c in Perl before 5.24.0 allow context-dependent attackers to cause a denial of service (infinite loop) via crafted utf-8 …	CWE-20 Improper Input Validation	CVE-2015-8853	2024-11-21 11:39	2016-05-26	Show	GitHub Exploit DB Packet Storm

268178	9.8	CRITICAL Network	php	php	Double free vulnerability in the format printer in PHP 7.x before 7.0.1 allows remote attackers to have an unspecified impact by triggering an error.	CWE-415 Double Free	CVE-2015-8880	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

268179	7.5	HIGH Network	php	php	The odbc_bindcols function in ext/odbc/php_odbc.c in PHP before 5.6.12 mishandles driver behavior for SQL_WVARCHAR columns, which allows remote attackers to cause a denial of service (application cra…	CWE-20 Improper Input Validation	CVE-2015-8879	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm

268180	5.9	MEDIUM Network	php	php	main/php_open_temporary_file.c in PHP before 5.5.28 and 5.6.x before 5.6.12 does not ensure thread safety, which allows remote attackers to cause a denial of service (race condition and heap memory c…	CWE-119 CWE-362 Incorrect Access of Indexable Resource ('Range Error') Race Condition	CVE-2015-8878	2024-11-21 11:39	2016-05-22	Show	GitHub Exploit DB Packet Storm