Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241751 5 警告 codewiz - GeekiGeeki の geekigeeki.py におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6786 2012-06-26 16:10 2009-05-1 Show GitHub Exploit DB Packet Storm
241752 6.8 警告 galaxyscripts - Mini File Host における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6785 2012-06-26 16:10 2009-05-1 Show GitHub Exploit DB Packet Storm
241753 10 危険 china-on-site - Flexcustomer の admin/install.php における任意の PHP コードが挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6761 2012-06-26 16:10 2009-04-28 Show GitHub Exploit DB Packet Storm
241754 6.8 警告 china-on-site - FlexPHPDirectory の add.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6750 2012-06-26 16:10 2009-04-24 Show GitHub Exploit DB Packet Storm
241755 6.8 警告 china-on-site - FlexPHPDirectory の admin/usercheck.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6749 2012-06-26 16:10 2009-04-24 Show GitHub Exploit DB Packet Storm
241756 6.8 警告 dotProject - dotProject における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6747 2012-06-26 16:10 2009-04-23 Show GitHub Exploit DB Packet Storm
241757 7.5 危険 BlogPHP - BlogPHP の index.php における管理者権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6745 2012-06-26 16:10 2009-04-23 Show GitHub Exploit DB Packet Storm
241758 4.3 警告 gofoxy - Foxy P2P ソフトウエアにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6742 2012-06-26 16:10 2009-04-21 Show GitHub Exploit DB Packet Storm
241759 7.8 危険 ea - Crysis における重要なプレイヤー情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-6737 2012-06-26 16:10 2009-04-21 Show GitHub Exploit DB Packet Storm
241760 6.4 警告 circulargenius - Flat Calendar におけるイベントを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6736 2012-06-26 16:10 2009-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267211 7.8 HIGH
Local 		microsoft word
sharepoint_server
office
office_web_apps_server
office_compatibility_pack
word_viewer 		Microsoft Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Office Compatibility Pack SP3, Word Viewer, Word Automation Services on SharePoint Server 2010 SP2, Word Auto… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0127 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267212 7.8 HIGH
Local 		microsoft excel
word_for_mac
excel_viewer
office_compatibility_pack 		Microsoft Excel 2007 SP3, Excel 2010 SP2, Excel 2013 SP1, Excel 2013 RT SP1, Excel 2016, Word 2016 for Mac, Office Compatibility Pack SP3, and Excel Viewer allow remote attackers to execute arbitrary… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0122 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267213 7.1 HIGH
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Information … CWE-200
Information Exposure 		CVE-2016-0090 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267214 7.1 HIGH
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to obtain sensitive information from host OS memory via a crafted application, aka "Hyper-V Inf… CWE-200
Information Exposure 		CVE-2016-0089 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267215 9.3 CRITICAL
Local 		microsoft windows_server_2012
windows_8.1
windows_10 		Hyper-V in Microsoft Windows 8.1, Windows Server 2012 Gold and R2, and Windows 10 allows guest OS users to execute arbitrary code on the host OS via a crafted application, aka "Hyper-V Remote Code Ex… CWE-284
Improper Access Control 		CVE-2016-0088 2024-11-21 11:41 2016-04-13 Show GitHub Exploit DB Packet Storm
267216 4.3 MEDIUM
Network 		ibm maximo_asset_management shiprec.xml in the SHIPREC application in IBM Maximo Asset Management 7.1 and 7.5 before 7.5.0.10 and 7.6 before 7.6.0.4 allows remote authenticated users to bypass intended item-selection restrictio… CWE-284
Improper Access Control 		CVE-2016-0289 2024-11-21 11:41 2016-04-6 Show GitHub Exploit DB Packet Storm
267217 7.8 HIGH
Local 		ibm informix_dynamic_server The client implementation in IBM Informix Dynamic Server 11.70.xCn on Windows does not properly restrict access to the (1) nsrd, (2) nsrexecd, and (3) portmap executable files, which allows local use… CWE-284
Improper Access Control 		CVE-2016-0226 2024-11-21 11:41 2016-03-29 Show GitHub Exploit DB Packet Storm
267218 6.1 MEDIUM
Network 		ibm websphere_application_server Cross-site scripting (XSS) vulnerability in the OpenID Connect (OIDC) client web application in IBM WebSphere Application Server (WAS) Liberty Profile 8.5.5 before 8.5.5.9 allows remote attackers to … CWE-79
Cross-site Scripting 		CVE-2016-0283 2024-11-21 11:41 2016-03-20 Show GitHub Exploit DB Packet Storm
267219 5.4 MEDIUM
Network 		ibm maximo_asset_management Cross-site scripting (XSS) vulnerability in IBM Maximo Asset Management 7.1.1 through 7.1.1.3, 7.5.0 before 7.5.0.9 IFIX004, and 7.6.0 before 7.6.0.3 IFIX001 allows remote authenticated users to inje… CWE-79
Cross-site Scripting 		CVE-2016-0262 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm
267220 4.3 MEDIUM
Network 		ibm maximo_asset_management
smartcloud_control_desk
maximo_for_government
maximo_for_life_sciences
maximo_for_nuclear_power
maximo_for_oil_and_gas
maximo_for_transportation
maximo_fo… 		IBM Maximo Asset Management 7.6 before 7.6.0.3 IFIX001 allows remote authenticated users to bypass intended access restrictions and read arbitrary purchase-order work logs via unspecified vectors. CWE-284
Improper Access Control 		CVE-2016-0222 2024-11-21 11:41 2016-03-14 Show GitHub Exploit DB Packet Storm