Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241821 7.5 危険 adam scheinberg - Adam Scheinberg Flip の config.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3311 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241822 7.5 危険 digiappz - DigiLeave の info_book.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3309 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241823 6.8 警告 carlos desseno - C. Desseno YouTube Blog の cuenta/cuerpo.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3308 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241824 4.3 警告 carlos desseno - C. Desseno YouTube Blog の mensaje.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3305 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241825 7.5 危険 alphadmin - AlphAdmin CMS における管理アクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3300 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241826 7.5 危険 eSyndiCat - eSyndiCat における管理者アクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-3299 2012-06-26 16:02 2008-07-25 Show GitHub Exploit DB Packet Storm
241827 5 警告 ezwebalbum - EZWebAlbum の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3293 2012-06-26 16:02 2008-07-24 Show GitHub Exploit DB Packet Storm
241828 6.4 警告 ezwebalbum - constants.inc の EZWebAlbum における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-3292 2012-06-26 16:02 2008-07-24 Show GitHub Exploit DB Packet Storm
241829 7.5 危険 aprox - AproxEngine の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3291 2012-06-26 16:02 2008-07-24 Show GitHub Exploit DB Packet Storm
241830 5 警告 Retrospect, Inc. - EMC Dantz Retrospect Backup Client におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-3290 2012-06-26 16:02 2008-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267521 9.8 CRITICAL
Network 		opensuse
jq_project 		leap
opensuse
jq 		Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8863 2024-11-21 11:39 2016-05-7 Show GitHub Exploit DB Packet Storm
267522 5.1 MEDIUM
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5 allow local users to cause a denial of service (disk corruption) by writing to a page that is associated … CWE-362
Race Condition 		CVE-2015-8839 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
267523 7.8 HIGH
Local 		linux linux_kernel Integer overflow in the aio_setup_single_vector function in fs/aio.c in the Linux kernel 4.0 allows local users to cause a denial of service or possibly have unspecified other impact via a large AIO … NVD-CWE-Other
CVE-2015-8830 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
267524 7.5 HIGH
Network 		linux linux_kernel fs/nfs/nfs4proc.c in the NFS client in the Linux kernel before 4.2.2 does not properly initialize memory for migration recovery operations, which allows remote NFS servers to cause a denial of servic… NVD-CWE-Other
CVE-2015-8746 2024-11-21 11:39 2016-05-2 Show GitHub Exploit DB Packet Storm
267525 5.5 MEDIUM
Local 		linux
suse
novell 		linux_kernel
suse_linux_enterprise_module_for_public_cloud
suse_linux_enterprise_live_patching
suse_linux_enterprise_server
suse_linux_enterprise_software_development_kit
suse_linux_en… 		The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim c… CWE-284
Improper Access Control 		CVE-2015-8845 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
267526 5.5 MEDIUM
Local 		linux linux_kernel The signal implementation in the Linux kernel before 4.3.5 on powerpc platforms does not check for an MSR with both the S and T bits set, which allows local users to cause a denial of service (TM Bad… CWE-20
 Improper Input Validation  		CVE-2015-8844 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
267527 9.8 CRITICAL
Network 		novell
linux
canonical 		suse_linux_enterprise_real_time_extension
linux_kernel
ubuntu_linux 		drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service … NVD-CWE-Other
CVE-2015-8812 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
267528 6.8 MEDIUM
Physics 		novell
linux
suse 		suse_linux_enterprise_server
suse_linux_enterprise_debuginfo
suse_linux_enterprise_live_patching
suse_linux_enterprise_real_time_extension
suse_linux_enterprise_desktop
suse_linux_ente… 		The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a … NVD-CWE-Other
CVE-2015-8816 2024-11-21 11:39 2016-04-28 Show GitHub Exploit DB Packet Storm
267529 7.5 HIGH
Network 		varnish_cache_project
debian 		varnish_cache
debian_linux 		Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated… NVD-CWE-Other
CVE-2015-8852 2024-11-21 11:39 2016-04-25 Show GitHub Exploit DB Packet Storm
267530 8.8 HIGH
Network 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler
flash_player_desktop_runtime 		Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, A… CWE-416
 Use After Free 		CVE-2015-8823 2024-11-21 11:39 2016-04-23 Show GitHub Exploit DB Packet Storm