Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241841 7.5 危険 denis moinel - PHPGKit における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6491 2012-06-26 16:10 2009-03-19 Show GitHub Exploit DB Packet Storm
241842 7.5 危険 flysforum - FLABER の function/update_xml.php における任意のファイルを上書きされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6490 2012-06-26 16:10 2009-03-19 Show GitHub Exploit DB Packet Storm
241843 7.5 危険 digiappz - Digiappz DigiAffiliate の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6487 2012-06-26 16:10 2009-03-18 Show GitHub Exploit DB Packet Storm
241844 4.3 警告 BlogEngine.NET - BlogEngine.NET の blog/search.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6476 2012-06-26 16:10 2009-03-16 Show GitHub Exploit DB Packet Storm
241845 7.5 危険 drake team - Drake CMS の components/guestbook/guestbook.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6475 2012-06-26 16:10 2009-03-16 Show GitHub Exploit DB Packet Storm
241846 6.8 警告 edikon - Edikon phpShop におけるセッションをハイジャックされる脆弱性 CWE-287
不適切な認証 		CVE-2008-6455 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241847 7.5 危険 6rbscript - 6rbScript の section.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6454 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241848 4.3 警告 6rbscript - 6rbScript の section.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6453 2012-06-26 16:10 2009-03-13 Show GitHub Exploit DB Packet Storm
241849 7.5 危険 geniuscyber - CMS MAXSITE の Guestbook コンポーネントにおける guestbook に任意の PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6446 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
241850 10 危険 Baidu, Inc. - Baidu Hi IM の CSTransfer.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6444 2012-06-26 16:10 2009-03-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267211 8.4 HIGH
Local 		google android The H.264 decoder in libstagefright in Android 6.x before 2016-04-01 mishandles Memory Management Control Operation (MMCO) data, which allows remote attackers to execute arbitrary code or cause a den… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0842 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267212 9.8 CRITICAL
Network 		google android media/libmedia/mediametadataretriever.cpp in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 mishandles cleared service binders, which allow… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0841 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267213 8.4 HIGH
Local 		google android Multiple stack-based buffer underflows in decoder/ih264d_parse_cavlc.c in mediaserver in Android 6.x before 2016-04-01 allow remote attackers to execute arbitrary code or cause a denial of service (m… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0840 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267214 9.8 CRITICAL
Network 		google android post_proc/volume_listener.c in mediaserver in Android 6.x before 2016-04-01 mishandles deleted effect context, which allows remote attackers to execute arbitrary code or cause a denial of service (me… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0839 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267215 9.8 CRITICAL
Network 		google android Sonivox in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not check for a negative number of samples, which allows remote attackers to… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0838 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267216 9.8 CRITICAL
Network 		google android MPEG4Extractor.cpp in libstagefright in mediaserver in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0837 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267217 7.8 HIGH
Local 		google android Stack-based buffer overflow in decoder/impeg2d_vld.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption)… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0836 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267218 9.8 CRITICAL
Network 		google android decoder/impeg2d_dec_hdr.c in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file t… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0835 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267219 8.4 HIGH
Local 		google android An unspecified media codec in mediaserver in Android 6.x before 2016-04-01 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted media file,… CWE-20
 Improper Input Validation  		CVE-2016-0834 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267220 9.8 CRITICAL
Network 		dell emc_unisphere An HTTP servlet in vApp Manager in EMC Unisphere for VMAX Virtual Appliance before 8.2.0 allows remote attackers to write to arbitrary files via a crafted pathname. CWE-20
 Improper Input Validation  		CVE-2016-0889 2024-11-21 11:42 2016-04-15 Show GitHub Exploit DB Packet Storm