Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241871 7.5 危険 brian wilson - ol'bookmarks manager の show.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6410 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241872 7.5 危険 brian wilson - ol'bookmarks manager の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6409 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241873 7.5 危険 brian wilson - ol'bookmarks manager の frame.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6408 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241874 7.5 危険 brian wilson - ol'bookmarks manager の frame.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6407 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241875 4.3 警告 datalifecms - DLE の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6406 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241876 7.5 危険 greatclone - Hotscripts Clone の showcategory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6405 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241877 4.3 警告 extrosoft - eXtrovert Software Thyme の add_calendars.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6404 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
241878 4.4 警告 alcovebook - AlcoveBook sgml2x の rlatex における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-6397 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
241879 4.3 警告 celerondude - Celerondude Uploader の account.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6396 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
241880 7.8 危険 3com - 3Com Wireless 8760 Dual Radio 11a/b/g PoE Access Point の Web 管理インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2008-6395 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267291 5.9 MEDIUM
Network 		openssl openssl The get_client_master_key function in s2_srvr.c in the SSLv2 implementation in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a accepts a nonzero CLIENT-MASTE… CWE-200
Information Exposure 		CVE-2016-0703 2024-11-21 11:42 2016-03-2 Show GitHub Exploit DB Packet Storm
267292 5.9 MEDIUM
Network 		openssl
pulsesecure 		openssl
steel_belted_radius
client 		The SSLv2 protocol, as used in OpenSSL before 1.0.1s and 1.0.2 before 1.0.2g and other products, requires a server to send a ServerVerify message before establishing that a client possesses certain p… CWE-310
CWE-200
Cryptographic Issues
Information Exposure 		CVE-2016-0800 2024-11-21 11:42 2016-03-2 Show GitHub Exploit DB Packet Storm
267293 6.3 MEDIUM
Network 		debian
apache
canonical 		debian_linux
tomcat
ubuntu_linux 		The setGlobalContext method in org/apache/naming/factory/ResourceLinkFactory.java in Apache Tomcat 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M3 does not consider whether ResourceLink… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0763 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
267294 8.8 HIGH
Network 		apache
debian
canonical 		tomcat
debian_linux
ubuntu_linux 		The session-persistence implementation in Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 mishandles session attributes, which allows remote authenticat… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0714 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
267295 4.3 MEDIUM
Network 		canonical
debian
apache 		ubuntu_linux
debian_linux
tomcat 		Apache Tomcat 6.x before 6.0.45, 7.x before 7.0.68, 8.x before 8.0.31, and 9.x before 9.0.0.M2 does not place org.apache.catalina.manager.StatusManagerServlet on the org/apache/catalina/core/Restrict… CWE-200
Information Exposure 		CVE-2016-0706 2024-11-21 11:42 2016-02-25 Show GitHub Exploit DB Packet Storm
267296 6.1 MEDIUM
Network 		fedoraproject
moodle 		fedora
moodle 		Cross-site scripting (XSS) vulnerability in the search_pagination function in course/classes/management_renderer.php in Moodle 2.8.x before 2.8.10, 2.9.x before 2.9.4, and 3.0.x before 3.0.2 allows r… CWE-79
Cross-site Scripting 		CVE-2016-0725 2024-11-21 11:42 2016-02-22 Show GitHub Exploit DB Packet Storm
267297 4.3 MEDIUM
Network 		moodle
fedoraproject 		moodle
fedora 		The (1) core_enrol_get_course_enrolment_methods and (2) enrol_self_get_instance_info web services in Moodle through 2.6.11, 2.7.x before 2.7.12, 2.8.x before 2.8.10, 2.9.x before 2.9.4, and 3.0.x bef… CWE-264
CWE-200
Permissions, Privileges, and Access Controls
Information Exposure 		CVE-2016-0724 2024-11-21 11:42 2016-02-22 Show GitHub Exploit DB Packet Storm
267298 7.8 HIGH
Local 		libreoffice
canonical 		libreoffice
ubuntu_linux 		LibreOffice before 5.0.5 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted LwpTocSuperLayout record in a LotusWordPro (l… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0795 2024-11-21 11:42 2016-02-19 Show GitHub Exploit DB Packet Storm
267299 7.8 HIGH
Local 		libreoffice
canonical 		libreoffice
ubuntu_linux 		The lwp filter in LibreOffice before 5.0.4 allows remote attackers to cause a denial of service (memory corruption) or possibly have unspecified other impact via a crafted LotusWordPro (lwp) document. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0794 2024-11-21 11:42 2016-02-19 Show GitHub Exploit DB Packet Storm
267300 7.5 HIGH
Network 		postgresql
canonical
debian 		postgresql
ubuntu_linux
debian_linux 		PostgreSQL before 9.1.20, 9.2.x before 9.2.15, 9.3.x before 9.3.11, 9.4.x before 9.4.6, and 9.5.x before 9.5.1 allows remote attackers to cause a denial of service (infinite loop or buffer overflow a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2016-0773 2024-11-21 11:42 2016-02-18 Show GitHub Exploit DB Packet Storm