Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
241871	5	警告	アップル	-	Apple Safari における異なる https Web サイトに https URL を含む Referer ヘッダを送信される脆弱性	CWE-200 情報漏えい	CVE-2008-3171	2012-06-26 16:02	2008-07-14	Show	GitHub Exploit DB Packet Storm

241872	10	危険	empire server	-	Empire Server におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3169	2012-06-26 16:02	2008-07-14	Show	GitHub Exploit DB Packet Storm

241873	5	警告	empire server	-	Empire Server における PRNG シードを設定される脆弱性	CWE-200 情報漏えい	CVE-2008-3168	2012-06-26 16:02	2008-07-14	Show	GitHub Exploit DB Packet Storm

241874	9.3	危険	BoonEx	-	BoonEx Dolphin における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-3167	2012-06-26 16:02	2008-07-14	Show	GitHub Exploit DB Packet Storm

241875	6.5	警告	富士通	-	Fujitsu Siemens Computer Server View におけるスタックベースのバッファーオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3126	2012-06-26 16:02	2008-07-10	Show	GitHub Exploit DB Packet Storm

241876	7.5	危険	dreamlevels	-	DreamPics Builder の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3119	2012-06-26 16:02	2008-07-10	Show	GitHub Exploit DB Packet Storm

241877	4.3	警告	fuzzylime	-	fuzzylime (cms) の admin/usercheck.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3098	2012-06-26 16:02	2008-09-24	Show	GitHub Exploit DB Packet Storm

241878	7.5	危険	brightcode Joomla!	-	Joomla! の brightweblinks コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3083	2012-06-26 16:02	2008-07-8	Show	GitHub Exploit DB Packet Storm

241879	4.3	警告	commtouch	-	Commtouch Enterprise Anti-Spam Gateway の UPM/English/login/login.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3082	2012-06-26 16:02	2008-07-8	Show	GitHub Exploit DB Packet Storm

241880	6.5	警告	アバイア	-	Avaya MSS の Web 管理インターフェースにおける任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-3081	2012-06-26 16:02	2008-06-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
267631	8.6	HIGH Network	php	php	Use-after-free vulnerability in the Collator::sortWithSortKeys function in ext/intl/collator/collator_sort.c in PHP 7.x before 7.0.1 allows remote attackers to cause a denial of service (application …	NVD-CWE-Other	CVE-2015-8616	2024-11-21 11:38	2016-01-19	Show	GitHub Exploit DB Packet Storm

267632	5.4	MEDIUM Network	gajim	gajim	Gajim before 0.16.5 allows remote attackers to modify the roster and intercept messages via a crafted roster-push IQ stanza.	CWE-20 Improper Input Validation	CVE-2015-8688	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267633	6.1	MEDIUM Network	dolibarr	dolibarr	Multiple cross-site scripting (XSS) vulnerabilities in Dolibarr ERP/CRM 3.8.3 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) external calendar url or (2) the ba…	CWE-79 Cross-site Scripting	CVE-2015-8685	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267634	6.2	MEDIUM Local	huawei	s5300_firmware	Huawei S5300 Campus Series switches with software before V200R005SPH008 do not mask the password when uploading files, which allows physically proximate attackers to obtain sensitive password informa…	CWE-255 Credentials Management	CVE-2015-8675	2024-11-21 11:38	2016-01-16	Show	GitHub Exploit DB Packet Storm

267635	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows attackers to bypass filesystem encryption via XOR calculations.	CWE-310 Cryptographic Issues	CVE-2015-8281	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

267636	7.5	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to discover credentials by reading detailed error messages.	CWE-200 Information Exposure	CVE-2015-8280	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

267637	8.6	HIGH Network	samsung	web_viewer	Web Viewer 1.0.0.193 on Samsung SRN-1670D devices allows remote attackers to read arbitrary files via a request to an unspecified PHP script.	CWE-264 Permissions, Privileges, and Access Controls	CVE-2015-8279	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

267638	6.5	MEDIUM Adjacent	sophos isc debian canonical	unified_threat_management_up2date dhcp debian_linux ubuntu_linux	ISC DHCP 4.x before 4.1-ESV-R12-P1, 4.2.x, and 4.3.x before 4.3.3-P1 allows remote attackers to cause a denial of service (application crash) via an invalid length field in a UDP IPv4 packet.	CWE-20 Improper Input Validation	CVE-2015-8605	2024-11-21 11:38	2016-01-15	Show	GitHub Exploit DB Packet Storm

267639	7.3	HIGH Network	canonical perl debian	ubuntu_linux pathtools debian_linux	The canonpath function in the File::Spec module in PathTools before 3.62, as used in Perl, does not properly preserve the taint attribute of data, which might allow context-dependent attackers to byp…	CWE-20 Improper Input Validation	CVE-2015-8607	2024-11-21 11:38	2016-01-14	Show	GitHub Exploit DB Packet Storm

267640	7.4	HIGH Network	fedoraproject openstack	fedora swift3	Swift3 before 1.9 allows remote attackers to conduct replay attacks via an Authorization request that lacks a Date header.	CWE-20 Improper Input Validation	CVE-2015-8466	2024-11-21 11:38	2016-01-14	Show	GitHub Exploit DB Packet Storm