Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
241941 7.5 危険 Basic-CMS - BASIC-CMS の pages/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2789 2012-06-26 16:02 2008-06-20 Show GitHub Exploit DB Packet Storm
241942 7.5 危険 dzoic - DZOIC Handshakes の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2781 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241943 6.4 警告 albinoloverats - encrypt の Anubis プラグインにおける暗号化されたデータと乱数のパディングを識別される脆弱性 CWE-310
暗号の問題 		CVE-2008-2780 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241944 9.3 危険 globalscape - GlobalSCAPE CuteFTP Home および CuteFTP Pro におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2779 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241945 4.3 警告 dt centrepiece - DT Centrepiece の search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2776 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241946 7.5 危険 dt centrepiece - DT Centrepiece の search.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2775 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241947 7.5 危険 cartkeeper - CartKeeper CKGold Shopping Cart の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2774 2012-06-26 16:02 2008-06-19 Show GitHub Exploit DB Packet Storm
241948 6.8 警告 efiction - eFiction の toplists.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2754 2012-06-26 16:02 2008-06-18 Show GitHub Exploit DB Packet Storm
241949 7.5 危険 gryphon - Gryphon gllcTS2 の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2746 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
241950 9.3 危険 black ice - Black Ice Software Annotation プラグイン の BiAnno ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2745 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267841 5.1 MEDIUM
Local 		openshift origin openshift-node in OpenShift Origin 1.1.6 and earlier improperly stores router credentials as envvars in the pod when the --credentials option is used, which allows local users to obtain sensitive pri… CWE-255
Credentials Management 		CVE-2015-8945 2024-11-21 11:39 2016-08-6 Show GitHub Exploit DB Packet Storm
267842 3.3 LOW
Local 		canonical
ecryptfs 		ubuntu_linux
ecryptfs-utils 		ecryptfs-setup-swap in eCryptfs before 111 does not prevent the unencrypted swap partition from activating during boot when using GPT partitioning and certain versions of systemd, which allows local … CWE-20
 Improper Input Validation  		CVE-2015-8946 2024-11-21 11:39 2016-07-22 Show GitHub Exploit DB Packet Storm
267843 7.6 HIGH
Network 		harfbuzz_project harfbuzz hb-ot-layout-gpos-table.hh in HarfBuzz before 1.0.5 allows remote attackers to cause a denial of service (buffer over-read) or possibly have unspecified other impact via crafted data, a different vul… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8947 2024-11-21 11:39 2016-07-19 Show GitHub Exploit DB Packet Storm
267844 5.5 MEDIUM
Local 		graphicsmagick
suse
fedoraproject 		graphicsmagick
studio_onsite
linux_enterprise_software_development_kit
linux_enterprise_debuginfo
fedora 		The DecodeImage function in coders/gif.c in GraphicsMagick 1.3.18 allows remote attackers to cause a denial of service (uninitialized memory access) via a crafted GIF file. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8808 2024-11-21 11:39 2016-07-14 Show GitHub Exploit DB Packet Storm
267845 5.5 MEDIUM
Local 		google android app/aboot/aboot.c in the Qualcomm bootloader in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allows attackers to cause a denial of service (OS outage or buffer over-read) via a crafted a… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8893 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
267846 7.8 HIGH
Local 		google android platform/msm_shared/boot_verifier.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5X and 6P devices allows attackers to bypass intended access restrictions via a digest with traili… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8892 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
267847 7.8 HIGH
Local 		google android Multiple integer overflows in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices allow attackers to bypass intended access restrictions via a cr… CWE-189
Numeric Errors 		CVE-2015-8891 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
267848 7.8 HIGH
Local 		google android platform/msm_shared/partition_parser.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 and 7 (2013) devices does not validate certain GUID Partition Table (GPT) data, which allows … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8890 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
267849 7.8 HIGH
Local 		google android The aboot implementation in the Qualcomm components in Android before 2016-07-05 on Nexus 6P devices omits the recovery PIN feature, which has unspecified impact and attack vectors, aka Android inter… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8889 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm
267850 7.8 HIGH
Local 		google android Integer overflow in app/aboot/aboot.c in the Qualcomm components in Android before 2016-07-05 on Nexus 5 devices allows attackers to bypass intended access restrictions via a crafted block count and … CWE-264
CWE-189
Permissions, Privileges, and Access Controls
Numeric Errors 		CVE-2015-8888 2024-11-21 11:39 2016-07-11 Show GitHub Exploit DB Packet Storm