Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
242301 5 警告 donnafontenot - MyCal Personal Events Calendar におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6357 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242302 5 警告 donnafontenot - evCal Events Calendar におけるユーザ名などを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6356 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242303 7.5 危険 asp-cms - ASP-CMS の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6353 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242304 7.5 危険 developiteasy - DevelopItEasy Photo Gallery における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6348 2012-06-26 16:10 2009-03-2 Show GitHub Exploit DB Packet Storm
242305 4.3 警告 dennis royer
TYPO3 Association		 - TYPO3 用の DR Wiki 拡張におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6346 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
242306 7.5 危険 cms.maury91 - SolarCMS の Forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6345 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
242307 7.8 危険 emetrix - eMetrix Online Keyword Research Tool の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6335 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
242308 7.8 危険 emetrix - eMetrix Extract Website の download.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6334 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
242309 7.5 危険 butterflymedia - Butterfly Organizer の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6328 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
242310 7.5 危険 cfmsource - CF_Forum の forummessages.cfm における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6324 2012-06-26 16:10 2009-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
267421 9.8 CRITICAL
Network 		oracle weblogic_server Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 10.3.6, 12.1.2, 12.1.3, and 12.2.1 allows remote attackers to affect confidentiality, integrity, and avai… NVD-CWE-noinfo
CVE-2016-0638 2024-11-21 11:42 2016-04-21 Show GitHub Exploit DB Packet Storm
267422 4.7 MEDIUM
Network 		oracle solaris Unspecified vulnerability in Oracle Sun Solaris 11.3 allows remote attackers to affect integrity via vectors related to the Automated Installer sub-component. NVD-CWE-noinfo
CVE-2016-0623 2024-11-21 11:42 2016-04-21 Show GitHub Exploit DB Packet Storm
267423 8.8 HIGH
Network 		emc vipr_srm Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM before 3.7 allow remote attackers to hijack the authentication of administrators. CWE-352
 Origin Validation Error 		CVE-2016-0891 2024-11-21 11:42 2016-04-21 Show GitHub Exploit DB Packet Storm
267424 7.5 HIGH
Network 		redhat
fedoraproject 		enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux
enterprise_linux_server
enterprise_linux_hpc_node
389_directory_server 		slapd/connection.c in 389 Directory Server (formerly Fedora Directory Server) 1.3.4.x before 1.3.4.7 allows remote attackers to cause a denial of service (infinite loop and connection blocking) by le… CWE-399
 Resource Management Errors 		CVE-2016-0741 2024-11-21 11:42 2016-04-20 Show GitHub Exploit DB Packet Storm
267425 8.8 HIGH
Adjacent 		google android The PORCHE_PAIRING_CONFLICT feature in Bluetooth in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows remote attackers to bypass intended pairing rest… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0850 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267426 8.4 HIGH
Local 		google android Multiple integer overflows in minzip/SysUtil.c in the Recovery Procedure in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allow attackers to gain privileges via a crafted … CWE-189
Numeric Errors 		CVE-2016-0849 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267427 8.4 HIGH
Local 		google android Race condition in Download Manager in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to bypass private-storage file-access restrictions v… CWE-362
Race Condition 		CVE-2016-0848 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267428 8.4 HIGH
Local 		google android The Telecom Component in Android 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 allows attackers to spoof the originating telephone number of a call via a crafted application, as d… CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0847 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267429 8.4 HIGH
Local 		google android libs/binder/IMemory.cpp in the IMemory Native Interface in Android 4.x before 4.4.4, 5.0.x before 5.0.2, 5.1.x before 5.1.1, and 6.x before 2016-04-01 does not properly consider the heap size, which … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0846 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm
267430 8.4 HIGH
Local 		google android The Qualcomm RF driver in Android 6.x before 2016-04-01 does not properly restrict access to socket ioctl calls, which allows attackers to gain privileges via a crafted application, aka internal bug … CWE-264
Permissions, Privileges, and Access Controls 		CVE-2016-0844 2024-11-21 11:42 2016-04-18 Show GitHub Exploit DB Packet Storm