Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245011 7.5 危険 andrew freed - QuoteBook における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0829 2012-06-26 16:10 2009-03-5 Show GitHub Exploit DB Packet Storm
245012 5 警告 freedville - QuoteBook におけるユーザの資格情報を含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0828 2012-06-26 16:10 2009-03-5 Show GitHub Exploit DB Packet Storm
245013 5 警告 freedville - PollHelper におけるユーザの資格情報を含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0827 2012-06-26 16:10 2009-03-5 Show GitHub Exploit DB Packet Storm
245014 5 警告 freedville - BlogHelper におけるユーザの資格情報を含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0826 2012-06-26 16:10 2009-03-5 Show GitHub Exploit DB Packet Storm
245015 4.3 警告 blogsa - Widgets.aspx におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-0814 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
245016 9.3 危険 bpsoft - BreakPoint Software Hex Workshop におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-0812 2012-06-26 16:10 2009-03-4 Show GitHub Exploit DB Packet Storm
245017 5 警告 dkim - dkim-milter におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-0770 2012-06-26 16:10 2009-01-6 Show GitHub Exploit DB Packet Storm
245018 5 警告 bookelves - Kipper における資格情報を含むファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0767 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
245019 7.5 危険 bookelves - Kipper の default.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0766 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
245020 7.5 危険 bookelves - Kipper の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-0765 2012-06-26 16:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252731 5.3 MEDIUM
Network 		watchguard fireware WatchGuard Fireware v11.12.1 and earlier mishandles requests referring to an XML External Entity (XXE), in the XML-RPC agent. This causes the Firebox wgagent process to crash. This process crash ends… CWE-611
XXE 		CVE-2017-8056 2024-11-21 12:33 2017-04-23 Show GitHub Exploit DB Packet Storm
252732 5.5 MEDIUM
Local 		libimobiledevice libplist Integer overflow in the plist_from_bin function in bplist.c in libimobiledevice/libplist before 2017-04-19 allows remote attackers to cause a denial of service (heap-based buffer over-read and applic… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-7982 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252733 9.8 CRITICAL
Network 		mor-pah.net dmitry_deepmagic_information_gathering_tool Stack-based buffer overflow in DMitry (Deepmagic Information Gathering Tool) version 1.3a (Unix) allows attackers to cause a denial of service (application crash) or possibly have unspecified other i… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-7938 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252734 7.8 HIGH
Local 		linux linux_kernel The cookie feature in the packet action API implementation in net/sched/act_api.c in the Linux kernel 4.11.x through 4.11-rc7 mishandles the tb nlattr array, which allows local users to cause a denia… CWE-20
 Improper Input Validation  		CVE-2017-7979 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252735 7.5 HIGH
Network 		samsung samsung_mobile Samsung Android devices with L(5.0/5.1), M(6.0), and N(7.x) software allow attackers to obtain sensitive information by reading a world-readable log file after an unexpected reboot. The Samsung ID is… CWE-200
Information Exposure 		CVE-2017-7978 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252736 7.1 HIGH
Local 		artifex jbig2dec Artifex jbig2dec 0.13 allows out-of-bounds writes and reads because of an integer overflow in the jbig2_image_compose function in jbig2_image.c during operations on a crafted .jb2 file, leading to a … CWE-190
 Integer Overflow or Wraparound 		CVE-2017-7976 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252737 7.8 HIGH
Local 		artifex jbig2dec Artifex jbig2dec 0.13, as used in Ghostscript, allows out-of-bounds writes because of an integer overflow in the jbig2_build_huffman_table function in jbig2_huffman.c during operations on a crafted J… CWE-190
 Integer Overflow or Wraparound 		CVE-2017-7975 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252738 10.0 CRITICAL
Network 		zyxel wre6505_firmware Zyxel WRE6505 devices have a default TELNET password of 1234 for the root and admin accounts, which makes it easier for remote attackers to conduct DNS hijacking attacks by reconfiguring the built-in… CWE-1188
 Insecure Default Initialization of Resource 		CVE-2017-7964 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252739 7.5 HIGH
Network 		php php The GNU Multiple Precision Arithmetic Library (GMP) interfaces for PHP through 7.1.4 allow attackers to cause a denial of service (memory consumption and application crash) via operations on long str… CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2017-7963 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm
252740 5.5 MEDIUM
Local 		entropymine imageworsener The iwgif_read_image function in imagew-gif.c in libimageworsener.a in ImageWorsener 1.3.0 allows remote attackers to cause a denial of service (divide-by-zero error and application crash) via a craf… CWE-369
 Divide By Zero 		CVE-2017-7962 2024-11-21 12:33 2017-04-20 Show GitHub Exploit DB Packet Storm