Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245361 7.5 危険 flux cms - Flux CMS の webinc/bxe/scripts/loadsave.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2686 2012-06-26 16:02 2008-06-13 Show GitHub Exploit DB Packet Storm
245362 7.5 危険 battleblog - Battle Blog の article.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2685 2012-06-26 16:02 2008-06-12 Show GitHub Exploit DB Packet Storm
245363 9.3 危険 black ice - Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2684 2012-06-26 16:02 2008-06-12 Show GitHub Exploit DB Packet Storm
245364 9.3 危険 black ice - Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のファイルのダウンロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2683 2012-06-26 16:02 2008-06-12 Show GitHub Exploit DB Packet Storm
245365 7.5 危険 erfurtwiki - ErfurtWiki におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2672 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
245366 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
245367 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
245368 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
245369 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
245370 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252711 8.8 HIGH
Network 		hp matrix_operating_environment A CSRF vulnerability in HPE Matrix Operating Environment version v7.6 was found. CWE-352
 Origin Validation Error 		CVE-2017-5781 2024-11-21 12:28 2018-02-16 Show GitHub Exploit DB Packet Storm
252712 6.5 MEDIUM
Network 		hp matrix_operating_environment A remote clickjacking vulnerability in HPE Matrix Operating Environment version v7.6 was found. CWE-20
 Improper Input Validation  		CVE-2017-5780 2024-11-21 12:28 2018-02-16 Show GitHub Exploit DB Packet Storm
252713 7.8 HIGH
Local 		intel graphics_driver Pointer dereference in subsystem in Intel Graphics Driver 15.40.x.x, 15.45.x.x, 15.46.x.x allows unprivileged user to elevate privileges via local access. CWE-476
 NULL Pointer Dereference 		CVE-2017-5727 2024-11-21 12:28 2018-02-3 Show GitHub Exploit DB Packet Storm
252714 5.5 MEDIUM
Local 		intel minnowboard_3_firmware Input validation error in Intel MinnowBoard 3 Firmware versions prior to 0.65 allow local attacker to cause denial of service via UEFI APIs. CWE-20
 Improper Input Validation  		CVE-2017-5699 2024-11-21 12:28 2018-01-18 Show GitHub Exploit DB Packet Storm
252715 7.8 HIGH
Local 		intel graphics_driver Untrusted search path in Intel Graphics Driver 15.40.x.x, 15.45.x.x, and 21.20.x.x allows unprivileged user to elevate privileges via local access. CWE-426
 Untrusted Search Path 		CVE-2017-5696 2024-11-21 12:28 2018-01-18 Show GitHub Exploit DB Packet Storm
252716 9.8 CRITICAL
Network 		newsbee_project newsbee SQL injection vulnerability in NewsBee CMS allow remote attackers to execute arbitrary SQL commands. CWE-89
SQL Injection 		CVE-2017-5971 2024-11-21 12:28 2018-01-8 Show GitHub Exploit DB Packet Storm
252717 5.6 MEDIUM
Local 		intel
arm 		core_i7
core_i5
core_i3
xeon_e7
xeon_silver
xeon_gold
xeon_platinum
xeon_phi
core_m3
core_m7
core_m5
core_m
xeon_e5
xeon_e3
xeon
pentium_n
pentium_j 		Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel a… CWE-200
Information Exposure 		CVE-2017-5754 2024-11-21 12:28 2018-01-4 Show GitHub Exploit DB Packet Storm
252718 5.6 MEDIUM
Local 		intel
canonical
debian
oracle
synology
opensuse
suse
arm
pepperl-fuchs
netapp
phoenixcontact
siemens
vmware 		core_i7
core_i5
core_i3
xeon_e7
xeon_silver
xeon_gold
xeon_platinum
xeon_phi
core_m3
core_m7
core_m5
core_m
xeon_e5
xeon_e3
xeon
pentium_n
pentium_j 		Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel analysis. CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-5753 2024-11-21 12:28 2018-01-4 Show GitHub Exploit DB Packet Storm
252719 5.6 MEDIUM
Local 		intel
arm
canonical
netapp
siemens
debian
oracle 		core_i7
core_i5
core_i3
xeon_e7
xeon_silver
xeon_gold
xeon_platinum
xeon_phi
core_m3
core_m7
core_m5
core_m
xeon_e5
xeon_e3
xeon
pentium_n
pentium_j 		Systems with microprocessors utilizing speculative execution and indirect branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a side-channel a… CWE-203
 Information Exposure Through Discrepancy 		CVE-2017-5715 2024-11-21 12:28 2018-01-4 Show GitHub Exploit DB Packet Storm
252720 9.8 CRITICAL
Network 		apache
hp 		flex_blazeds
xp_command_view_advanced_edition 		Previous versions of Apache Flex BlazeDS (4.7.2 and earlier) did not restrict which types were allowed for AMF(X) object deserialization by default. During the deserialization process code is execute… CWE-502
 Deserialization of Untrusted Data 		CVE-2017-5641 2024-11-21 12:28 2017-12-29 Show GitHub Exploit DB Packet Storm