Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245371 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
245372 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245373 4.3 警告 F5 Networks - F5 FirePass SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2637 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245374 9.3 危険 barad dur - BitKinex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2635 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245375 7.5 危険 bearrivernet.net - I-Pos Internet Pay Online Store の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2634 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245376 5 警告 Alt-N - Alt-N Technologies MDaemon の WordClient インターフェースにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-2631 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245377 7.5 危険 battleblog - Battle Blog の comment.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2626 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
245378 7.5 危険 flashblog - FlashBlog の admin/Editor/imgupload.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2574 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
245379 8.5 危険 freeSSHd - freeSSHd の SFTP におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2573 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
245380 4.3 警告 fourtwosevenbb - 427BB におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2561 2012-06-26 16:02 2008-06-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252771 5.5 MEDIUM
Local 		linux linux_kernel The klsi_105_get_line_state function in drivers/usb/serial/kl5kusb105.c in the Linux kernel before 4.9.5 places uninitialized heap-memory contents into a log entry upon a failure to read the line sta… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-5549 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252772 7.8 HIGH
Local 		linux linux_kernel drivers/net/ieee802154/atusb.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or m… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5548 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252773 7.8 HIGH
Local 		linux linux_kernel drivers/hid/hid-corsair.c in the Linux kernel 4.9.x before 4.9.6 interacts incorrectly with the CONFIG_VMAP_STACK option, which allows local users to cause a denial of service (system crash or memory… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-5547 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252774 7.8 HIGH
Local 		linux linux_kernel The freelist-randomization feature in mm/slab.c in the Linux kernel 4.8.x and 4.9.x before 4.9.5 allows local users to cause a denial of service (duplicate freelist entries and system crash) or possi… NVD-CWE-noinfo
CVE-2017-5546 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252775 6.2 MEDIUM
Local 		sendquick entera_sms_gateway_firmware
avera_sms_gateway_firmware 		An issue was discovered on SendQuick Entera and Avera devices before 2HF16. An attacker could request and download the SMS logs from an unauthenticated perspective. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2017-5137 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252776 7.5 HIGH
Network 		sendquick entera_sms_gateway_firmware
avera_sms_gateway_firmware 		An issue was discovered on SendQuick Entera and Avera devices before 2HF16. The application failed to check the access control of the request which could result in an attacker being able to shutdown … CWE-862
 Missing Authorization 		CVE-2017-5136 2024-11-21 12:27 2017-02-6 Show GitHub Exploit DB Packet Storm
252777 9.8 CRITICAL
Network 		netapp oncommand_insight The Data Warehouse component in NetApp OnCommand Insight before 7.2.3 allows remote attackers to obtain administrative access by leveraging a default privileged account. CWE-798
 Use of Hard-coded Credentials 		CVE-2017-5600 2024-11-21 12:27 2017-02-3 Show GitHub Exploit DB Packet Storm
252778 9.8 CRITICAL
Network 		sagecrm sagecrm An issue was discovered in SageCRM 7.x before 7.3 SP3. The Component Manager functionality, provided by SageCRM, permits additional components to be added to the application to enhance provided funct… CWE-22
Path Traversal 		CVE-2017-5219 2024-11-21 12:27 2017-02-2 Show GitHub Exploit DB Packet Storm
252779 8.8 HIGH
Network 		sagecrm sagecrm A SQL Injection issue was discovered in SageCRM 7.x before 7.3 SP3. The AP_DocumentUI.asp web resource includes Utilityfuncs.js when the file is opened or viewed. This file crafts a SQL statement to … CWE-89
SQL Injection 		CVE-2017-5218 2024-11-21 12:27 2017-02-2 Show GitHub Exploit DB Packet Storm
252780 4.9 MEDIUM
Network 		citrix xenserver An issue was discovered in Linux Foundation xapi in Citrix XenServer through 7.0. An authenticated read-only administrator can cancel tasks of other administrators. NVD-CWE-noinfo
CVE-2017-5573 2024-11-21 12:27 2017-01-31 Show GitHub Exploit DB Packet Storm