Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245531 7.5 危険 classifieds caffe - Classifieds Caffe の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1936 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
245532 7.5 危険 crazy goomba - Crazy Goomba の commentaires.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1934 2012-06-26 16:02 2008-04-25 Show GitHub Exploit DB Packet Storm
245533 7.1 危険 Digium - Asterisk の IAX2 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2008-1923 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245534 7.5 危険 5th avenue software - 5th Avenue Shopping Cart の store_pages/category_list.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1921 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245535 4.3 警告 amfphp - AMFPHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1917 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245536 7.5 危険 devworx - DevWorx BlogWorx の view.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1915 2012-06-26 16:02 2008-04-23 Show GitHub Exploit DB Packet Storm
245537 10 危険 BigAntSoft - BigAnt Messenger の AntServer モジュールにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1914 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245538 9.3 危険 DivX - DivX Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1912 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245539 6.8 警告 1024cms - 1024 CMS の includes/system.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1911 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
245540 10 危険 Borland Software Corporation - Borland InterBase のibserver.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1910 2012-06-26 16:02 2008-04-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
252981 8.4 HIGH
Local 		intel nuc7i7bnh_firmware
nuc7i5bnh_firmware
nuc7i5bnk_firmware
nuc7i3bnh_firmware
nuc7i3bnk_firmware 		Insufficient protection of password storage in system firmware for Intel NUC7i3BNK, NUC7i3BNH, NUC7i5BNK, NUC7i5BNH, NUC7i7BNH versions BN0049 and below allows local attackers to bypass Administrator… CWE-522
 Insufficiently Protected Credentials 		CVE-2017-5700 2024-11-21 12:28 2017-10-11 Show GitHub Exploit DB Packet Storm
252982 7.5 HIGH
Network 		apache
debian 		zookeeper
debian_linux 		Two four letter word commands "wchp/wchc" are CPU intensive and could cause spike of CPU utilization on Apache ZooKeeper server if abused, which leads to the server unable to serve legitimate client … CWE-400
CWE-306
 Uncontrolled Resource Consumption
Missing Authentication for Critical Function 		CVE-2017-5637 2024-11-21 12:28 2017-10-10 Show GitHub Exploit DB Packet Storm
252983 7.8 HIGH
Local 		sophos hitmanpro A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to escalate p… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6008 2024-11-21 12:28 2017-09-13 Show GitHub Exploit DB Packet Storm
252984 5.5 MEDIUM
Local 		sophos hitmanpro A kernel pool overflow in the driver hitmanpro37.sys in Sophos SurfRight HitmanPro before 3.7.20 Build 286 (included in the HitmanPro.Alert solution and Sophos Clean) allows local users to crash the … CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2017-6007 2024-11-21 12:28 2017-09-13 Show GitHub Exploit DB Packet Storm
252985 4.4 MEDIUM
Local 		intel manageability_engine_firmware
active_management_technology_firmware
small_business_technology_firmware 		Intel Active Management Technology, Intel Standard Manageability, and Intel Small Business Technology firmware versions 11.0.25.3001 and 11.0.26.3000 anti-rollback will not prevent upgrading to firmw… NVD-CWE-noinfo
CVE-2017-5698 2024-11-21 12:28 2017-09-6 Show GitHub Exploit DB Packet Storm
252986 4.6 MEDIUM
Physics 		intel ssd_540s_2.5\"_firmware
ssd_540s_series_m.2_firmware
ssd_pro_5400s_2.5\"_firmware
ssd_pro_5400s_m.2_firmware
ssd_e_5400s_2.5\"_firmware
ssd_e_5400s_m.2_firmware
ssd_d… 		Data corruption vulnerability in firmware in Intel Solid-State Drive Consumer, Professional, Embedded, Data Center affected firmware versions LSBG200, LSF031C, LSF036C, LBF010C, LSBG100, LSF031C, LSF… CWE-20
 Improper Input Validation  		CVE-2017-5695 2024-11-21 12:28 2017-08-9 Show GitHub Exploit DB Packet Storm
252987 4.6 MEDIUM
Physics 		intel ssd_pro_6000p_firmware Data corruption vulnerability in firmware in Intel Solid-State Drive Professional PSF104P, PSF109P allows local users to cause a denial of service via unspecified vectors. NVD-CWE-noinfo
CVE-2017-5694 2024-11-21 12:28 2017-08-9 Show GitHub Exploit DB Packet Storm
252988 9.0 CRITICAL
Network 		intel nuc7i3bnk_bios
nuc7i5bnk_bios
nuc7i7bnh_bios
stk2mv64cc_bios
stk2m3w64cc_bios
nuc6i7kyk_bios
nuc6i3syk_bios
nuc6i5syk_bios
r1304sposhor_bios
r1304sposhorr_bios
r1208spos… 		Incorrect check in Intel processors from 6th and 7th Generation Intel Core Processor Families, Intel Xeon E3-1500M v5 and v6 Product Families, and Intel Xeon E3-1200 v5 and v6 Product Families allows… NVD-CWE-noinfo
CVE-2017-5691 2024-11-21 12:28 2017-07-27 Show GitHub Exploit DB Packet Storm
252989 7.0 HIGH
Local 		waves maxxaudio Waves MaxxAudio, as installed on Dell laptops, adds a "WavesSysSvc" Windows service with File Version 1.1.6.0. This service has a vulnerability known as Unquoted Service Path. This could potentially … NVD-CWE-noinfo
CVE-2017-6005 2024-11-21 12:28 2017-07-26 Show GitHub Exploit DB Packet Storm
252990 7.5 HIGH
Network 		apache impala During a routine security analysis, it was found that one of the ports in Apache Impala (incubating) 2.7.0 to 2.8.0 sent data in plaintext even when the cluster was configured to use TLS. The port in… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2017-5652 2024-11-21 12:28 2017-07-11 Show GitHub Exploit DB Packet Storm