Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245561 7.5 危険 aj square - AJ Square AJ HYIP Acme における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4043 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
245562 9.3 危険 gmanedit2 - gmanedit の open_man_file 関数におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3971 2012-06-26 16:02 2008-09-10 Show GitHub Exploit DB Packet Storm
245563 7.5 危険 bitlbee - BitlBee における既存のアカウントを "上書き" される脆弱性 CWE-264
CWE-399
CVE-2008-3969 2012-06-26 16:02 2008-09-10 Show GitHub Exploit DB Packet Storm
245564 7.5 危険 AlstraSoft - AlstraSoft Forum Pay Per Post Exchange の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3954 2012-06-26 16:02 2008-09-10 Show GitHub Exploit DB Packet Storm
245565 7.5 危険 editeurscripts - EsFaq の questions.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3952 2012-06-26 16:02 2008-09-10 Show GitHub Exploit DB Packet Storm
245566 5 警告 アップル - Apple iPhone の _web_drawInRect:withFont:ellipsis:alignment:measureOnly 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-3950 2012-06-26 16:02 2008-09-16 Show GitHub Exploit DB Packet Storm
245567 7.5 危険 discountedscripts - ACG-PTP の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3944 2012-06-26 16:02 2008-09-5 Show GitHub Exploit DB Packet Storm
245568 7.5 危険 ezonescripts - eZoneScripts Living Local の listtest.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3943 2012-06-26 16:02 2008-09-5 Show GitHub Exploit DB Packet Storm
245569 4.3 警告 bizdirectory - BizDirectory におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3941 2012-06-26 16:02 2008-09-5 Show GitHub Exploit DB Packet Storm
245570 5 警告 AVTECH - AVTECH PageR Enterprise の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3939 2012-06-26 16:02 2008-09-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253351 7.0 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, a race condition potentially exists in the ioctl handler of a sound driver. CWE-362
Race Condition 		CVE-2017-7368 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253352 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image. CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2017-7367 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253353 5.5 MEDIUM
Local 		google android In all Android releases from CAF using the Linux kernel, a KGSL ioctl was not validating all of its parameters. CWE-20
 Improper Input Validation  		CVE-2017-7366 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253354 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated. CWE-125
Out-of-bounds Read 		CVE-2017-7365 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253355 7.3 HIGH
Local 		eduiq net_monitor_for_employees Net Monitor for Employees Pro through 5.3.4 has an unquoted service path, which allows a Security Feature Bypass of its documented "Block applications" design goal. The local attacker must have privi… CWE-428
 Unquoted Search Path or Element 		CVE-2017-7180 2024-11-21 12:31 2017-06-8 Show GitHub Exploit DB Packet Storm
253356 7.5 HIGH
Network 		personify personify360_e-business An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, while creating a new role, a list of database tables and their columns is available. CWE-287
Improper Authentication 		CVE-2017-7314 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253357 7.5 HIGH
Network 		personify personify360_e-business An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, it is possible to read any customer name, master Customer Id, and email address. In other wor… CWE-200
Information Exposure 		CVE-2017-7313 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253358 9.8 CRITICAL
Network 		personifycorp personify360 An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, anyone can add a vendor account or read existing vendor account data (including usernames and… CWE-269
 Improper Privilege Management 		CVE-2017-7312 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253359 6.1 MEDIUM
Network 		flipbuilder flip_pdf Cross-site scripting (XSS) vulnerability in FlipBuilder Flip PDF allows remote attackers to inject arbitrary web script or HTML via the currentHTMLURL parameter. CWE-79
Cross-site Scripting 		CVE-2017-7384 2024-11-21 12:31 2017-06-2 Show GitHub Exploit DB Packet Storm
253360 6.1 MEDIUM
Network 		contiki-os contiki An issue was discovered in Contiki Operating System 3.0. A Persistent XSS vulnerability is present in the MQTT/IBM Cloud Config page (aka mqtt.html) of cc26xx-web-demo. The cc26xx-web-demo features a… CWE-79
Cross-site Scripting 		CVE-2017-7296 2024-11-21 12:31 2017-05-28 Show GitHub Exploit DB Packet Storm