Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 11, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 245631 | 4.3 | 警告 | Chipmunk Scripts | - | Chipmunk Topsites の index.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-7072 | 2012-06-26 16:10 | 2009-08-25 | Show | GitHub Exploit DB Packet Storm |
| 245632 | 7.5 | 危険 | Chipmunk Scripts | - | Chipmunk Topsites の authenticate.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-7071 | 2012-06-26 16:10 | 2009-08-25 | Show | GitHub Exploit DB Packet Storm |
| 245633 | 7.5 | 危険 | 2enetworx | - | OpenForum における認証を回避される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7066 | 2012-06-26 16:10 | 2009-08-25 | Show | GitHub Exploit DB Packet Storm |
| 245634 | 7.5 | 危険 | aled owen | - | One-News Beta の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-7059 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245635 | 6.8 | 警告 | grayscalecms | - | BandSite CMS におけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-7058 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245636 | 4.3 | 警告 | grayscalecms | - | BandSite CMS の merchandise.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-7057 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245637 | 5 | 警告 | grayscalecms | - | BandSite CMS におけるデータベースのコピーを取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-7056 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245638 | 7.5 | 危険 | aj square | - | AJ Square AJ Article における管理者機能へアクセスされる脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-7051 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245639 | 6.4 | 警告 | aj square | - | AJPoll における新たにアンケートを作成される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-7046 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
| 245640 | 6.4 | 警告 | aj square | - | AJPoll Database における得票をリセットされるの脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-7045 | 2012-06-26 16:10 | 2009-08-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 11, 2026, 5:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 253391 | 6.1 |
MEDIUM
Network |
elastic | kibana | Starting in version 5.3.0, Kibana had a cross-site scripting (XSS) vulnerability in the Discover page that could allow an attacker to obtain sensitive information from or perform destructive actions … |
CWE-79
Cross-site Scripting |
CVE-2017-8440 | 2024-11-21 12:34 | 2017-06-5 | Show | GitHub Exploit DB Packet Storm |
| 253392 | 6.1 |
MEDIUM
Network |
elastic | kibana | Kibana version 5.4.0 was affected by a Cross Site Scripting (XSS) bug in the Time Series Visual Builder. This bug could allow an attacker to obtain sensitive information from Kibana users. |
CWE-79
Cross-site Scripting |
CVE-2017-8439 | 2024-11-21 12:34 | 2017-06-5 | Show | GitHub Exploit DB Packet Storm |
| 253393 | 8.8 |
HIGH
Network |
elastic | x-pack | Elastic X-Pack Security versions 5.0.0 to 5.4.0 contain a privilege escalation bug in the run_as functionality. This bug prevents transitioning into the specified user specified in a run_as request. … |
CWE-269
Improper Privilege Management |
CVE-2017-8438 | 2024-11-21 12:34 | 2017-06-5 | Show | GitHub Exploit DB Packet Storm |
| 253394 | 6.5 |
MEDIUM
Network |
libming | libming | The readString function in util/read.c and util/old/read.c in libming 0.4.8 allows remote attackers to cause a denial of service via a large file that is mishandled by listswf, listaction, etc. This … |
CWE-190
Integer Overflow or Wraparound |
CVE-2017-8782 | 2024-11-21 12:34 | 2017-05-31 | Show | GitHub Exploit DB Packet Storm |
| 253395 | 5.5 |
MEDIUM
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8542 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 253396 | 7.8 |
HIGH
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-8541 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 253397 | 5.5 |
MEDIUM
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8539 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 253398 | 7.8 |
HIGH
Local |
microsoft |
forefront_security malware_protection_engine windows_defender |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119
Incorrect Access of Indexable Resource ('Range Error') |
CVE-2017-8538 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 253399 | 5.5 |
MEDIUM
Local |
microsoft |
windows_defender forefront_endpoint_protection security_essentials endpoint_protection system_center_endpoint_protection windows_intune_endpoint_protection exchange_server |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8537 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |
| 253400 | 5.5 |
MEDIUM
Local |
microsoft |
windows_defender forefront_endpoint_protection security_essentials endpoint_protection system_center_endpoint_protection windows_intune_endpoint_protection exchange_server |
The Microsoft Malware Protection Engine running on Microsoft Forefront and Microsoft Defender on Microsoft Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and… |
CWE-119 CWE-369 CWE-476 CWE-674 Incorrect Access of Indexable Resource ('Range Error') Divide By Zero NULL Pointer Dereference Uncontrolled Recursion |
CVE-2017-8536 | 2024-11-21 12:34 | 2017-05-27 | Show | GitHub Exploit DB Packet Storm |