Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245671 5 警告 Linux
calacode		 - CalaCode @Mail における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3395 2012-06-26 16:02 2008-07-31 Show GitHub Exploit DB Packet Storm
245672 7.5 危険 easy-script - Def-Blog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3388 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245673 7.5 危険 AlstraSoft - AlstraSoft Video Share Enterprise の album.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3386 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245674 7.5 危険 cce-interact - Interact Learning Community Environment Interact の help/help.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3384 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245675 7.5 危険 fizzmedia negativekarma - Fizzmedia の comment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3378 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245676 7.5 危険 brandon tallent - phpTest の picture.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3377 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245677 7.5 危険 gregarius - Gregarius の ajax.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3374 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245678 5 警告 grisoft - Grisoft AVG Anti-Virus のファイル解析エンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-3373 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245679 7.5 危険 greatclone - Getacoder Clone の search_form.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3372 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
245680 7.5 危険 DELL EMC (旧 EMC Corporation) - MC CUA の CUA Login モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3370 2012-06-26 16:02 2008-07-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
253251 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, an array index in an ALSA routine is not properly validating potentially leading to kernel stack corruption. CWE-20
 Improper Input Validation  		CVE-2017-7369 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253252 7.0 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, a race condition potentially exists in the ioctl handler of a sound driver. CWE-362
Race Condition 		CVE-2017-7368 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253253 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, an integer underflow vulnerability exists while processing the boot image. CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2017-7367 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253254 5.5 MEDIUM
Local 		google android In all Android releases from CAF using the Linux kernel, a KGSL ioctl was not validating all of its parameters. CWE-20
 Improper Input Validation  		CVE-2017-7366 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253255 7.8 HIGH
Local 		google android In all Android releases from CAF using the Linux kernel, a buffer overread can occur if a particular string is not NULL terminated. CWE-125
Out-of-bounds Read 		CVE-2017-7365 2024-11-21 12:31 2017-06-14 Show GitHub Exploit DB Packet Storm
253256 7.3 HIGH
Local 		eduiq net_monitor_for_employees Net Monitor for Employees Pro through 5.3.4 has an unquoted service path, which allows a Security Feature Bypass of its documented "Block applications" design goal. The local attacker must have privi… CWE-428
 Unquoted Search Path or Element 		CVE-2017-7180 2024-11-21 12:31 2017-06-8 Show GitHub Exploit DB Packet Storm
253257 7.5 HIGH
Network 		personify personify360_e-business An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, while creating a new role, a list of database tables and their columns is available. CWE-287
Improper Authentication 		CVE-2017-7314 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253258 7.5 HIGH
Network 		personify personify360_e-business An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, it is possible to read any customer name, master Customer Id, and email address. In other wor… CWE-200
Information Exposure 		CVE-2017-7313 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253259 9.8 CRITICAL
Network 		personifycorp personify360 An issue was discovered in Personify360 e-Business 7.5.2 through 7.6.1. When going to the /TabId/275 URI, anyone can add a vendor account or read existing vendor account data (including usernames and… CWE-269
 Improper Privilege Management 		CVE-2017-7312 2024-11-21 12:31 2017-06-7 Show GitHub Exploit DB Packet Storm
253260 6.1 MEDIUM
Network 		flipbuilder flip_pdf Cross-site scripting (XSS) vulnerability in FlipBuilder Flip PDF allows remote attackers to inject arbitrary web script or HTML via the currentHTMLURL parameter. CWE-79
Cross-site Scripting 		CVE-2017-7384 2024-11-21 12:31 2017-06-2 Show GitHub Exploit DB Packet Storm