Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245671	9.3	危険	GeoVision	-	GeoVision DVR システムの LIVEAU~1.OCX における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2009-1092	2012-06-26 16:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

245672	4.3	警告	expressionengine	-	ExpressionEngine の system/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1070	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245673	9.3	危険	AB Team	-	bsplayer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1068	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245674	4.3	警告	Lucid Crew	-	Pixie CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1067	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245675	7.5	危険	Lucid Crew	-	Pixie CMS の admin/lib/lib_logs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1066	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245676	7.5	危険	Lucid Crew	-	Pixie CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-1065	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245677	6.8	警告	Saurused	-	eXeScope におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-1063	2012-06-26 16:10	2009-03-26	Show	GitHub Exploit DB Packet Storm

245678	5	警告	chaozz	-	chaozzDB におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1053	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

245679	5	警告	chaozz	-	FireAnt におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1052	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

245680	5	警告	chaozz	-	FubarForum におけるユーザの資格情報を含むデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1051	2012-06-26 16:10	2009-03-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
253411	7.8	HIGH Local	microsoft	windows_rt_8.1 windows_server_2012 windows_server_2016 windows_10 windows_8.1	Windows Input Method Editor (IME) in Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold, 1511, 1607, and 1703, and Windows Server 2016 allows an remote code execution vulne…	NVD-CWE-noinfo	CVE-2017-8591	2024-11-21 12:34	2017-08-9	Show	GitHub Exploit DB Packet Storm

253412	7.5	HIGH Network	microsoft	sql_server	Microsoft SQL Server Analysis Services in Microsoft SQL Server 2012, Microsoft SQL Server 2014, and Microsoft SQL Server 2016 allows an information disclosure vulnerability when it improperly enforce…	CWE-200 Information Exposure	CVE-2017-8516	2024-11-21 12:34	2017-08-9	Show	GitHub Exploit DB Packet Storm

253413	8.8	HIGH Local	microsoft	edge	Microsoft Edge in Microsoft Windows 10 1511, 1607, 1703, and Windows Server 2016 allows an attacker to escape from the AppContainer sandbox, aka "Microsoft Edge Elevation of Privilege Vulnerability".…	NVD-CWE-noinfo	CVE-2017-8503	2024-11-21 12:34	2017-08-9	Show	GitHub Exploit DB Packet Storm

253414	7.8	HIGH Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a remote code execution vulnerability due to the way Micro…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8663	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

253415	5.5	MEDIUM Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows an information disclosure vulnerability due to the way tha…	CWE-200 Information Exposure	CVE-2017-8572	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

253416	7.8	HIGH Local	microsoft	outlook	Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, and Outlook 2016 as packaged in Microsoft Office allows a security feature bypass vulnerability due to the way tha…	CWE-20 Improper Input Validation	CVE-2017-8571	2024-11-21 12:34	2017-08-2	Show	GitHub Exploit DB Packet Storm

253417	7.8	HIGH Local	mediacoderhq	audiocoder	Buffer overflow in AudioCoder 0.8.46 allows remote attackers to execute arbitrary code via a crafted .m3u file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8870	2024-11-21 12:34	2017-07-28	Show	GitHub Exploit DB Packet Storm

253418	7.8	HIGH Local	mediacoder	mediacoder	Buffer overflow in MediaCoder 0.8.48.5888 allows remote attackers to execute arbitrary code via a crafted .m3u file.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2017-8869	2024-11-21 12:34	2017-07-27	Show	GitHub Exploit DB Packet Storm

253419	6.5	MEDIUM Network	netapp	oncommand_api_services	NetApp OnCommand API Services before 1.2P3 logs the LDAP BIND password when a user attempts to log in using the REST API, which allows remote authenticated users to obtain sensitive password informat…	NVD-CWE-noinfo	CVE-2017-8919	2024-11-21 12:34	2017-07-26	Show	GitHub Exploit DB Packet Storm

253420	6.1	MEDIUM Network	owncloud	owncloud	ownCloud Server before 8.2.12, 9.0.x before 9.0.10, 9.1.x before 9.1.6, and 10.0.x before 10.0.2 are vulnerable to XSS on error pages by injecting code in url parameters.	CWE-79 Cross-site Scripting	CVE-2017-8896	2024-11-21 12:34	2017-07-18	Show	GitHub Exploit DB Packet Storm