Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 2:12 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252401 4.6 警告 OTRS プロジェクト - OTRS の Kernel/Output/HTML/CustomerNewTicketQueueSelectionGeneric.pm におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7282 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252402 4.3 警告 OTRS プロジェクト - OTRS における重要な電子メールアドレス情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-7281 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252403 5 警告 OTRS プロジェクト - OTRS の Kernel/System/EmailParser.pm in PostmasterPOP3.pl におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7280 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252404 6.5 警告 OTRS プロジェクト - OTRS の CustomerInterface コンポーネントにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7279 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252405 5 警告 OTRS プロジェクト - OTRS の S/MIME 機能における電子メールメッセージを解読される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7278 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252406 6.5 警告 OTRS プロジェクト - OTRS におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7277 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252407 4.6 警告 OTRS プロジェクト - OTRS の Kernel/System/Web/Request.pm におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7276 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252408 4.3 警告 OTRS プロジェクト - OTRS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7275 2012-03-27 18:42 2011-03-18 Show GitHub Exploit DB Packet Storm
252409 5.8 警告 boka - SiteEngine の api.php におけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7269 2012-03-27 18:42 2010-12-1 Show GitHub Exploit DB Packet Storm
252410 4 警告 IBM - IBM TDS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2007-6743 2012-03-27 18:42 2011-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
264631 5.4 MEDIUM
Network 		ui ucrm Ubiquiti UCRM versions 2.5.0 to 2.7.7 are vulnerable to Stored Cross-site Scripting. Due to the lack sanitization, it is possible to inject arbitrary HTML code by manipulating the uploaded filename. … CWE-79
Cross-site Scripting 		CVE-2017-0912 2024-11-21 12:03 2018-07-4 Show GitHub Exploit DB Packet Storm
264632 6.1 MEDIUM
Network 		html-janitor_project html-janitor html-janitor node module suffers from a Cross-Site Scripting (XSS) vulnerability via clean() accepting user-controlled values. CWE-79
Cross-site Scripting 		CVE-2017-0931 2024-11-21 12:03 2018-06-5 Show GitHub Exploit DB Packet Storm
264633 6.5 MEDIUM
Network 		augustine_project augustine augustine node module suffers from a Path Traversal vulnerability due to lack of validation of url, which allows a malicious user to read content of any file with known path. CWE-22
Path Traversal 		CVE-2017-0930 2024-11-21 12:03 2018-06-5 Show GitHub Exploit DB Packet Storm
264634 6.1 MEDIUM
Network 		theguardian html-janitor html-janitor node module suffers from an External Control of Critical State Data vulnerability via user-control of the '_sanitized' variable causing sanitization to be bypassed. CWE-642
 External Control of Critical State Data 		CVE-2017-0928 2024-11-21 12:03 2018-06-5 Show GitHub Exploit DB Packet Storm
264635 5.3 MEDIUM
Local 		google android An elevation of privilege vulnerability in the Qualcomm QCE driver. Product: Android. Versions: Android kernel. Android ID: A-36591162. References: QC-CR#2045061. NVD-CWE-noinfo
CVE-2017-0751 2024-11-21 12:03 2018-04-6 Show GitHub Exploit DB Packet Storm
264636 5.3 MEDIUM
Network 		google android An information disclosure vulnerability in the Qualcomm audio driver. Product: Android. Versions: Android Kernel. Android ID: A-35764875. References: QC-CR#2029798. CWE-200
Information Exposure 		CVE-2017-0748 2024-11-21 12:03 2018-04-6 Show GitHub Exploit DB Packet Storm
264637 5.3 MEDIUM
Local 		google android An elevation of privilege vulnerability in the NVIDIA firmware processing code. Product: Android. Versions: Android kernel. Android ID: A-34112726. References: N-CVE-2017-0744. NVD-CWE-noinfo
CVE-2017-0744 2024-11-21 12:03 2018-04-6 Show GitHub Exploit DB Packet Storm
264638 5.7 MEDIUM
Network 		nextcloud nextcloud_server Nextcloud Server before 11.0.7 and 12.0.5 suffers from an Authorization Bypass Through User-Controlled Key vulnerability. A missing ownership check allowed logged-in users to change the scope of app … CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2017-0936 2024-11-21 12:03 2018-03-29 Show GitHub Exploit DB Packet Storm
264639 4.3 MEDIUM
Network 		gitlab gitlab GitLab Community and Enterprise Editions before 10.1.6, 10.2.6, and 10.3.4 are vulnerable to an authorization bypass issue in the Projects::MergeRequests::CreationsController component resulting in a… CWE-863
 Incorrect Authorization 		CVE-2017-0920 2024-11-21 12:03 2018-03-23 Show GitHub Exploit DB Packet Storm
264640 8.8 HIGH
Network 		ui edgeos Ubiquiti Networks EdgeOS version 1.9.1.1 and prior suffer from an Improper Privilege Management vulnerability due to the lack of protection of the file system leading to sensitive information being e… CWE-269
 Improper Privilege Management 		CVE-2017-0935 2024-11-21 12:03 2018-03-22 Show GitHub Exploit DB Packet Storm