Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227431	7.5	危険	trawler	-	Trawler Web CMS における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5495	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227432	7.5	危険	PHPNUKE	-	PHP-Nuke 用の pandaBB モジュールにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2006-5494	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227433	5	警告	BlackBerry	-	IBM Lotus Domino 用の RIM BlackBerry Enterprise Server におけるサービス運用妨害 (DoS) の脆弱性	-	CVE-2006-5489	2012-12-20 18:02	2006-10-6	Show	GitHub Exploit DB Packet Storm

227434	7.5	危険	xchangeboard	-	XchangeBoard における SQL インジェクションの脆弱性	-	CVE-2006-5488	2012-12-20 18:02	2006-10-25	Show	GitHub Exploit DB Packet Storm

227435	4.3	警告	サン・マイクロシステムズ	-	Sun Java System Messaging Server および iPlanet Messaging Server の Webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-5486	2012-12-20 18:02	2006-10-24	Show	GitHub Exploit DB Packet Storm

227436	7.5	危険	speedberg	-	SpeedBerg における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5485	2012-12-20 18:02	2006-10-24	Show	GitHub Exploit DB Packet Storm

227437	5	警告	SSH コミュニケーションズ・セキュリティ	-	SSH Tectia Client/Server/Connector などの製品における RSA 鍵で署名済みの PKCS #1 署名を偽装される脆弱性	-	CVE-2006-5484	2012-12-20 18:02	2006-10-24	Show	GitHub Exploit DB Packet Storm

227438	7.5	危険	softerra	-	Softerra PHP Developer Library における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5472	2012-12-20 18:02	2006-10-24	Show	GitHub Exploit DB Packet Storm

227439	7.5	危険	softerra	-	Softerra PHP Developer Library の example/lib/grid3.lib.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5471	2012-12-20 18:02	2006-10-24	Show	GitHub Exploit DB Packet Storm

227440	5.4	警告	RPM Canonical	-	RPM Package Manager の librpm におけるヒープベースのバッファオーバーフローの脆弱性	-	CVE-2006-5466	2012-12-20 18:02	2006-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 26, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211851	9.8	CRITICAL Network	opensuse jq_project	leap opensuse jq	Off-by-one error in the tokenadd function in jv_parse.c in jq allows remote attackers to cause a denial of service (crash) via a long JSON-encoded number, which triggers a heap-based buffer overflow.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2015-8863	2024-11-21 11:39	2016-05-7	Show	GitHub Exploit DB Packet Storm

211852	5.1	MEDIUM Local	linux canonical	linux_kernel ubuntu_linux	Multiple race conditions in the ext4 filesystem implementation in the Linux kernel before 4.5 allow local users to cause a denial of service (disk corruption) by writing to a page that is associated …	CWE-362 Race Condition	CVE-2015-8839	2024-11-21 11:39	2016-05-2	Show	GitHub Exploit DB Packet Storm

211853	7.8	HIGH Local	linux	linux_kernel	Integer overflow in the aio_setup_single_vector function in fs/aio.c in the Linux kernel 4.0 allows local users to cause a denial of service or possibly have unspecified other impact via a large AIO …	NVD-CWE-Other	CVE-2015-8830	2024-11-21 11:39	2016-05-2	Show	GitHub Exploit DB Packet Storm

211854	7.5	HIGH Network	linux	linux_kernel	fs/nfs/nfs4proc.c in the NFS client in the Linux kernel before 4.2.2 does not properly initialize memory for migration recovery operations, which allows remote NFS servers to cause a denial of servic…	NVD-CWE-Other	CVE-2015-8746	2024-11-21 11:39	2016-05-2	Show	GitHub Exploit DB Packet Storm

211855	5.5	MEDIUM Local	linux	linux_kernel	The signal implementation in the Linux kernel before 4.3.5 on powerpc platforms does not check for an MSR with both the S and T bits set, which allows local users to cause a denial of service (TM Bad…	CWE-20 Improper Input Validation	CVE-2015-8844	2024-11-21 11:39	2016-04-28	Show	GitHub Exploit DB Packet Storm

211856	9.8	CRITICAL Network	novell linux canonical	suse_linux_enterprise_real_time_extension linux_kernel ubuntu_linux	drivers/infiniband/hw/cxgb3/iwch_cm.c in the Linux kernel before 4.5 does not properly identify error conditions, which allows remote attackers to execute arbitrary code or cause a denial of service …	NVD-CWE-Other	CVE-2015-8812	2024-11-21 11:39	2016-04-28	Show	GitHub Exploit DB Packet Storm

211857	5.5	MEDIUM Local	linux suse novell	linux_kernel suse_linux_enterprise_module_for_public_cloud suse_linux_enterprise_live_patching suse_linux_enterprise_server suse_linux_enterprise_software_development_kit suse_linux_en…	The tm_reclaim_thread function in arch/powerpc/kernel/process.c in the Linux kernel before 4.4.1 on powerpc platforms does not ensure that TM suspend mode exists before proceeding with a tm_reclaim c…	CWE-284 Improper Access Control	CVE-2015-8845	2024-11-21 11:39	2016-04-28	Show	GitHub Exploit DB Packet Storm

211858	6.8	MEDIUM Physics	novell linux suse	suse_linux_enterprise_server suse_linux_enterprise_debuginfo suse_linux_enterprise_live_patching suse_linux_enterprise_real_time_extension suse_linux_enterprise_desktop suse_linux_ente…	The hub_activate function in drivers/usb/core/hub.c in the Linux kernel before 4.3.5 does not properly maintain a hub-interface data structure, which allows physically proximate attackers to cause a …	NVD-CWE-Other	CVE-2015-8816	2024-11-21 11:39	2016-04-28	Show	GitHub Exploit DB Packet Storm

211859	7.5	HIGH Network	varnish_cache_project debian	varnish_cache debian_linux	Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated…	NVD-CWE-Other	CVE-2015-8852	2024-11-21 11:39	2016-04-25	Show	GitHub Exploit DB Packet Storm

211860	8.8	HIGH Network	adobe	flash_player air air_sdk air_sdk_\&_compiler flash_player_desktop_runtime	Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, A…	CWE-416 Use After Free	CVE-2015-8823	2024-11-21 11:39	2016-04-23	Show	GitHub Exploit DB Packet Storm