Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":Feb. 9, 2026, 12:59 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227561 5 警告 walter beschmout - Walter Beschmout PhpQuiz の back/upload_img.php などにおける任意の PHP コードをアップロードされる脆弱性 - CVE-2006-4977 2012-12-20 18:02 2006-09-24 Show GitHub Exploit DB Packet Storm
227562 2.6 注意 Yahoo! - WAP 用の Yahoo! Messenger における任意の Web スクリプトまたは HTML を挿入される脆弱性 - CVE-2006-4975 2012-12-20 18:02 2006-09-24 Show GitHub Exploit DB Packet Storm
227563 7.5 危険 wahm e-commerce - WAHM E-Commerce Pie Cart Pro の enc/content.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4970 2012-12-20 18:02 2006-09-24 Show GitHub Exploit DB Packet Storm
227564 7.5 危険 wahm e-commerce - WAHM E-Commerce Pie Cart Pro における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4969 2012-12-20 18:02 2006-09-24 Show GitHub Exploit DB Packet Storm
227565 7.5 危険 postnuke software foundation - PNphpBB の includes/functions_admin.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4968 2012-12-20 18:02 2006-09-24 Show GitHub Exploit DB Packet Storm
227566 5 警告 サン・マイクロシステムズ - SSGD におけるホスト名などを含む重要な情報を取得される脆弱性 - CVE-2006-4959 2012-12-20 18:02 2006-09-23 Show GitHub Exploit DB Packet Storm
227567 6.8 警告 サン・マイクロシステムズ - SSGD におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4958 2012-12-20 18:02 2006-09-23 Show GitHub Exploit DB Packet Storm
227568 7.5 危険 the myreview system - MyReview の functions.php における SQL インジェクションの脆弱性 - CVE-2006-4957 2012-12-20 18:02 2006-09-23 Show GitHub Exploit DB Packet Storm
227569 7.5 危険 prosysinfo - ProSysInfo TFTP Server TFTPDWIN の tftpd.exe におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2006-4948 2012-12-20 18:02 2006-09-22 Show GitHub Exploit DB Packet Storm
227570 4.6 警告 シマンテック - Symantec AntiVirus などの製品で使用される NAVENG などのデバイスドライバにおける権限を取得される脆弱性 - CVE-2006-4927 2012-12-20 18:02 2006-10-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 25, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211791 7.5 HIGH
Network 		varnish_cache_project
debian 		varnish_cache
debian_linux 		Varnish 3.x before 3.0.7, when used in certain stacked installations, allows remote attackers to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via a header line terminated… NVD-CWE-Other
CVE-2015-8852 2024-11-21 11:39 2016-04-25 Show GitHub Exploit DB Packet Storm
211792 8.8 HIGH
Network 		adobe flash_player
air
air_sdk
air_sdk_\&_compiler
flash_player_desktop_runtime 		Use-after-free vulnerability in the TextField object implementation in Adobe Flash Player before 18.0.0.268 and 19.x and 20.x before 20.0.0.228 on Windows and OS X and before 11.2.202.554 on Linux, A… CWE-416
 Use After Free 		CVE-2015-8823 2024-11-21 11:39 2016-04-23 Show GitHub Exploit DB Packet Storm
211793 3.3 LOW
Local 		opensuse opensuse tmpfiles.d/systemd.conf in systemd before 229 uses weak permissions for /var/log/journal/%m/system.journal, which allows local users to obtain sensitive information by reading the file. CWE-264
Permissions, Privileges, and Access Controls 		CVE-2015-8842 2024-11-21 11:39 2016-04-21 Show GitHub Exploit DB Packet Storm
211794 9.8 CRITICAL
Network 		suse
opensuse
canonical
debian
gnu
fedoraproject 		linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_debuginfo
linux_enterprise_software_development_kit
opensuse
suse_linux_enterprise_server
ubuntu_linux
debian_li… 		Stack-based buffer overflow in the catopen function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possib… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8779 2024-11-21 11:39 2016-04-20 Show GitHub Exploit DB Packet Storm
211795 9.8 CRITICAL
Network 		fedoraproject
debian
canonical
gnu
suse
opensuse 		fedora
debian_linux
ubuntu_linux
glibc
linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_debuginfo
linux_enterprise_software_development_kit
opensuse
suse_l… 		Integer overflow in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly execute arbitrary code via the s… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8778 2024-11-21 11:39 2016-04-20 Show GitHub Exploit DB Packet Storm
211796 9.1 CRITICAL
Network 		suse
opensuse
canonical
debian
fedoraproject
gnu 		linux_enterprise_server
linux_enterprise_desktop
linux_enterprise_debuginfo
linux_enterprise_software_development_kit
opensuse
suse_linux_enterprise_server
ubuntu_linux
debian_li… 		The strftime function in the GNU C Library (aka glibc or libc6) before 2.23 allows context-dependent attackers to cause a denial of service (application crash) or possibly obtain sensitive informatio… CWE-189
Numeric Errors 		CVE-2015-8776 2024-11-21 11:39 2016-04-20 Show GitHub Exploit DB Packet Storm
211797 7.5 HIGH
Network 		xmlsoft
canonical
debian 		libxml2
ubuntu_linux
debian_linux 		dict.c in libxml2 allows remote attackers to cause a denial of service (heap-based buffer over-read and application crash) via an unexpected character immediately after the "<!DOCTYPE html" substring… NVD-CWE-noinfo
CVE-2015-8806 2024-11-21 11:39 2016-04-14 Show GitHub Exploit DB Packet Storm
211798 6.5 MEDIUM
Network 		libtiff
debian 		libtiff
debian_linux 		The NeXTDecode function in tif_next.c in LibTIFF allows remote attackers to cause a denial of service (out-of-bounds write) via a crafted TIFF image, as demonstrated by libtiff5.tif. CWE-787
 Out-of-bounds Write 		CVE-2015-8784 2024-11-21 11:39 2016-04-14 Show GitHub Exploit DB Packet Storm
211799 6.1 MEDIUM
Network 		fedoraproject
horde
debian 		fedora
groupware
debian_linux 		Cross-site scripting (XSS) vulnerability in the _renderVarInput_number function in horde/framework/Core/lib/Horde/Core/Ui/VarRenderer/Html.php in Horde Groupware before 5.2.12 and Horde Groupware Web… CWE-79
Cross-site Scripting 		CVE-2015-8807 2024-11-21 11:39 2016-04-14 Show GitHub Exploit DB Packet Storm
211800 7.4 HIGH
Local 		foxitsoftware foxit_reader The Foxit Cloud Update Service (FoxitCloudUpdateService) in Foxit Reader 6.1 through 6.2.x and 7.x before 7.2.2, when an update to the Cloud plugin is available, allows local users to gain privileges… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2015-8843 2024-11-21 11:39 2016-04-14 Show GitHub Exploit DB Packet Storm