Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227971 7.5 危険 ZyXEL - ZyXEL ZyWALL における権限を取得される脆弱性 CWE-DesignError
CVE-2008-1160 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
227972 5.1 警告 The phpMyAdmin Project - phpMyAdmin における SQL インジェクションおよびクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
CWE-89
CVE-2008-1149 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227973 9.3 危険 synce - SynCE-dccm の vdccm の src/utils.cpp における任意のコマンドを実行される脆弱性 CWE-20
CWE-94
CVE-2008-1136 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
227974 4.3 警告 xrms crm - XRMS CRM の admin/users/self.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1129 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227975 6.8 警告 phpmytourney - phpMyTourney の tourney/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1128 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227976 5 警告 podcast generator - Podcast Generator におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1125 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227977 6.8 警告 podcast generator - Podcast Generator における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1124 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227978 6.8 警告 sitebuilder - SiteBuilder Elite における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1123 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227979 9.3 危険 rising antivirus international - Rising Antivirus Online Scanner の Web Scan Object ActiveX コントロール における任意のコードを強制的にダウンロードされる脆弱性 CWE-DesignError
CVE-2008-1116 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227980 7.8 危険 Vocera - Cisco Unified Wireless IP Phone 7921 におけるハッシュされたパスワードを盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-1113 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
2571 6.6 MEDIUM
Local 		samsung one Integer overflow in memory copy size calculation in Samsung Open Source ONE could lead to invalid memory operations with large tensor shapes. Affected version is prior to commit 1.30.0. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-41664 2026-04-28 03:21 2026-04-22 Show GitHub Exploit DB Packet Storm
2572 4.8 MEDIUM
Network 		ibm guardium_key_lifecycle_manager IBM Guardium Key Lifecycle Manager 4.1, 4.1.1, 4.2, 4.2.1, 5.0, and 5.1 CWE-269
NVD-CWE-noinfo
 Improper Privilege Management 		CVE-2026-1726 2026-04-28 03:21 2026-04-23 Show GitHub Exploit DB Packet Storm
2573 6.6 MEDIUM
Local 		samsung one Integer overflow in output tensor copy size calculation in Samsung Open Source ONE could cause incorrect copy length and memory corruption for oversized tensors. Affected version is prior to commit … CWE-190
 Integer Overflow or Wraparound 		CVE-2026-40450 2026-04-28 03:21 2026-04-22 Show GitHub Exploit DB Packet Storm
2574 6.6 MEDIUM
Local 		samsung one Integer overflow in buffer size calculation could result in out of bounds memory access when handling large tensors in Samsung Open Source ONE. Affected version is prior to commit 1.30.0. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-40449 2026-04-28 03:21 2026-04-22 Show GitHub Exploit DB Packet Storm
2575 9.8 CRITICAL
Network 		rclone rclone Rclone is a command-line program to sync files and directories to and from different cloud storage providers. The RC endpoint `options/set` is exposed without `AuthRequired: true`, but it can mutate … CWE-306
Missing Authentication for Critical Function 		CVE-2026-41176 2026-04-28 03:19 2026-04-23 Show GitHub Exploit DB Packet Storm
2576 5.3 MEDIUM
Local 		samsung one Potential Integer overflow in tensor allocation size calculation could lead to insufficient memory allocation for large tensors in Samsung Open Source ONE. Affected version is prior to commit  1.30.0. CWE-190
 Integer Overflow or Wraparound 		CVE-2026-40448 2026-04-28 03:18 2026-04-22 Show GitHub Exploit DB Packet Storm
2577 9.8 CRITICAL
Network 		rclone rclone Rclone is a command-line program to sync files and directories to and from different cloud storage providers. Starting in version 1.48.0 and prior to version 1.73.5, the RC endpoint `operations/fsinf… CWE-78
CWE-306
OS Command 
Missing Authentication for Critical Function 		CVE-2026-41179 2026-04-28 03:18 2026-04-23 Show GitHub Exploit DB Packet Storm
2578 - - - An authenticated attacker can persist crafted values in multiple field types and trigger client-side script execution when another user opens the affected document in Desk. The vulnerable formatter i… CWE-79
Cross-site Scripting 		CVE-2026-3837 2026-04-28 03:16 2026-04-23 Show GitHub Exploit DB Packet Storm
2579 4.9 MEDIUM
Network 		ibm guardium_data_protection IBM Guardium Data Protection 12.1 could allow an administrative user to traverse directories on the system. An attacker could send a specially crafted URL request containing "dot dot" sequences (/../… CWE-22
Path Traversal 		CVE-2026-4917 2026-04-28 03:13 2026-04-23 Show GitHub Exploit DB Packet Storm
2580 4.8 MEDIUM
Network 		ibm guardium_data_protection IBM Guardium Data Protection 12.1 is vulnerable to stored cross-site scripting. This vulnerability allows an administrative user to embed arbitrary JavaScript code in the Web UI thus altering the int… CWE-79
Cross-site Scripting 		CVE-2026-4918 2026-04-28 03:13 2026-04-23 Show GitHub Exploit DB Packet Storm