Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226481 7.5 危険 rmsoft - Xoops 用の RMSOFT MiniShop モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4433 2012-12-20 18:52 2008-10-3 Show GitHub Exploit DB Packet Storm
226482 4.3 警告 rmsoft - Xoops 用の RMSOFT MiniShop モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4432 2012-12-20 18:52 2008-10-3 Show GitHub Exploit DB Packet Storm
226483 5 警告 トレンドマイクロ - Trend Micro OfficeScan のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4403 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
226484 10 危険 トレンドマイクロ - Trend Micro OfficeScan のサーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4402 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
226485 9.3 危険 safer networking - Safer Networking FileAlyzer におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4396 2012-12-20 18:52 2008-10-2 Show GitHub Exploit DB Packet Storm
226486 4.3 警告 ベリサイン - VeriSign Kontiki DMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4393 2012-12-20 18:52 2008-10-7 Show GitHub Exploit DB Packet Storm
226487 9.3 危険 simba technologies
SAP		 - SAP SAPgui の mdrmsap.dll における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4387 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
226488 7.5 危険 rianxosencabos cms - Rianxosencabos CMS における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4244 2012-12-20 18:52 2008-09-25 Show GitHub Exploit DB Packet Storm
226489 7.5 危険 softacid - SoftAcid HRS の city.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4204 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
226490 6.9 警告 レッドハット - cman の fence_egenera における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-4192 2012-12-20 18:52 2008-09-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212521 9.8 CRITICAL
Network 		solideos architectural_information_system Architectural Information System 1.0 and earlier versions have a Stack-based buffer overflow, allows remote attackers to execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2019-9134 2024-11-21 13:51 2019-04-10 Show GitHub Exploit DB Packet Storm
212522 5.5 MEDIUM
Local 		kmplayer
fedoraproject 		kmplayer
fedora 		When processing subtitles format media file, KMPlayer version 2018.12.24.14 or lower doesn't check object size correctly, which leads to integer underflow then to memory out-of-bound read/write. An a… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-9133 2024-11-21 13:51 2019-04-10 Show GitHub Exploit DB Packet Storm
212523 8.8 HIGH
Network 		trendmicro interscan_web_security_virtual_appliance A vulnerability in Trend Micro InterScan Web Security Virtual Appliance version 6.5 SP2 could allow an non-authorized user to disclose administrative credentials. An attacker must be an authenticated… NVD-CWE-noinfo
CVE-2019-9490 2024-11-21 13:51 2019-04-6 Show GitHub Exploit DB Packet Storm
212524 7.5 HIGH
Network 		trendmicro apex_one
apex_one_as_a_service
business_security
officescan
worry-free_business_security 		A directory traversal vulnerability in Trend Micro Apex One, OfficeScan (versions XG and 11.0), and Worry-Free Business Security (versions 10.0, 9.5 and 9.0) could allow an attacker to modify arbitra… CWE-22
Path Traversal 		CVE-2019-9489 2024-11-21 13:51 2019-04-6 Show GitHub Exploit DB Packet Storm
212525 7.2 HIGH
Network 		postgresql postgresql In PostgreSQL 9.3 through 11.2, the "COPY TO/FROM PROGRAM" function allows superusers and users in the 'pg_execute_server_program' group to execute arbitrary code in the context of the database's ope… CWE-78
OS Command  		CVE-2019-9193 2024-11-21 13:51 2019-04-2 Show GitHub Exploit DB Packet Storm
212526 8.8 HIGH
Network 		kakaocorp kakaotalk Remote code execution vulnerability exists in KaKaoTalk PC messenger when user clicks specially crafted link in the message window. This affects KaKaoTalk windows version 2.7.5.2024 or lower. NVD-CWE-noinfo
CVE-2019-9132 2024-11-21 13:51 2019-04-2 Show GitHub Exploit DB Packet Storm
212527 5.4 MEDIUM
Network 		online_lottery_php_readymade_script_project online_lottery_php_readymade_script PHP Scripts Mall Online Lottery PHP Readymade Script 1.7.0 has Reflected Cross-site Scripting (XSS) via the err value in a .ico picture upload. CWE-79
Cross-site Scripting 		CVE-2019-9605 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
212528 8.8 HIGH
Network 		online_lottery_php_readymade_script_project online_lottery_php_readymade_script PHP Scripts Mall Online Lottery PHP Readymade Script 1.7.0 has Cross-Site Request Forgery (CSRF) for Edit Profile actions. CWE-352
 Origin Validation Error 		CVE-2019-9604 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
212529 6.1 MEDIUM
Network 		nagios nagios_xi Cross-site scripting (XSS) vulnerability in Nagios XI before 5.5.11 allows attackers to inject arbitrary web script or HTML via the xiwindow parameter. CWE-79
Cross-site Scripting 		CVE-2019-9167 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm
212530 7.8 HIGH
Local 		nagios nagios_xi Privilege escalation in Nagios XI before 5.5.11 allows local attackers to elevate privileges to root via write access to config.inc.php and import_xiconfig.php. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-9166 2024-11-21 13:51 2019-03-29 Show GitHub Exploit DB Packet Storm