Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226751	6.2	警告	OpenOffice.org Project	-	OOo の senddoc における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4937	2012-12-20 18:52	2008-11-5	Show	GitHub Exploit DB Packet Storm

226752	8.8	危険	visagesoft	-	VISAGESOFT eXPert PDF Viewer X ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-4919	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

226753	4.3	警告	SonicWALL	-	SonicWALL Pro 2040 などで使用されている SonicWALL SonicOS Enhanced におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4918	2012-12-20 18:52	2008-11-4	Show	GitHub Exploit DB Packet Storm

226754	7.5	危険	rs maxsoft	-	RS MAXSOFT の fotogalerie モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4912	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226755	10	危険	サン・マイクロシステムズ	-	Sun Java Web Start の BasicService におけるクライアントマシン上で任意のプログラムを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-4910	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226756	7.5	危険	w1n78	-	e107 用の Lyrics プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4906	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226757	5	警告	typosphere	-	Typo におけるパスワードを推測される脆弱性	CWE-310 暗号の問題	CVE-2008-4905	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226758	6	警告	typosphere	-	Typo の "ページを管理する" 機能における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4904	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226759	4.3	警告	typosphere	-	Typo のコメントを残す機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4903	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

226760	7.5	危険	scripts frenzy	-	Article Publisher Pro の contact_author.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4902	2012-12-20 18:52	2008-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213321	5.5	MEDIUM Local	apple	mac_os_x tvos iphone_os	This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-8702	2024-11-21 13:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

213322	9.8	CRITICAL Network	apple	mac_os_x	CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved state management..	NVD-CWE-noinfo	CVE-2019-8643	2024-11-21 13:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

213323	8.8	HIGH Adjacent	bluez debian	bluez debian_linux	A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data…	CWE-787 Out-of-bounds Write	CVE-2019-8922	2024-11-21 13:50	2021-11-29	Show	GitHub Exploit DB Packet Storm

213324	6.5	MEDIUM Adjacent	bluez debian	bluez debian_linux	An issue was discovered in bluetoothd in BlueZ through 5.48. The vulnerability lies in the handling of a SVC_ATTR_REQ by the SDP implementation. By crafting a malicious CSTATE, it is possible to tric…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-8921	2024-11-21 13:50	2021-11-29	Show	GitHub Exploit DB Packet Storm

213325	7.5	HIGH Network	cmsmadesimple	cms_made_simple	An issue was discovered in CMS Made Simple 2.2.8. It is possible to achieve unauthenticated path traversal in the CGExtensions module (in the file action.setdefaulttemplate.php) with the m1_filename …	CWE-22 Path Traversal	CVE-2019-9060	2024-11-21 13:50	2021-09-18	Show	GitHub Exploit DB Packet Storm

213326	6.5	MEDIUM Network	apple	ipados iphone_os	This issue was addressed by verifying host keys when connecting to a previously-known SSH server. This issue is fixed in iOS 13.1 and iPadOS 13.1. An attacker in a privileged network position may be …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2019-8901	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

213327	4.3	MEDIUM Network	apple	tvos iphone_os itunes safari ipados	An information disclosure issue existed in the handling of the Storage Access API. This issue was addressed with improved logic. This issue is fixed in iOS 13.3 and iPadOS 13.3, tvOS 13.3, Safari 13.…	NVD-CWE-noinfo	CVE-2019-8898	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

213328	5.3	MEDIUM Network	apple	mac_os_x	A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A user who shares their screen may n…	NVD-CWE-noinfo	CVE-2019-8858	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

213329	3.3	LOW Local	apple	iphone_os ipados	The issue was addressed with improved validation when an iCloud Link is created. This issue is fixed in iOS 13.3 and iPadOS 13.3. Live Photo audio and video data may be shared via iCloud links even i…	CWE-20 Improper Input Validation	CVE-2019-8857	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

213330	3.3	LOW Local	apple	mac_os_x watchos iphone_os ipados	An API issue existed in the handling of outgoing phone calls initiated with Siri. This issue was addressed with improved state handling. This issue is fixed in iOS 13.3 and iPadOS 13.3, watchOS 6.1.1…	NVD-CWE-noinfo	CVE-2019-8856	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm