Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226821 7.5 危険 phponlinedatingsoftware - php Online Dating Software MyPHPDating の success_story.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4705 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
226822 7.5 危険 phpwebgallery - PhpWebGallery におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4702 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
226823 9.3 危険 VideoLAN - VideoLAN VLC Media Player の TY demux プラグインにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-4686 2012-12-20 18:52 2008-10-18 Show GitHub Exploit DB Packet Storm
226824 4.3 警告 Wireshark - Wireshark の packet-frame におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4684 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
226825 5 警告 Wireshark - Wireshark の wtap.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4682 2012-12-20 18:52 2008-10-1 Show GitHub Exploit DB Packet Storm
226826 4.3 警告 Wireshark - Wireshark の Bluetooth RFCOMM 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
CWE-399
CVE-2008-4681 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
226827 4.3 警告 Wireshark - Wireshark の USB 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4680 2012-12-20 18:52 2008-10-1 Show GitHub Exploit DB Packet Storm
226828 4.3 警告 Vim - Vim 用の autoload/netrw.vim における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4677 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
226829 7.5 危険 phpcounter - PHPcounter の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4675 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
226830 10 危険 webbiscuits - WebBiscuits Software Events Calendar の panel/common/theme/default/header_setup.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4673 2012-12-20 18:52 2008-10-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
213381 8.1 HIGH
Network 		cmsmadesimple cms_made_simple An issue was discovered in CMS Made Simple 2.2.8. It is possible with the News module, through a crafted URL, to achieve unauthenticated blind time-based SQL injection via the m1_idlist parameter. CWE-89
SQL Injection 		CVE-2019-9053 2024-11-21 13:50 2019-03-27 Show GitHub Exploit DB Packet Storm
213382 9.8 CRITICAL
Network 		axtls_project axtls tls1.c in Cameron Hamilton-Rich axTLS before 2.1.5 has a Buffer Overflow via a crafted sequence of TLS packets because the need_bytes value is mismanaged. CWE-787
 Out-of-bounds Write 		CVE-2019-8981 2024-11-21 13:50 2019-03-26 Show GitHub Exploit DB Packet Storm
213383 5.9 MEDIUM
Network 		blackberry athoc An XML External Entity Injection (XXE) vulnerability in the Management System (console) of BlackBerry AtHoc versions earlier than 7.6 HF-567 could allow an attacker to potentially read arbitrary loca… CWE-611
XXE 		CVE-2019-8997 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213384 6.1 MEDIUM
Network 		humhub humhub A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in /s/adada/cfiles/upload in Humhub 1.3.10 Community Edition. The user-supplied input containing JavaScript in the filename is echo… CWE-79
Cross-site Scripting 		CVE-2019-9094 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213385 6.1 MEDIUM
Network 		humhub humhub A Reflected Cross Site Scripting (XSS) Vulnerability was discovered in file/file/upload in Humhub 1.3.10 Community Edition. The user-supplied input containing a JavaScript payload in the filename par… CWE-79
Cross-site Scripting 		CVE-2019-9093 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213386 9.8 CRITICAL
Network 		sqlitemanager sqlitemanager SQLiteManager 1.20 and 1.24 allows SQL injection via the /sqlitemanager/main.php dbsel parameter. NOTE: This product is discontinued. CWE-89
SQL Injection 		CVE-2019-9083 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213387 6.1 MEDIUM
Network 		vertrigoserv_project vertrigoserv VertrigoServ 2.17 allows XSS via the /inc/extensions.php ext parameter. CWE-79
Cross-site Scripting 		CVE-2019-8938 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213388 3.3 LOW
Local 		qemu
opensuse 		qemu
leap 		hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares the /proc/device-tree/system-id and /proc/device-tree/model system attributes with a guest. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-8934 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
213389 7.7 HIGH
Network 		tibco jasperreports_server The SOAP API component vulnerability of TIBCO Software Inc.'s TIBCO JasperReports Server, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vulnerability that may allow a malicious authe… NVD-CWE-noinfo
CVE-2019-8986 2024-11-21 13:50 2019-03-8 Show GitHub Exploit DB Packet Storm
213390 6.1 MEDIUM
Network 		wuzhicms wuzhicms XSS exists in WUZHI CMS 4.1.0 via index.php?m=core&f=map&v=baidumap&x=[XSS]&y=[XSS] to coreframe/app/core/map.php. CWE-79
Cross-site Scripting 		CVE-2019-9108 2024-11-21 13:50 2019-02-25 Show GitHub Exploit DB Packet Storm