Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 5, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226901	7.5	危険	simpel side	-	Simpel Side Weblosning における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2506	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

226902	4.3	警告	simpel side	-	Simpel Side Weblosning の result.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2505	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

226903	7.5	危険	simpel side	-	Simpel Side Netbutik における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2504	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

226904	9.3	危険	加藤和良	-	eMule X-Ray の Uploadlist におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2503	2012-12-20 18:52	2008-05-29	Show	GitHub Exploit DB Packet Storm

226905	4.3	警告	quate	-	Quate CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2496	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226906	4.3	警告	TYPO3 Association	-	TYPO3 用の KJ Image Lightbox 2 エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2490	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226907	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2489	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226908	6.8	警告	xomol	-	Xomol CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2484	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226909	6.8	警告	xomol	-	Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2483	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

226910	10	危険	phpraider	-	phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2481	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213141	6.1	MEDIUM Network	open-emr	openemr	OpenEMR v5.0.1-6 allows XSS.	CWE-79 Cross-site Scripting	CVE-2019-8368	2024-11-21 13:49	2019-09-17	Show	GitHub Exploit DB Packet Storm

213142	7.2	HIGH Network	open-emr	openemr	OpenEMR v5.0.1-6 allows code execution.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-8371	2024-11-21 13:49	2019-09-17	Show	GitHub Exploit DB Packet Storm

213143	7.8	HIGH Local	adobe	application_manager	Adobe application manager installer version 10.0 have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the c…	CWE-427 Uncontrolled Search Path Element	CVE-2019-8076	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

213144	9.8	CRITICAL Network	adobe	flash_player_desktop_runtime flash_player	Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Use after free vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context …	CWE-416 Use After Free	CVE-2019-8070	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

213145	9.8	CRITICAL Network	adobe	flash_player_desktop_runtime flash_player	Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Same Origin Method Execution vulnerability. Successful exploitation could lead to Arbitrary Code Execution i…	CWE-346 Origin Validation Error	CVE-2019-8069	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

213146	6.5	MEDIUM Network	atlassian	jira_server	The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vul…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-8451	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

213147	4.8	MEDIUM Network	atlassian	jira_server	Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject ar…	CWE-79 Cross-site Scripting	CVE-2019-8450	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

213148	5.3	MEDIUM Network	atlassian	jira	The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.	CWE-306 Missing Authentication for Critical Function	CVE-2019-8449	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

213149	7.8	HIGH Local	checkpoint	endpoint_security capsule_docs_standalone_client remote_access_clients	Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leve…	CWE-426 Untrusted Search Path	CVE-2019-8461	2024-11-21 13:49	2019-08-30	Show	GitHub Exploit DB Packet Storm

213150	7.5	HIGH Network	openbsd	openbsd	OpenBSD kernel version <= 6.5 can be forced to create long chains of TCP SACK holes that causes very expensive calls to tcp_sack_option() for every incoming SACK packet which can lead to a denial of …	NVD-CWE-Other	CVE-2019-8460	2024-11-21 13:49	2019-08-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed