Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227041	7.5	危険	scripts-for-sites	-	SFS SFS EZ Affiliate の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6780	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227042	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6779	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227043	7.5	危険	scripts-for-sites	-	SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6778	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227044	7.5	危険	scripts-for-sites	-	SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6776	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

227045	6.8	警告	shopsystem-forum	-	K&S Shopsoftware の admin/editor/images.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2008-6768	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

227046	10	危険	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるアプリケーションをアップグレードされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6767	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227047	5	警告	viart	-	ViArt Shop の cart_save.php におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-6766	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227048	5	警告	viart	-	ViArt Shop における任意のショッピングカートの中身にアクセスされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6765	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227049	4.3	警告	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるオープンリダイレクトの脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6762	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

227050	4.3	警告	viart	-	ViArt Shop における重要な情報を取得される脆弱性	CWE-59 リンク解釈の問題	CVE-2008-6760	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224061	6.7	MEDIUM Local	intel	nuc_8_mainstream_game_kit_firmware nuc_8_mainstream_game_mini_computer_firmware nuc8i7bek_firmware cd1p64gk_firmware nuc8i3cysm_firmware nuc8i7hnk_firmware nuc7i7dnke_firmware nu…	Integer overflow in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-190 Integer Overflow or Wraparound	CVE-2019-14611	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224062	7.8	HIGH Local	intel	nuc_8_mainstream_game_kit_firmware nuc_8_mainstream_game_mini_computer_firmware nuc8i7bek_firmware cd1p64gk_firmware nuc8i3cysm_firmware nuc8i7hnk_firmware nuc7i7dnke_firmware nu…	Improper access control in firmware for Intel(R) NUC(R) may allow an authenticated user to potentially enable escalation of privilege via local access.	NVD-CWE-Other	CVE-2019-14610	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224063	6.7	MEDIUM Local	intel	nuc_8_mainstream_game_kit_firmware nuc_8_mainstream_game_mini_computer_firmware nuc8i7bek_firmware cd1p64gk_firmware nuc8i3cysm_firmware nuc8i7hnk_firmware nuc7i7dnke_firmware nu…	Improper input validation in firmware for Intel(R) NUC(R) may allow a privileged user to potentially enable escalation of privilege via local access.	CWE-20 Improper Input Validation	CVE-2019-14609	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224064	7.8	HIGH Local	intel	nuc_8_mainstream_game_kit_firmware nuc_8_mainstream_game_mini_computer_firmware nuc8i7bek_firmware cd1p64gk_firmware nuc8i3cysm_firmware nuc8i7hnk_firmware nuc7i7dnke_firmware nu…	Improper buffer restrictions in firmware for Intel(R) NUC(R) may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-14608	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224065	7.8	HIGH Local	intel	setup_and_configuration_software_platform_discovery_utility	Improper permissions in the installer for the Intel(R) SCS Platform Discovery Utility, all versions, may allow an authenticated user to potentially enable escalation of privilege via local attack.	CWE-276 Incorrect Default Permissions	CVE-2019-14605	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224066	5.5	MEDIUM Local	intel	quartus_prime	Null pointer dereference in the FPGA kernel driver for Intel(R) Quartus(R) Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable denial of service via local acce…	CWE-476 NULL Pointer Dereference	CVE-2019-14604	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224067	7.8	HIGH Local	intel	quartus_prime	Improper permissions in the installer for the License Server software for Intel® Quartus® Prime Pro Edition before version 19.3 may allow an authenticated user to potentially enable escalation of pri…	CWE-276 Incorrect Default Permissions	CVE-2019-14603	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224068	7.8	HIGH Local	intel	control_center-i	Unquoted service path in Control Center-I version 2.1.0.0 and earlier may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-426 Untrusted Search Path	CVE-2019-14599	2024-11-21 13:27	2019-12-17	Show	GitHub Exploit DB Packet Storm

224069	5.4	MEDIUM Network	redhat	3scale	A vulnerability was found in 3scale before version 2.6, did not set the HTTPOnly attribute on the user session cookie. An attacker could use this to conduct cross site scripting attacks and gain acce…	-	CVE-2019-14849	2024-11-21 13:27	2019-12-12	Show	GitHub Exploit DB Packet Storm

224070	4.3	MEDIUM Network	atlassian	crucible fisheye	The /json/profile/removeStarAjax.do resource in Atlassian Fisheye and Crucible before version 4.8.0 allows remote attackers to remove another user's favourite setting for a project via an improper au…	NVD-CWE-noinfo	CVE-2019-15009	2024-11-21 13:27	2019-12-12	Show	GitHub Exploit DB Packet Storm