Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227061 5.8 警告 thaiquickcart - ThaiQuickCart の qc/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6735 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
227062 6.8 警告 phpmotion - PHPmotion の password.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6729 2012-12-20 19:10 2009-04-20 Show GitHub Exploit DB Packet Storm
227063 7.5 危険 PHPNUKE - PHP-Nuke の Sections モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6728 2012-12-20 19:10 2009-04-20 Show GitHub Exploit DB Packet Storm
227064 7.5 危険 turnkeyforms - TurnkeyForms Entertainment Portal における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6723 2012-12-20 19:10 2009-04-14 Show GitHub Exploit DB Packet Storm
227065 7.5 危険 uochm - U&M Software Event Lister における脆弱性 CWE-287
不適切な認証 		CVE-2008-6719 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
227066 7.5 危険 uochm - U&M Software JustBookIt における脆弱性 CWE-287
不適切な認証 		CVE-2008-6718 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
227067 7.5 危険 uochm - U&M Software Signup における脆弱性 CWE-287
不適切な認証 		CVE-2008-6717 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
227068 7.5 危険 PreProject.com - Pre ADS Portal の homeadmin/adminhome.php における脆弱性 CWE-287
不適切な認証 		CVE-2008-6716 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
227069 4.3 警告 PreProject.com - Pre ADS Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6715 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
227070 7.5 危険 xecms - xeCMS の admin.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6714 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224121 7.8 HIGH
Local 		ubisoft uplay Ubisoft Uplay 92.0.0.6280 has Insecure Permissions. CWE-276
Incorrect Default Permissions  		CVE-2019-14737 2024-11-21 13:27 2019-10-15 Show GitHub Exploit DB Packet Storm
224122 4.9 MEDIUM
Network 		redhat wildfly_core
jboss_enterprise_application_platform
single_sign-on
data_grid 		A flaw was found in wildfly-core before 7.2.5.GA. The Management users with Monitor, Auditor and Deployer Roles should not be allowed to modify the runtime state of the server CWE-269
 Improper Privilege Management 		CVE-2019-14838 2024-11-21 13:27 2019-10-15 Show GitHub Exploit DB Packet Storm
224123 7.4 HIGH
Network 		jss_cryptomanager_project
redhat 		jss_cryptomanager
enterprise_linux
enterprise_linux_desktop
enterprise_linux_eus
enterprise_linux_server
enterprise_linux_server_aus
enterprise_linux_server_tus
enterprise_linux_… 		A flaw was found in the "Leaf and Chain" OCSP policy implementation in JSS' CryptoManager versions after 4.4.6, 4.5.3, 4.6.0, where it implicitly trusted the root certificate of a certificate chain. … - CVE-2019-14823 2024-11-21 13:27 2019-10-15 Show GitHub Exploit DB Packet Storm
224124 5.5 MEDIUM
Local 		redhat ansible_engine
ansible_tower 		A vulnerability was found in Ansible engine 2.x up to 2.8 and Ansible tower 3.x up to 3.5. When a module has an argument_spec with sub parameters marked as no_log, passing an invalid parameter name t… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-14858 2024-11-21 13:27 2019-10-15 Show GitHub Exploit DB Packet Storm
224125 8.8 HIGH
Network 		softing uagate_si_firmware
uagate_mb_firmware
uagate_840d_firmware 		An issue was discovered in Softing uaGate (SI, MB, 840D) firmware through 1.71.00.1225. A CGI script is vulnerable to command injection via a maliciously crafted form parameter. CWE-77
Command Injection 		CVE-2019-15051 2024-11-21 13:27 2019-10-11 Show GitHub Exploit DB Packet Storm
224126 5.9 MEDIUM
Network 		arista extensible_operating_system A vulnerability has been found in the implementation of the Label Distribution Protocol (LDP) protocol in EOS. Under race conditions, the LDP agent can establish an LDP session with a malicious peer … CWE-362
Race Condition 		CVE-2019-14810 2024-11-21 13:27 2019-10-11 Show GitHub Exploit DB Packet Storm
224127 7.5 HIGH
Network 		zingbox inspector A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that results in passwords for 3rd party integrations being stored in cleartext in device configuration. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2019-15023 2024-11-21 13:27 2019-10-10 Show GitHub Exploit DB Packet Storm
224128 7.5 HIGH
Network 		zingbox inspector A security vulnerability exists in Zingbox Inspector versions 1.294 and earlier, that allows for the Inspector to be susceptible to ARP spoofing. CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-15022 2024-11-21 13:27 2019-10-10 Show GitHub Exploit DB Packet Storm
224129 5.3 MEDIUM
Network 		zingbox inspector A security vulnerability exists in the Zingbox Inspector versions 1.294 and earlier, that can allow an attacker to easily identify instances of Zingbox Inspectors in a local area network. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-15021 2024-11-21 13:27 2019-10-10 Show GitHub Exploit DB Packet Storm
224130 9.8 CRITICAL
Network 		zingbox inspector A security vulnerability exists in the Zingbox Inspector versions 1.293 and earlier, that could allow an attacker to supply an invalid software update image to the Zingbox Inspector that could result… CWE-346
 Origin Validation Error 		CVE-2019-15020 2024-11-21 13:27 2019-10-10 Show GitHub Exploit DB Packet Storm