Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227081 4.3 警告 PrestaShop - PrestaShop におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6503 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
227082 4.6 警告 Pro Chat Rooms - Pro Chat Rooms におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6502 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
227083 4.3 警告 Pro Chat Rooms - Pro Chat Rooms の profiles/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6501 2012-12-20 19:10 2009-03-20 Show GitHub Exploit DB Packet Storm
227084 7.8 危険 tp - Neostrada Livebox ADSL ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6497 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
227085 8.8 危険 visagesoft - VISAGESOFT eXPert PDF EditorX の VSPDFEditorX.VSPDFEdit ActiveX コントロールにおける任意のファイルを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6496 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
227086 4.3 警告 zirkon box - Fritz Berger yappa-ng の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6495 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
227087 5 警告 robs-projects - ASP User Engine.NET におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6494 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
227088 6.8 警告 tizag - Tizag Countdown Creator の process.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6492 2012-12-20 19:10 2009-03-19 Show GitHub Exploit DB Packet Storm
227089 7.5 危険 softcomplex - SoftComplex PHP Image Gallery の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6488 2012-12-20 19:10 2009-03-18 Show GitHub Exploit DB Packet Storm
227090 6.8 警告 shatm - SharedLog の slideshow_uploadvideo.content.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6486 2012-12-20 19:10 2009-03-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222651 8.8 HIGH
Network 		jenkins gerrit_trigger A cross-site request forgery vulnerability in Jenkins Gerrit Trigger Plugin 2.30.1 and earlier allows attackers to connect to an attacker-specified HTTP URL or SSH server using attacker-specified cre… CWE-352
 Origin Validation Error 		CVE-2019-16551 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
222652 8.8 HIGH
Network 		jenkins maven A cross-site request forgery vulnerability in a connection test form method in Jenkins Maven Release Plugin 0.16.1 and earlier allows attackers to have Jenkins connect to an attacker specified web se… CWE-352
 Origin Validation Error 		CVE-2019-16550 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
222653 8.1 HIGH
Network 		jenkins maven Jenkins Maven Release Plugin 0.16.1 and earlier does not configure the XML parser to prevent XML external entity (XXE) attacks, allowing man-in-the-middle attackers to have Jenkins parse crafted XML … CWE-611
XXE 		CVE-2019-16549 2024-11-21 13:30 2019-12-18 Show GitHub Exploit DB Packet Storm
222654 9.8 CRITICAL
Network 		intesync solismed Intesync Solismed 3.3sp1 allows Local File Inclusion (LFI), a different vulnerability than CVE-2019-15931. This leads to unauthenticated code execution. CWE-22
Path Traversal 		CVE-2019-16246 2024-11-21 13:30 2019-12-12 Show GitHub Exploit DB Packet Storm
222655 9.8 CRITICAL
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Authentication Information used in a cookie … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-16674 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm
222656 6.5 MEDIUM
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Passwords are stored in cleartext and can be… CWE-522
 Insufficiently Protected Credentials 		CVE-2019-16673 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm
222657 9.8 CRITICAL
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Sensitive Credentials data is transmitted in… CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2019-16672 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm
222658 6.5 MEDIUM
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. Remote authenticated users can crash a devic… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-16671 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm
222659 9.8 CRITICAL
Network 		weidmueller ie-sw-pl09m-5gc-4gt_firmware
ie-sw-pl09mt-5gc-4gt_firmware
ie-sw-pl18m-2gc-16tx_firmware
ie-sw-pl18mt-2gc-16tx_firmware
ie-sw-pl18m-2gc14tx2sc_firmware
ie-sw-pl18mt-2gc14tx2sc_firmware… 		An issue was discovered on Weidmueller IE-SW-VL05M 3.6.6 Build 16102415, IE-SW-VL08MT 3.5.2 Build 16102415, and IE-SW-PL10M 3.3.16 Build 16102416 devices. The Authentication mechanism has no brute-fo… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2019-16670 2024-11-21 13:30 2019-12-7 Show GitHub Exploit DB Packet Storm
222660 4.3 MEDIUM
Network 		pega pega_platform PEGA Platform 8.3.0 is vulnerable to Information disclosure via a direct prweb/sso/random_token/!STANDARD?pyStream=MyAlerts request to get Audit Log information while using a low-privilege account. N… CWE-425
 Direct Request ('Forced Browsing') 		CVE-2019-16388 2024-11-21 13:30 2019-11-27 Show GitHub Exploit DB Packet Storm