Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227151	7.5	危険	yourplace	-	YourPlace における脆弱性	CWE-287 不適切な認証	CVE-2008-6445	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227152	7.5	危険	phpkf	-	phpKF の forum_duzen.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6443	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227153	5.8	警告	sina	-	Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性	CWE-Other その他	CVE-2008-6442	2012-12-20 19:10	2009-03-9	Show	GitHub Exploit DB Packet Storm

227154	4.3	警告	phpsqlitecms	-	phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6435	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227155	7.5	危険	psychostats	-	PsychoStats における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6422	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227156	7.5	危険	socialsitegenerator	-	Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6421	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227157	5	警告	socialsitegenerator	-	Social Site Generator における任意のファイルを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-6420	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227158	7.5	危険	socialsitegenerator	-	Social Site Generator における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6419	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227159	7.5	危険	torrenttrader	-	TorrentTrader の scrape.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6418	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

227160	10	危険	Youngzsoft	-	YoungZSoft CCProxy におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-6415	2012-12-20 19:10	2009-03-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224171	9.1	CRITICAL Network	prise	adas	An issue was discovered in PRiSE adAS 1.7.0. The path is not properly escaped in the medatadata_del method, leading to an arbitrary file read and deletion via Directory Traversal.	CWE-22 Path Traversal	CVE-2019-14914	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224172	5.4	MEDIUM Network	prise	adas	An issue was discovered in PRiSE adAS 1.7.0. Log data are not properly escaped, leading to persistent XSS in the administration panel.	CWE-79 Cross-site Scripting	CVE-2019-14913	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224173	6.1	MEDIUM Network	prise	adas	An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly check the goto parameter, leading to an open redirect that leaks the session cookie.	CWE-601 Open Redirect	CVE-2019-14912	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224174	6.1	MEDIUM Network	prise	adas	An issue was discovered in PRiSE adAS 1.7.0. The OPENSSO module does not properly escape output on error, leading to reflected XSS.	CWE-79 Cross-site Scripting	CVE-2019-14911	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224175	8.8	HIGH Local	linux redhat canonical opensuse fedoraproject debian netapp oracle	linux_kernel enterprise_linux_desktop enterprise_linux_workstation enterprise_linux_server enterprise_linux_for_real_time enterprise_linux_eus enterprise_linux_server_tus enterpr…	An out-of-bounds access issue was found in the Linux kernel, all versions through 5.3, in the way Linux kernel's KVM hypervisor implements the Coalesced MMIO write operation. It operates on an MMIO r…	-	CVE-2019-14821	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224176	7.7	HIGH Network	pydio	pydio	Pydio 6.0.8 allows Authenticated SSRF during a Remote Link Feature download. An attacker can specify an intranet address in the file parameter to index.php, when sending a file to a remote server, as…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-15033	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224177	5.3	MEDIUM Network	pydio	pydio	Pydio 6.0.8 mishandles error reporting when a directory allows unauthenticated uploads, and the remote-upload option is used with the http://localhost:22 URL. The attacker can obtain sensitive inform…	CWE-209 Information Exposure Through an Error Message	CVE-2019-15032	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224178	7.2	HIGH Network	atlassian	jira_server jira_data_center	The Jira Importers Plugin in Atlassian Jira Server and Data Cente from version with 7.0.10 before 7.6.16, from 7.7.0 before 7.13.8, from 8.0.0 before 8.1.3, from 8.2.0 before 8.2.5, from 8.3.0 before…	CWE-94 Code Injection	CVE-2019-15001	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224179	9.8	CRITICAL Network	atlassian	bitbucket	The commit diff rest endpoint in Bitbucket Server and Data Center before 5.16.10 (the fixed version for 5.16.x ), from 6.0.0 before 6.0.10 (the fixed version for 6.0.x), from 6.1.0 before 6.1.8 (the …	CWE-78 OS Command	CVE-2019-15000	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

224180	7.5	HIGH Network	atlassian	jira_service_desk	The Customer Context Filter in Atlassian Jira Service Desk Server and Jira Service Desk Data Center before version 3.9.16, from version 3.10.0 before version 3.16.8, from version 4.0.0 before version…	CWE-22 Path Traversal	CVE-2019-14994	2024-11-21 13:27	2019-09-20	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed