Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227171 7.5 危険 PreProject.com - Pre Shopping Mall における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-6232 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227172 7.5 危険 PreProject.com - Pre Classified Listing PHP における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-6231 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227173 7.5 危険 PreProject.com - Pre Projects Pre Podcast Portal の Tour.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6230 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227174 7.5 危険 PreProject.com - Pre Multi-Vendor Shopping Malls における管理アクセス権を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-6228 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227175 7.5 危険 PreProject.com - Pre Multi-Vendor Shopping Malls の buyer_detail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6227 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227176 6.8 警告 PreProject.com - Pre Projects PHP Auto Listings Script の moreinfo.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6226 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227177 7.5 危険 samelinux - WOTW の visualizza.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6224 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227178 7.5 危険 wotw - WOTW の visualizza.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6223 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227179 7.5 危険 Cafuego - SDMS の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6220 2012-12-20 19:10 2009-02-20 Show GitHub Exploit DB Packet Storm
227180 4.3 警告 php-stats - Php-Stats の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6212 2012-12-20 19:10 2009-02-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224111 6.1 MEDIUM
Network 		diaowen dwsurvey DWSurvey through 2019-07-22 has stored XSS via the design/my-survey-design!copySurvey.action surveyName parameter. CWE-79
Cross-site Scripting 		CVE-2019-14747 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224112 9.8 CRITICAL
Network 		kuaifan kuaifancms A issue was discovered in KuaiFanCMS 5.0. It allows eval injection by placing PHP code in the install.php db_name parameter and then making a config.php request. CWE-94
Code Injection 		CVE-2019-14746 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224113 7.8 HIGH
Local 		radare
fedoraproject 		radare2
fedora 		In radare2 before 3.7.0, a command injection vulnerability exists in bin_symbols() in libr/core/cbin.c. By using a crafted executable file, it's possible to execute arbitrary shell commands with the … CWE-77
Command Injection 		CVE-2019-14745 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224114 6.6 MEDIUM
Physics 		valvesoftware steam_client In Valve Steam Client for Windows through 2019-08-07, HKLM\SOFTWARE\Wow6432Node\Valve\Steam has explicit "Full control" for the Users group, which allows local users to gain NT AUTHORITY\SYSTEM acces… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-14743 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224115 8.8 HIGH
Network 		osticket osticket An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. CSV (aka Formula) injection exists in the export spreadsheets functionality. These spreadsheets are generated dynamically f… CWE-1236
 Improper Neutralization of Formula Elements in a CSV File 		CVE-2019-14749 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224116 5.4 MEDIUM
Network 		osticket osticket An issue was discovered in osTicket before 1.10.7 and 1.12.x before 1.12.1. The Ticket creation form allows users to upload files along with queries. It was found that the file-upload functionality h… CWE-79
CWE-434
Cross-site Scripting
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-14748 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224117 7.8 HIGH
Local 		kde
debian
fedoraproject
opensuse
canonical
redhat 		kconfig
debian_linux
fedora
backports_sle
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server 		In KDE Frameworks KConfig before 5.61.0, malicious desktop files and configuration files lead to code execution with minimal user interaction. This relates to libKF5ConfigCore.so, and the mishandling… CWE-78
OS Command  		CVE-2019-14744 2024-11-21 13:27 2019-08-8 Show GitHub Exploit DB Packet Storm
224118 8.8 HIGH
Network 		adplug_project
fedoraproject 		adplug
fedora 		AdPlug 2.3.1 has multiple heap-based buffer overflows in CmtkLoader::load() in mtk.cpp. CWE-787
 Out-of-bounds Write 		CVE-2019-14734 2024-11-21 13:27 2019-08-7 Show GitHub Exploit DB Packet Storm
224119 8.8 HIGH
Network 		adplug_project
fedoraproject 		adplug
fedora 		AdPlug 2.3.1 has multiple heap-based buffer overflows in CradLoader::load() in rad.cpp. CWE-787
 Out-of-bounds Write 		CVE-2019-14733 2024-11-21 13:27 2019-08-7 Show GitHub Exploit DB Packet Storm
224120 8.8 HIGH
Network 		adplug_project
fedoraproject 		adplug
fedora 		AdPlug 2.3.1 has multiple heap-based buffer overflows in Ca2mLoader::load() in a2m.cpp. CWE-787
 Out-of-bounds Write 		CVE-2019-14732 2024-11-21 13:27 2019-08-7 Show GitHub Exploit DB Packet Storm