Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227191 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227192 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227193 4.3 警告 portalapp - PortalApp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4612 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
227194 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227195 7.5 危険 steve dawson - PokerMax Poker League Tournament Script の configure.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4600 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227196 10 危険 slaytanic scripts - Slaytanic Scripts Content Plus における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4595 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
227197 10 危険 sportspanel - Sports Clubs Web Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4592 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
227198 4.3 警告 phpwebgallery - PhpWebGallery の admin/include/isadmin.inc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4591 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
227199 7.5 危険 stash - Stash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4590 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
227200 5 警告 Matthias Wandel - jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4575 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222831 7.8 HIGH
Local 		asus zenfone_4_max_firmware The Asus ZenFone Max 4 Android device with a build fingerprint of asus/WW_Phone/ASUS_X00HD_4:7.1.1/NMF26F/14.2016.1712.367-20171225:user/release-keys contains a pre-installed app with a package name … NVD-CWE-noinfo
CVE-2019-15404 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222832 7.8 HIGH
Local 		asus zenfone_3s_max_firmware The Asus ZenFone 3s Max Android device with a build fingerprint of asus/IN_X00G/ASUS_X00G_1:7.0/NRD90M/IN_X00G-14.02.1807.33-20180706:user/release-keys contains a pre-installed app with a package nam… NVD-CWE-noinfo
CVE-2019-15403 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222833 5.5 MEDIUM
Local 		symphony-mobile i95_lite_firmware The Symphony i95 Lite Android device with a build fingerprint of LAVA/iris88_lite/iris88_lite:8.1.0/O11019/1536323070:user/release-keys contains a pre-installed app with a package name of com.mediate… NVD-CWE-noinfo
CVE-2019-15373 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222834 5.5 MEDIUM
Local 		hisense infinity_f17_firmware The Hisense F17 Android device with a build fingerprint of Hisense/F17_4G/HS6739MT:8.1.0/O11019/Hisense_F17_4G_00_S01:user/release-keys contains a pre-installed app with a package name of com.mediate… NVD-CWE-noinfo
CVE-2019-15372 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222835 5.5 MEDIUM
Local 		symphony-mobile g100_firmware The Symphony G100 Android device with a build fingerprint of Symphony/G100/G100:8.1.0/O11019/1530618779:user/release-keys contains a pre-installed app with a package name of com.mediatek.wfo.impl app… NVD-CWE-noinfo
CVE-2019-15371 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222836 7.8 HIGH
Local 		asus zenfone_ar_firmware The Asus ASUS_A002_2 Android device with a build fingerprint of asus/WW_ASUS_A002_2/ASUS_A002_2:7.0/NRD90M/14.1610.1802.18-20180321:user/release-keys contains a pre-installed app with a package name … NVD-CWE-noinfo
CVE-2019-15402 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222837 7.8 HIGH
Local 		asus zenfone_ar_firmware The Asus ASUS_A002 Android device with a build fingerprint of asus/WW_ASUS_A002/ASUS_A002:7.0/NRD90M/14.1600.1805.51-20180626:user/release-keys contains a pre-installed app with a package name of com… NVD-CWE-noinfo
CVE-2019-15401 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222838 7.8 HIGH
Local 		asus zenfone_3_ultra_firmware The Asus ZenFone 3 Ultra Android device with a build fingerprint of asus/WW_Phone/ASUS_A001:7.0/NRD90M/14.1010.1804.75-20180612:user/release-keys contains a pre-installed app with a package name of c… NVD-CWE-noinfo
CVE-2019-15400 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222839 7.8 HIGH
Local 		asus zenfone_5q_firmware The Asus ZenFone 5Q Android device with a build fingerprint of asus/WW_Phone/ASUS_X017D_2:7.1.1/NGI77B/14.0400.1809.059-20181016:user/release-keys contains a pre-installed app with a package name of … NVD-CWE-noinfo
CVE-2019-15399 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
222840 7.8 HIGH
Local 		asus zenfone_4_selfie_firmware The Asus ZenFone 4 Selfie Android device with a build fingerprint of asus/WW_Z01M/ASUS_Z01M_1:7.1.1/NMF26F/WW_user_11.40.208.77_20170922:user/release-keys contains a pre-installed app with a package … NVD-CWE-noinfo
CVE-2019-15398 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm