Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227321 8.5 危険 WordPress.org - WordPress MU および WordPress の wp-admin/options.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5695 2012-12-20 19:10 2008-12-19 Show GitHub Exploit DB Packet Storm
227322 10 危険 sandbox - Sandbox の lib/jpgraph/jpgraph_errhandler.inc.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5694 2012-12-20 19:10 2008-12-19 Show GitHub Exploit DB Packet Storm
227323 6.5 警告 phparanoid - PHParanoid における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5673 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227324 6.8 警告 phparanoid - PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5672 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227325 6.8 警告 Textpattern - Textpattern におけるセッションのハイジャック後パスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-5670 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227326 5 警告 Textpattern - Textpattern のコメントプレビューセクションにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5669 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227327 4.3 警告 Textpattern - Textpattern におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5668 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227328 5 警告 VirusBlokAda Ltd. - VirusBlokAda VBA32 Personal Antivirus のスキャンエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5667 2012-12-20 19:10 2008-12-18 Show GitHub Exploit DB Packet Storm
227329 3.5 注意 WING FTP software - WinFTP FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5666 2012-12-20 18:52 2008-12-18 Show GitHub Exploit DB Packet Storm
227330 7.5 危険 XOOPS - XOOPS の xhresim モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5665 2012-12-20 18:52 2008-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224161 7.5 HIGH
Network 		mit
fedoraproject 		kerberos_5
fedora 		A flaw was found in, Fedora versions of krb5 from 1.16.1 to, including 1.17.x, in the way a Kerberos client could crash the KDC by sending one of the RFC 4556 "enctypes". A remote unauthenticated use… - CVE-2019-14844 2024-11-21 13:27 2019-09-26 Show GitHub Exploit DB Packet Storm
224162 8.8 HIGH
Network 		glpi-project glpi GLPI through 9.4.3 is prone to account takeover by abusing the ajax/autocompletion.php autocompletion feature. The lack of correct validation leads to recovery of the token generated via the password… CWE-200
Information Exposure 		CVE-2019-14666 2024-11-21 13:27 2019-09-26 Show GitHub Exploit DB Packet Storm
224163 9.8 CRITICAL
Network 		gigastone smart_battery_a4_firmware An unsafe authentication interface was discovered in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 . An attacker can bypass authentication without modifying device… NVD-CWE-noinfo
CVE-2019-15069 2024-11-21 13:27 2019-09-26 Show GitHub Exploit DB Packet Storm
224164 9.8 CRITICAL
Network 		gigastone smart_battery_a4_firmware A broken access control vulnerability in Smart Battery A4, a multifunctional portable charger, firmware version ?<= r1.7.9 allows an attacker to get/reset administrator’s password without any authent… CWE-306
Missing Authentication for Critical Function 		CVE-2019-15068 2024-11-21 13:27 2019-09-26 Show GitHub Exploit DB Packet Storm
224165 9.8 CRITICAL
Network 		gigastone smart_battery_a2-25de_firmware An authentication bypass vulnerability discovered in Smart Battery A2-25DE, a multifunctional portable charger, firmware version ?<= SECFS-2013-10-16-13:42:58-629c30ee-60c68be6. An attacker can bypas… NVD-CWE-noinfo
CVE-2019-15067 2024-11-21 13:27 2019-09-26 Show GitHub Exploit DB Packet Storm
224166 7.5 HIGH
Network 		sick fx0-gpnt00000_firmware
fx0-gent00000_firmware 		SICK FX0-GPNT00000 and FX0-GENT00000 devices through 3.4.0 have a Buffer Overflow CWE-120
Classic Buffer Overflow 		CVE-2019-14753 2024-11-21 13:27 2019-09-25 Show GitHub Exploit DB Packet Storm
224167 7.8 HIGH
Local 		linux
redhat
debian
fedoraproject
netapp
canonical
opensuse 		linux_kernel
enterprise_linux_server_aus
enterprise_linux
enterprise_linux_for_real_time
enterprise_linux_for_real_time_for_nfv
enterprise_linux_server_tus
virtualization
enterpr… 		There is heap-based buffer overflow in kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system crash) o… - CVE-2019-14816 2024-11-21 13:27 2019-09-21 Show GitHub Exploit DB Packet Storm
224168 7.8 HIGH
Local 		linux
redhat
debian
canonical
opensuse
netapp 		linux_kernel
enterprise_linux
messaging_realtime_grid
enterprise_linux_eus
enterprise_linux_for_real_time_for_nfv
enterprise_linux_server_aus
enterprise_linux_for_real_time_tus
e… 		There is heap-based buffer overflow in Linux kernel, all versions up to, excluding 5.3, in the marvell wifi chip driver in Linux kernel, that allows local users to cause a denial of service(system cr… - CVE-2019-14814 2024-11-21 13:27 2019-09-21 Show GitHub Exploit DB Packet Storm
224169 6.5 MEDIUM
Network 		prise adas An issue was discovered in PRiSE adAS 1.7.0. A file's format is not properly checked, leading to an unrestricted file upload. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-14916 2024-11-21 13:27 2019-09-20 Show GitHub Exploit DB Packet Storm
224170 6.1 MEDIUM
Network 		prise adas An issue was discovered in PRiSE adAS 1.7.0. Certificate data are not properly escaped. This leads to XSS when submitting a rogue certificate. CWE-79
Cross-site Scripting 		CVE-2019-14915 2024-11-21 13:27 2019-09-20 Show GitHub Exploit DB Packet Storm