Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227431	7.5	危険	サン・マイクロシステムズ	-	Sun Sun Ray Server Software における Sun Ray 管理者パスワードを特定される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5422	2012-12-20 18:52	2008-12-4	Show	GitHub Exploit DB Packet Storm

227432	9.3	危険	The Tor Project	-	Tor における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5398	2012-12-20 18:52	2008-12-8	Show	GitHub Exploit DB Packet Storm

227433	7.2	危険	The Tor Project	-	Tor における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5397	2012-12-20 18:52	2008-12-8	Show	GitHub Exploit DB Packet Storm

227434	10	危険	privacy-cd	-	UPR-Kernel の UPR における分離メカニズムを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5393	2012-12-20 18:52	2008-12-8	Show	GitHub Exploit DB Packet Storm

227435	6.9	警告	PvPGN	-	pvpgn の pvpgn-support-installer における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-5370	2012-12-20 18:52	2008-08-11	Show	GitHub Exploit DB Packet Storm

227436	6.8	警告	PHP-Fusion	-	PHP-Fusion の messages.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5335	2012-12-20 18:52	2008-12-4	Show	GitHub Exploit DB Packet Storm

227437	10	危険	pie	-	Pie における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-5332	2012-12-20 18:52	2008-12-4	Show	GitHub Exploit DB Packet Storm

227438	7.5	危険	xoops hocasi	-	XOOPS 用の GesGaleri モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5321	2012-12-20 18:52	2008-12-3	Show	GitHub Exploit DB Packet Storm

227439	5	警告	Tiki Software Community Association	-	Tikiwiki における脆弱性	CWE-noinfo 情報不足	CVE-2008-5319	2012-12-20 18:52	2008-10-17	Show	GitHub Exploit DB Packet Storm

227440	5	警告	Tiki Software Community Association	-	Tikiwiki における脆弱性	CWE-noinfo 情報不足	CVE-2008-5318	2012-12-20 18:52	2008-10-17	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224191	7.5	HIGH Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to edit an e-mail forwarding destination of a victim's account via an attacker account.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2019-14724	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224192	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a domain from a victim's account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14730	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224193	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a sub-domain from a victim's account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14729	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224194	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to add an e-mail forwarding destination to a victim's account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14728	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224195	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14727	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224196	5.4	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to access and delete DNS records of a victim's account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14726	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224197	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a victim's e-mail account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14723	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224198	4.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete an e-mail forwarding destination from a victim's account via an attacker account.	NVD-CWE-noinfo	CVE-2019-14722	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224199	6.5	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to remove a target user from phpMyAdmin via an attacker account.	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2019-14721	2024-11-21 13:27	2019-09-11	Show	GitHub Exploit DB Packet Storm

224200	9.8	CRITICAL Network	artifex redhat fedoraproject opensuse debian	ghostscript enterprise_linux_desktop enterprise_linux_workstation enterprise_linux enterprise_linux_server openshift_container_platform enterprise_linux_server_eus enterprise_lin…	A flaw was found in ghostscript, versions 9.x before 9.50, in the setsystemparams procedure where it did not properly secure its privileged calls, enabling scripts to bypass `-dSAFER` restrictions. A…	CWE-863 Incorrect Authorization	CVE-2019-14813	2024-11-21 13:27	2019-09-6	Show	GitHub Exploit DB Packet Storm