Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228331 10 危険 phpCollab - phpCollab の general/login.php における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-4304 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228332 6.8 警告 phpCollab - phpCollab における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4303 2012-12-20 18:52 2008-12-23 Show GitHub Exploit DB Packet Storm
228333 6.5 警告 rianxosencabos cms - Rianxosencabos CMS の Admin Control Panel におけるユーザの権限を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4245 2012-12-20 18:52 2008-09-25 Show GitHub Exploit DB Packet Storm
228334 7.5 危険 webcms - webCMS Portal Edition の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4185 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228335 4.3 警告 webcms - webCMS Portal Edition の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4184 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228336 7.5 危険 PreProject.com - Pre Real Estate Listings の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4177 2012-12-20 18:52 2008-09-23 Show GitHub Exploit DB Packet Storm
228337 7.5 危険 proarcadescript - ProArcadeScript における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4173 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228338 7.5 危険 rfaah - Cars & Vehicle の page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4172 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228339 4.3 警告 pro2col - Pro2col Stingray FTS の verify_login.jsp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4168 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228340 7.5 危険 zanfi solutions - Zanfi CMS lite および Jaw Portal の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4159 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224841 3.3 LOW
Local 		doogee bl5000_firmware The Doogee BL5000 Android device with a build fingerprint of DOOGEE/BL5000/BL5000:7.0/NRD90M/1497072355:user/release-keys contains a pre-installed app with a package name of com.mediatek.factorymode … CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15424 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224842 5.5 MEDIUM
Local 		mi cepheus_firmware The Xiaomi Cepheus Android device with a build fingerprint of Xiaomi/cepheus/cepheus:9/PKQ1.181121.001/V10.2.6.0.PFAMIXM:user/release-keys contains a pre-installed app with a package name of com.qual… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15474 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224843 3.3 LOW
Local 		bluboo_s1_project blueboo_s1_firmware The Bluboo Bluboo_S1 Android device with a build fingerprint of BLUBOO/Bluboo_S1/Bluboo_S1:7.0/NRD90M/1495809471:user/release-keys contains a pre-installed app with a package name of com.mediatek.fac… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15423 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224844 3.3 LOW
Local 		doogee mix_firmware The Doogee Mix Android device with a build fingerprint of DOOGEE/MIX/MIX:7.0/NRD90M/1495809471:user/release-keys contains a pre-installed app with a package name of com.mediatek.factorymode app (vers… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15422 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224845 3.3 LOW
Local 		blackview bv7000_pro_firmware The Blackview BV7000_Pro Android device with a build fingerprint of Blackview/BV7000_Pro/BV7000_Pro:7.0/NRD90M/1493011204:user/release-keys contains a pre-installed app with a package name of com.med… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15421 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224846 5.5 MEDIUM
Local 		mi a2_lite_firmware The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/jasmine/jasmine_sprout:9/PKQ1.180904.001/V10.0.2.0.PDIMIFJ:user/release-keys contains a pre-installed app with a package name o… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15473 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224847 5.5 MEDIUM
Local 		mi a2_lite_firmware The Xiaomi Mi A2 Lite Android device with a build fingerprint of xiaomi/daisy/daisy_sprout:9/PKQ1.180917.001/V10.0.3.0.PDLMIXM:user/release-keys contains a pre-installed app with a package name of co… CWE-610
Externally Controlled Reference to a Resource in Another Sphere 		CVE-2019-15472 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224848 5.5 MEDIUM
Local 		mi mix_2s_firmware The Xiaomi Mi Mix 2S Android device with a build fingerprint of Xiaomi/polaris/polaris:8.0.0/OPR1.170623.032/V9.5.19.0.ODGMIFA:user/release-keys contains a pre-installed app with a package name of co… NVD-CWE-noinfo
CVE-2019-15471 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224849 5.5 MEDIUM
Local 		mi redmi_note_6_pro_firmware The Xiaomi Redmi Note 6 Pro Android device with a build fingerprint of xiaomi/tulip/tulip:8.1.0/OPM1.171019.011/V10.2.2.0.OEKMIXM:user/release-keys contains a pre-installed app with a package name of… NVD-CWE-noinfo
CVE-2019-15470 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm
224850 5.5 MEDIUM
Local 		mi pad_4_firmware The Xiaomi Mi Pad 4 Android device with a build fingerprint of Xiaomi/clover/clover:8.1.0/OPM1.171019.019/V9.6.26.0.ODJCNFD:user/release-keys contains a pre-installed app with a package name of com.q… NVD-CWE-noinfo
CVE-2019-15469 2024-11-21 13:28 2019-11-15 Show GitHub Exploit DB Packet Storm