Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 16, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228341 6.8 警告 zanfi solutions - Zanfi CMS lite の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4158 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228342 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech phpVID の groups.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4157 2012-12-20 18:52 2008-09-22 Show GitHub Exploit DB Packet Storm
228343 7.5 危険 razorecommerce - RazorCommerce Shopping Cart の category_search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4143 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
228344 7.5 危険 x10media - x10Media x10 Automatic MP3 Script における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4141 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
228345 10 危険 technote - Technote の skin_shop/standard/3_plugin_twindow/twindow_notice.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4138 2012-12-20 18:52 2008-09-24 Show GitHub Exploit DB Packet Storm
228346 7.8 危険 s60 - Nokia E90 Communicator および Nseries N82 上で稼動している Symbian OS におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4135 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
228347 7.5 危険 phprealty - phpRealty の manager/static/view.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4134 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
228348 5 警告 phpBB - phpBB の search 関数における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4125 2012-12-20 18:52 2008-09-18 Show GitHub Exploit DB Packet Storm
228349 7.8 危険 サン・マイクロシステムズ - SunMC の PRM モジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4117 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
228350 5 警告 talkback - TalkBack における設定情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-4115 2012-12-20 18:52 2008-09-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221451 6.1 MEDIUM
Network 		cisco enterprise_chat_and_email Multiple vulnerabilities in the web-based management interface of Cisco Enterprise Chat and Email could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack agains… CWE-79
Cross-site Scripting 		CVE-2019-1702 2024-11-21 13:37 2019-03-12 Show GitHub Exploit DB Packet Storm
221452 6.5 MEDIUM
Adjacent 		cisco application_policy_infrastructure_controller A vulnerability in the management interface of Cisco Application Policy Infrastructure Controller (APIC) software could allow an unauthenticated, adjacent attacker to gain unauthorized access on an a… NVD-CWE-Other
CVE-2019-1690 2024-11-21 13:37 2019-03-12 Show GitHub Exploit DB Packet Storm
221453 8.8 HIGH
Network 		cisco webex_meetings
webex_meetings_online
webex_productivity_tools 		A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local attacker to execute arbitrary commands as … CWE-78
OS Command  		CVE-2019-1674 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221454 9.8 CRITICAL
Network 		cisco rv110w_firmware
rv130w_firmware
rv215w_firmware 		A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow… CWE-787
 Out-of-bounds Write 		CVE-2019-1663 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221455 7.8 HIGH
Local 		google
debian
canonical 		android
debian_linux
ubuntu_linux 		In binder_alloc_free_page of binder_alloc.c, there is a possible double free due to improper locking. This could lead to local escalation of privilege in the kernel with no additional execution privi… CWE-415
 Double Free 		CVE-2019-1999 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221456 5.5 MEDIUM
Local 		google android In event_handler of keymaster_app.c, there is possible resource exhaustion due to a table being lost on reboot. This could lead to local denial of service that is not fixed by a factory reset, with n… NVD-CWE-noinfo
CVE-2019-1998 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221457 7.5 HIGH
Network 		google android In random_get_bytes of random.c, there is a possible degradation of randomness due to an insecure default value. This could lead to local information disclosure via an insecure wireless connection wi… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-1997 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221458 6.5 MEDIUM
Adjacent 		google android In avrc_pars_browse_rsp of avrc_pars_ct.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to remote information disclosure over Bluetooth with no additional ex… CWE-125
Out-of-bounds Read 		CVE-2019-1996 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221459 5.5 MEDIUM
Local 		google android In ComposeActivityEmail of ComposeActivityEmail.java, there is a possible way to silently attach files to an email due to a confused deputy. This could lead to local information disclosure, sending f… NVD-CWE-noinfo
CVE-2019-1995 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm
221460 8.8 HIGH
Network 		google android In refresh of DevelopmentTiles.java, there is the possibility of leaving development settings accessible due to an insecure default value. This could lead to unwanted access to development settings, … CWE-1188
 Insecure Default Initialization of Resource 		CVE-2019-1994 2024-11-21 13:37 2019-03-1 Show GitHub Exploit DB Packet Storm