Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228591 6.8 警告 phpBB - phpBB におけるセッションをハイジャックされる脆弱性 CWE-200
情報漏えい 		CVE-2008-7143 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
228592 4.3 警告 redgalaxy - Chris LaPointe RedGalaxy Download Center のデフォルト URI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7134 2012-12-20 19:10 2009-09-1 Show GitHub Exploit DB Packet Storm
228593 5 警告 xyssl - XySSL におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7129 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228594 7.5 危険 xyssl - XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7128 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228595 7.5 危険 zkup - zKup CMS における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-7124 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228596 6.8 警告 zkup - zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7123 2012-12-20 19:10 2009-08-31 Show GitHub Exploit DB Packet Storm
228597 7.5 危険 WeBid Support - WeBid auction script の item.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7119 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228598 5 警告 WeBid Support - WeBid auction script における SQL クエリログを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7118 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228599 5 警告 WeBid Support - WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7117 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
228600 7.5 危険 WeBid Support - WeBid auction script の admin panel における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7116 2012-12-20 19:10 2009-08-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221111 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2506 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
221112 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2505 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
221113 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2504 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
221114 6.4 MEDIUM
Adjacent 		oracle
mariadb
netapp
canonical
redhat 		mysql
mariadb
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterp… 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and pri… NVD-CWE-noinfo
CVE-2019-2503 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
221115 4.9 MEDIUM
Network 		oracle
netapp 		mysql
oncommand_unified_manager
snapcenter
oncommand_workflow_automation
oncommand_insight 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged … NVD-CWE-noinfo
CVE-2019-2502 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
221116 - - - parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g., https://example.community/* is allowed when the intention is that only https:/… - CVE-2019-25211 2024-11-21 13:40 2024-06-29 Show GitHub Exploit DB Packet Storm
221117 - - - An issue was discovered in Cloud Native Computing Foundation (CNCF) Helm through 3.13.3. It displays values of secrets when the --dry-run flag is used. This is a security concern in some use cases, s… - CVE-2019-25210 2024-11-21 13:40 2024-03-4 Show GitHub Exploit DB Packet Storm
221118 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: i2c: Fix a potential use after free Free the adap structure only after we are done using it. This patch just moves the put_device… CWE-416
 Use After Free 		CVE-2019-25162 2024-11-21 13:40 2024-02-27 Show GitHub Exploit DB Packet Storm
221119 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in cipso_v4_map_lvl_valid(), t… CWE-125
Out-of-bounds Read 		CVE-2019-25160 2024-11-21 13:40 2024-02-27 Show GitHub Exploit DB Packet Storm
221120 9.8 CRITICAL
Network 		mpedraza2020 intranet_del_monterroso A vulnerability was found in mpedraza2020 Intranet del Monterroso up to 4.50.0. It has been classified as critical. This affects an unknown part of the file config/cargos.php. The manipulation of the… - CVE-2019-25159 2024-11-21 13:40 2024-02-4 Show GitHub Exploit DB Packet Storm