Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228751	7.5	危険	salims softhouse	-	ph03y3nk JAF CMS の module/shout/jafshout.php における "" で囲まれたセクション内の任意のコードを実行される脆弱性	-	CVE-2006-5131	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228752	6.8	警告	salims softhouse	-	ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5130	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228753	6.8	警告	salims softhouse	-	ph03y3nk JAF CMS におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5129	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228754	7.5	危険	powerportal	-	John Himmelman PowerPortal の index.php における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5126	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228755	7.5	危険	phprojekt	-	Albrecht Guenther PHProjekt における PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5123	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228756	7.5	危険	postnuke software foundation	-	PostNuke の Admin セクションにおける SQL インジェクションの脆弱性	-	CVE-2006-5121	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228757	4	警告	scott metoyer	-	Scott Metoyer Red Mombin におけるクロスサイトスクリプティングの脆弱性	-	CVE-2006-5120	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228758	4	警告	Zen Cart	-	Zen Cart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2006-5119	2012-12-20 18:02	2006-09-28	Show	GitHub Exploit DB Packet Storm

228759	7.5	危険	phpselect	-	PHPSelect Web Development Division 用の PDD パッケージにおける PHP リモートファイルインクルージョンの脆弱性	-	CVE-2006-5118	2012-12-20 18:02	2006-10-3	Show	GitHub Exploit DB Packet Storm

228760	5	警告	The phpMyAdmin Project	-	phpMyAdmin における重要な情報を取得される脆弱性	-	CVE-2006-5117	2012-12-20 18:02	2006-10-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:April 28, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211341	5.3	MEDIUM Network	pilz	pmc	In Pilz PMC programming tool 3.x before 3.5.17 (based on CODESYS Development System), an attacker can identify valid usernames.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-9011	2024-11-21 13:50	2022-12-27	Show	GitHub Exploit DB Packet Storm

211342	9.8	CRITICAL Network	apple	iphone_os mac_os_x watchos tvos	This issue was addressed with improved entitlements. This issue is fixed in watchOS 6, tvOS 13, macOS Catalina 10.15, iOS 13. An application may be able to gain elevated privileges.	NVD-CWE-noinfo	CVE-2019-8703	2024-11-21 13:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

211343	5.5	MEDIUM Local	apple	mac_os_x tvos iphone_os	This issue was addressed with a new entitlement. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra, iOS 12.4, tvOS 12.4. A local user …	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2019-8702	2024-11-21 13:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

211344	9.8	CRITICAL Network	apple	mac_os_x	CVE-2019-8643: Arun Sharma of VMWare This issue is fixed in macOS Mojave 10.14. Description: A logic issue was addressed with improved state management..	NVD-CWE-noinfo	CVE-2019-8643	2024-11-21 13:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

211345	8.8	HIGH Adjacent	bluez debian	bluez debian_linux	A heap-based buffer overflow was discovered in bluetoothd in BlueZ through 5.48. There isn't any check on whether there is enough space in the destination buffer. The function simply appends all data…	CWE-787 Out-of-bounds Write	CVE-2019-8922	2024-11-21 13:50	2021-11-29	Show	GitHub Exploit DB Packet Storm

211346	6.5	MEDIUM Adjacent	bluez debian	bluez debian_linux	An issue was discovered in bluetoothd in BlueZ through 5.48. The vulnerability lies in the handling of a SVC_ATTR_REQ by the SDP implementation. By crafting a malicious CSTATE, it is possible to tric…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2019-8921	2024-11-21 13:50	2021-11-29	Show	GitHub Exploit DB Packet Storm

211347	7.5	HIGH Network	cmsmadesimple	cms_made_simple	An issue was discovered in CMS Made Simple 2.2.8. It is possible to achieve unauthenticated path traversal in the CGExtensions module (in the file action.setdefaulttemplate.php) with the m1_filename …	CWE-22 Path Traversal	CVE-2019-9060	2024-11-21 13:50	2021-09-18	Show	GitHub Exploit DB Packet Storm

211348	6.5	MEDIUM Network	apple	ipados iphone_os	This issue was addressed by verifying host keys when connecting to a previously-known SSH server. This issue is fixed in iOS 13.1 and iPadOS 13.1. An attacker in a privileged network position may be …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2019-8901	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

211349	4.3	MEDIUM Network	apple	tvos iphone_os itunes safari ipados	An information disclosure issue existed in the handling of the Storage Access API. This issue was addressed with improved logic. This issue is fixed in iOS 13.3 and iPadOS 13.3, tvOS 13.3, Safari 13.…	NVD-CWE-noinfo	CVE-2019-8898	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm

211350	5.3	MEDIUM Network	apple	mac_os_x	A logic issue was addressed with improved state management. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006. A user who shares their screen may n…	NVD-CWE-noinfo	CVE-2019-8858	2024-11-21 13:50	2020-10-28	Show	GitHub Exploit DB Packet Storm