Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228781	9.3	危険	ZyXEL	-	ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-6730	2012-12-20 18:34	2009-09-10	Show	GitHub Exploit DB Packet Storm

228782	4.3	警告	ZyXEL	-	ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6729	2012-12-20 18:34	2009-09-10	Show	GitHub Exploit DB Packet Storm

228783	6.8	警告	webportal	-	WebPortal CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0142	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228784	7.5	危険	webportal	-	WebPortal CMS の actions.php における任意のアカウントへのアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-0141	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228785	6.4	警告	uebimiau	-	Uebimiau Webmail の error.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0140	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228786	7.5	危険	snetworks	-	SNETWORKS PHP CLASSIFIEDS の config.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0137	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228787	5	警告	snitz forums 2000	-	Snitz Forums 2000 における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0136	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228788	5	警告	snitz forums 2000	-	Snitz Forums 2000 におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0135	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228789	4.3	警告	snitz forums 2000	-	Snitz Forums 2000 の Forums/setup.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0134	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228790	7.5	危険	thomas perez	-	Tribisur における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0133	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221931	6.5	MEDIUM Network	fronius	datamanager_box_2.0_firmware eco_25.0-3-s_firmware eco_27.0-3-s_firmware galvo_1.5-1_firmware galvo_1.5-1_208-240_firmware galvo_2.0-1_firmware galvo_2.0-1_208-240_firmware galvo…	admincgi-bin/service.fcgi on Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal.	CWE-22 Path Traversal	CVE-2019-19229	2024-11-21 13:34	2019-12-5	Show	GitHub Exploit DB Packet Storm

221932	9.8	CRITICAL Network	verot_project getk2	verot k2	class.upload.php in verot.net class.upload before 1.0.3 and 2.x before 2.0.4, as used in the K2 extension for Joomla! and other products, omits .phar from the set of dangerous file extensions.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-19576	2024-11-21 13:34	2019-12-5	Show	GitHub Exploit DB Packet Storm

221933	9.8	CRITICAL Network	fronius	datamanager_box_2.0_firmware eco_25.0-3-s_firmware eco_27.0-3-s_firmware galvo_1.5-1_firmware galvo_1.5-1_208-240_firmware galvo_2.0-1_firmware galvo_2.0-1_208-240_firmware galvo…	Fronius Solar Inverter devices before 3.14.1 (HM 1.12.1) allow attackers to bypass authentication because the password for the today account is stored in the /tmp/web_users.conf file.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2019-19228	2024-11-21 13:34	2019-12-5	Show	GitHub Exploit DB Packet Storm

221934	5.5	MEDIUM Local	xfig_project	xfig	read_textobject in read.c in Xfig fig2dev 3.2.7b has a stack-based buffer overflow because of an incorrect sscanf.	CWE-787 Out-of-bounds Write	CVE-2019-19555	2024-11-21 13:34	2019-12-5	Show	GitHub Exploit DB Packet Storm

221935	7.8	HIGH Local	linux	linux_kernel	In the Linux kernel before 5.1.6, there is a use-after-free in serial_ir_init_module() in drivers/media/rc/serial_ir.c.	CWE-416 Use After Free	CVE-2019-19543	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

221936	9.8	CRITICAL Network	saltosystem	proaccess_space	An issue was discovered in SALTO ProAccess SPACE 5.4.3.0. An attacker can write arbitrary content to arbitrary files, as demonstrated by CVE-2019-19458 files under the web root, or .bat files that wi…	CWE-22 Path Traversal	CVE-2019-19459	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

221937	8.6	HIGH Network	saltosystem	proaccess_space	SALTO ProAccess SPACE 5.4.3.0 allows Directory Traversal in the Data Export feature.	CWE-22 Path Traversal	CVE-2019-19458	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

221938	5.4	MEDIUM Network	saltosystem	proaccess_space	SALTO ProAccess SPACE 5.4.3.0 allows XSS.	CWE-79 Cross-site Scripting	CVE-2019-19457	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

221939	8.8	HIGH Network	freeftpd	freeftpd	freeFTPd 1.0.8 has a Post-Authentication Buffer Overflow via a crafted SIZE command (this is exploitable even if logging is disabled).	CWE-120 Classic Buffer Overflow	CVE-2019-19383	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm

221940	7.8	HIGH Local	maxpcsecure	anti_virus_plus	Max Secure Anti Virus Plus 19.0.4.020 has Insecure Permissions on the installation directory. Local attackers can replace a .exe or .dll file to achieve privilege escalation.	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-19382	2024-11-21 13:34	2019-12-4	Show	GitHub Exploit DB Packet Storm