Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228861	7.5	危険	PreProject.com	-	Pre ASP Job Board の Employee/login.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6329	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228862	7.5	危険	simplecustomer	-	Simple Customer の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6326	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228863	4.3	警告	SoftbizScripts	-	Softbiz Classifieds Script におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6325	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228864	7.5	危険	phpmygallery	-	PHPmyGallery の _conf/_php-core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6318	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228865	6.8	警告	phpmygallery	-	PHPmyGallery の _conf/_php-core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6317	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228866	6.8	警告	phpmygallery	-	PHPmyGallery の _conf/core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6316	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228867	7.5	危険	phpmygallery	-	PHPmyGallery の _conf/core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-6315	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228868	7.5	危険	phpBB	-	phpBB 用の Tag Board モジュールの tag_board.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6314	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

228869	7.5	危険	w3matter	-	W3matter RevSense の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6310	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

228870	7.5	危険	w3matter	-	W3matter AskPert の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6309	2012-12-20 19:10	2009-02-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
225081	5.5	MEDIUM Local	snowtide	pdfxstream	In Snowtide PDFxStream before 3.7.1 (for Java), a crafted PDF file can trigger an extremely long running computation because of page-tree mishandling.	NVD-CWE-noinfo	CVE-2019-17063	2024-11-21 13:31	2019-10-2	Show	GitHub Exploit DB Packet Storm

225082	3.3	LOW Local	linux	linux_kernel	llcp_sock_create in net/nfc/llcp_sock.c in the AF_NFC network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka C…	CWE-276 Incorrect Default Permissions	CVE-2019-17056	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225083	3.3	LOW Local	linux debian fedoraproject canonical opensuse redhat	linux_kernel debian_linux fedora ubuntu_linux leap enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation	base_sock_create in drivers/isdn/mISDN/socket.c in the AF_ISDN network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw sock…	CWE-862 Missing Authorization	CVE-2019-17055	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225084	3.3	LOW Local	linux	linux_kernel	atalk_create in net/appletalk/ddp.c in the AF_APPLETALK network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka…	CWE-276 Incorrect Default Permissions	CVE-2019-17054	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225085	3.3	LOW Local	linux	linux_kernel	ieee802154_create in net/ieee802154/socket.c in the AF_IEEE802154 network module in the Linux kernel through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw s…	CWE-276 Incorrect Default Permissions	CVE-2019-17053	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225086	3.3	LOW Local	linux debian fedoraproject canonical	linux_kernel debian_linux fedora ubuntu_linux	ax25_create in net/ax25/af_ax25.c in the AF_AX25 network module in the Linux kernel 3.16 through 5.3.2 does not enforce CAP_NET_RAW, which means that unprivileged users can create a raw socket, aka C…	CWE-276 Incorrect Default Permissions	CVE-2019-17052	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225087	7.5	HIGH Network	rust-lang	rust	Cargo prior to Rust 1.26.0 may download the wrong dependency if your package.toml file uses the `package` configuration key. Usage of the `package` key to rename dependencies in `Cargo.toml` is ignor…	CWE-494 Download of Code Without Integrity Check	CVE-2019-16760	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225088	7.8	HIGH Local	evernote	evernote	Evernote before 7.13 GA on macOS allows code execution because the com.apple.quarantine attribute is not used for attachment files, as demonstrated by a one-click attack involving a drag-and-drop ope…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-17051	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225089	7.2	HIGH Network	thecontrolgroup	voyager	An issue was discovered in the Voyager package through 1.2.7 for Laravel. An attacker with admin privileges and Compass access can read or delete arbitrary files, such as the .env file. NOTE: a softw…	CWE-639 Authorization Bypass Through User-Controlled Key	CVE-2019-17050	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm

225090	7.5	HIGH Network	netgear	srx5308_firmware	NETGEAR SRX5308 4.3.5-3 devices allow SQL Injection, as exploited in the wild in September 2019 to add a new user account.	CWE-89 SQL Injection	CVE-2019-17049	2024-11-21 13:31	2019-10-1	Show	GitHub Exploit DB Packet Storm