Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229131	7.5	危険	webdevindo-cms	-	Webdevindo-CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2875	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

229132	7.5	危険	SoftbizScripts	-	Softbiz Jokes & Funny Pics Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2874	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

229133	7.5	危険	sharecms	-	ShareCMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2870	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

229134	6.8	警告	webchamado	-	WebChamado の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2858	2012-12-20 18:52	2008-06-25	Show	GitHub Exploit DB Packet Storm

229135	7.5	危険	softdivision	-	Maxtrade AIO の Trade モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2847	2012-12-20 18:52	2008-06-25	Show	GitHub Exploit DB Packet Storm

229136	4.3	警告	traindepot	-	Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2839	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229137	5	警告	traindepot	-	Traindepot の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2838	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229138	7.5	危険	sidb	-	Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2834	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229139	10	危険	worldlevel	-	le.cms の admin/upload.php における管理者の認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2833	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229140	10	危険	tmsnc	-	tmsnc におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2828	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224751	6.5	MEDIUM Network	connectwise	control	An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. Certain HTTP security headers are not used.	NVD-CWE-Other	CVE-2019-16515	2024-11-21 13:30	2020-01-24	Show	GitHub Exploit DB Packet Storm

224752	7.2	HIGH Network	connectwise	control	An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. The server allows remote code execution. Administrative users could upload an unsigned extension ZIP …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-16514	2024-11-21 13:30	2020-01-24	Show	GitHub Exploit DB Packet Storm

224753	8.8	HIGH Network	connectwise	control	An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. CSRF can be used to send API requests.	CWE-352 Origin Validation Error	CVE-2019-16513	2024-11-21 13:30	2020-01-24	Show	GitHub Exploit DB Packet Storm

224754	4.8	MEDIUM Network	connectwise	control	An issue was discovered in ConnectWise Control (formerly known as ScreenConnect) 19.3.25270.7185. There is stored XSS in the Appearance modifier.	CWE-79 Cross-site Scripting	CVE-2019-16512	2024-11-21 13:30	2020-01-24	Show	GitHub Exploit DB Packet Storm

224755	9.8	CRITICAL Network	fortinet	fortisiem	A hard-coded password vulnerability in the Fortinet FortiSIEM database component version 5.2.5 and below may allow attackers to access the device database via the use of static credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2019-16153	2024-11-21 13:30	2020-01-24	Show	GitHub Exploit DB Packet Storm

224756	7.5	HIGH Network	adobe	experience_manager	Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an expression language injection vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-917 Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2019-16469	2024-11-21 13:30	2020-01-16	Show	GitHub Exploit DB Packet Storm

224757	7.5	HIGH Network	adobe	experience_manager	Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have an user interface injection vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-74 Injection	CVE-2019-16468	2024-11-21 13:30	2020-01-16	Show	GitHub Exploit DB Packet Storm

224758	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2019-16467	2024-11-21 13:30	2020-01-16	Show	GitHub Exploit DB Packet Storm

224759	6.1	MEDIUM Network	adobe	experience_manager	Adobe Experience Manager versions 6.5, 6.4, 6.3, 6.2, 6.1, and 6.0 have a reflected cross-site scripting vulnerability. Successful exploitation could lead to sensitive information disclosure.	CWE-79 Cross-site Scripting	CVE-2019-16466	2024-11-21 13:30	2020-01-16	Show	GitHub Exploit DB Packet Storm

224760	6.1	MEDIUM Network	fortinet	fortiauthenticator	An improper neutralization of input during web page generation in FortiAuthenticator WEB UI 6.0.0 may allow an unauthenticated user to perform a cross-site scripting attack (XSS) via a parameter of t…	CWE-79 Cross-site Scripting	CVE-2019-16154	2024-11-21 13:30	2020-01-8	Show	GitHub Exploit DB Packet Storm