Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229201 7.5 危険 xigla - Xigla Software Absolute Newsletter における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6861 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229202 7.5 危険 xigla - Xigla Software Absolute Poll Manager XE における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6860 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229203 7.5 危険 xigla - Xigla Software Absolute Control Panel XE における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6859 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229204 7.5 危険 xigla - Absolute Banner Manager .NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6858 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229205 7.5 危険 xigla - Absolute Podcast .NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6857 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229206 7.5 危険 xigla - Xigla Software Absolute News Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6856 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229207 7.5 危険 xigla - Xigla Software Absolute News Feed における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6855 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229208 7.5 危険 xigla - Xigla Software Absolute FAQ Manager.NET における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6854 2012-12-20 19:10 2009-07-14 Show GitHub Exploit DB Packet Storm
229209 4.3 警告 PHP-Fusion - PHP-Fusion の messages.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6850 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
229210 6.8 警告 w2b - phpGreetCards の index.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6849 2012-12-20 19:10 2009-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221441 8.8 HIGH
Local 		vmware workstation VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) running on Windows does not handle paths appropriately. Successful exploitation of this issue may allow the path to the VMX executable, on … NVD-CWE-noinfo
CVE-2019-5511 2024-11-21 13:45 2019-04-10 Show GitHub Exploit DB Packet Storm
221442 6.1 MEDIUM
Network 		wpape ape_gallery The wpape APE GALLERY plugin 1.6.14 for WordPress has stored XSS via the classGallery.php getCategories function. CWE-79
Cross-site Scripting 		CVE-2019-6117 2024-11-21 13:45 2019-04-10 Show GitHub Exploit DB Packet Storm
221443 6.5 MEDIUM
Network 		rapid7 insightvm Users with Site-level permissions can access files containing the username-encrypted passwords of Security Console Global Administrators and clear-text passwords for restoring backups, as well as the… CWE-522
 Insufficiently Protected Credentials 		CVE-2019-5615 2024-11-21 13:45 2019-04-10 Show GitHub Exploit DB Packet Storm
221444 8.8 HIGH
Network 		vmware fusion
workstation 		VMware Workstation (14.x before 14.1.6) and Fusion (10.x before 10.1.6) contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code… CWE-787
 Out-of-bounds Write 		CVE-2019-5524 2024-11-21 13:45 2019-04-3 Show GitHub Exploit DB Packet Storm
221445 8.8 HIGH
Network 		vmware fusion
workstation 		VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-bounds write vulnerability in the e1000 and e1000e virtual ne… CWE-787
 Out-of-bounds Write 		CVE-2019-5515 2024-11-21 13:45 2019-04-3 Show GitHub Exploit DB Packet Storm
221446 6.8 MEDIUM
Physics 		vmware fusion
workstation
esxi 		VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, 10.x before 1… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-5519 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
221447 8.8 HIGH
Network 		vmware fusion VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the hos… CWE-306
Missing Authentication for Critical Function 		CVE-2019-5514 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
221448 6.8 MEDIUM
Physics 		vmware fusion
workstation
esxi 		VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, 10.x before 1… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2019-5518 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
221449 9.8 CRITICAL
Network 		vmware vcloud_director VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3 update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue may… CWE-384
 Session Fixation 		CVE-2019-5523 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
221450 9.8 CRITICAL
Network 		overit geocall An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application. NVD-CWE-noinfo
CVE-2019-5891 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm