Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229231 7.5 危険 PreProject.com - Pre Projects Pre Real Estate Listings の manager/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6796 2012-12-20 19:10 2009-05-7 Show GitHub Exploit DB Packet Storm
229232 7.5 危険 sfs ez pub - SFS EZ Pub Site の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6794 2012-12-20 19:10 2009-05-7 Show GitHub Exploit DB Packet Storm
229233 7.5 危険 scripts-for-sites - SFS EZ Adult Directory の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6784 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229234 7.5 危険 scripts-for-sites - SFS EZ Home Business Directory の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6783 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229235 7.5 危険 scripts-for-sites - SFS EZ Hosting Directory の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6782 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229236 7.5 危険 scripts-for-sites - SFS Gaming Directory の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6781 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229237 7.5 危険 scripts-for-sites - SFS SFS EZ Affiliate の directory.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6780 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229238 7.5 危険 PHPNUKE - PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6779 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229239 7.5 危険 scripts-for-sites - SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6778 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
229240 7.5 危険 scripts-for-sites - SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6776 2012-12-20 19:10 2009-05-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221461 7.5 HIGH
Network 		matrix
fedoraproject 		synapse
fedora 		Matrix Synapse before 0.34.0.1, when the macaroon_secret_key authentication parameter is not set, uses a predictable value to derive a secret key and other secrets which could allow remote attackers … CWE-330
 Use of Insufficiently Random Values 		CVE-2019-5885 2024-11-21 13:45 2019-03-22 Show GitHub Exploit DB Packet Storm
221462 8.1 HIGH
Network 		splunk software_development_kit Splunk-SDK-Python before 1.6.6 does not properly verify untrusted TLS server certificates, which could result in man-in-the-middle attacks. CWE-295
Improper Certificate Validation  		CVE-2019-5729 2024-11-21 13:45 2019-03-22 Show GitHub Exploit DB Packet Storm
221463 9.8 CRITICAL
Network 		portier portier An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Passwords are stored using reversible encryption rather than as a hash value, and the used Vigenere algorithm is badly outdated. Moreove… CWE-327
CWE-522
 Use of a Broken or Risky Cryptographic Algorithm
 Insufficiently Protected Credentials 		CVE-2019-5723 2024-11-21 13:45 2019-03-22 Show GitHub Exploit DB Packet Storm
221464 9.8 CRITICAL
Network 		portier portier An issue was discovered in portier vision 4.4.4.2 and 4.4.4.6. Due to a lack of user input validation in parameter handling, it has various SQL injections, including on the login form, and on the sea… CWE-89
SQL Injection 		CVE-2019-5722 2024-11-21 13:45 2019-03-22 Show GitHub Exploit DB Packet Storm
221465 5.3 MEDIUM
Network 		broadcastboxes scion-8_firmware CircuitWerkes Sicon-8, a hardware device used for managing electrical devices, ships with a web-based front-end controller and implements an authentication mechanism in JavaScript that is run in the … NVD-CWE-noinfo
CVE-2019-5616 2024-11-21 13:45 2019-03-16 Show GitHub Exploit DB Packet Storm
221466 5.4 MEDIUM
Network 		dradisframework dradis Cross-site scripting vulnerability in Dradis Community Edition Dradis Community Edition v3.11 and earlier and Dradis Professional Edition v3.1.1 and earlier allow remote authenticated attackers to in… CWE-79
Cross-site Scripting 		CVE-2019-5925 2024-11-21 13:45 2019-03-13 Show GitHub Exploit DB Packet Storm
221467 8.8 HIGH
Network 		rednao smart_forms Cross-site request forgery (CSRF) vulnerability in Smart Forms 2.6.15 and earlier allows remote attackers to hijack the authentication of administrators via a specially crafted page. CWE-352
 Origin Validation Error 		CVE-2019-5924 2024-11-21 13:45 2019-03-13 Show GitHub Exploit DB Packet Storm
221468 7.5 HIGH
Network 		ichain insurance_wallet Directory traversal vulnerability in iChain Insurance Wallet App for iOS Version 1.3.0 and earlier allows remote attackers to read arbitrary files via unspecified vectors. CWE-22
Path Traversal 		CVE-2019-5923 2024-11-21 13:45 2019-03-13 Show GitHub Exploit DB Packet Storm
221469 7.8 HIGH
Local 		microsoft teams Untrusted search path vulnerability in The installer of Microsoft Teams allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2019-5922 2024-11-21 13:45 2019-03-13 Show GitHub Exploit DB Packet Storm
221470 7.8 HIGH
Local 		microsoft windows_7 Untrusted search path vulnerability in Windows 7 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. CWE-426
 Untrusted Search Path 		CVE-2019-5921 2024-11-21 13:45 2019-03-13 Show GitHub Exploit DB Packet Storm