Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229341 6.8 警告 サン・マイクロシステムズ
サイバートラスト株式会社
VMware
ヒューレット・パッカード
レッドハット		 - 複数の Oracle 製品の Swing コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3557 2012-12-19 16:49 2010-10-12 Show GitHub Exploit DB Packet Storm
229342 5.1 警告 レッドハット - OpenShift の 管理コンソールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-5622 2012-12-19 16:42 2012-12-10 Show GitHub Exploit DB Packet Storm
229343 6.5 警告 ownCloud - ownCloud の lib/filesystem.php における任意の PHP コードを実行される脆弱性 CWE-20
CWE-Other
CVE-2012-5610 2012-12-19 16:32 2012-11-13 Show GitHub Exploit DB Packet Storm
229344 6.5 警告 ownCloud - ownCloud の lib/migrate.php における任意の PHP コードを実行される脆弱性 CWE-Other
その他 		CVE-2012-5609 2012-12-19 16:21 2012-11-13 Show GitHub Exploit DB Packet Storm
229345 4.3 警告 ownCloud - ownCloud の apps/user_webdavauth/settings.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5608 2012-12-19 16:11 2012-11-13 Show GitHub Exploit DB Packet Storm
229346 5 警告 ownCloud - ownCloud の "ロスト・パスワード" リセット機能におけるアカウントのパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2012-5607 2012-12-19 16:04 2012-10-24 Show GitHub Exploit DB Packet Storm
229347 4.3 警告 ownCloud - ownCloud におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5606 2012-12-19 15:58 2012-10-24 Show GitHub Exploit DB Packet Storm
229348 10 危険 サン・マイクロシステムズ
サイバートラスト株式会社
VMware
ヒューレット・パッカード
レッドハット		 - 複数の Oracle 製品の 2D コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-3556 2012-12-19 15:48 2010-10-12 Show GitHub Exploit DB Packet Storm
229349 7.5 危険 The GIMP Team - GIMP の X Window Dump プラグインにおけるサービス運用妨害 (クラッシュ) の脆弱性 CWE-119
バッファエラー 		CVE-2012-5576 2012-12-19 15:45 2012-11-7 Show GitHub Exploit DB Packet Storm
229350 6.4 警告 VMware
Apache Software Foundation		 - Apache Struts における任意のファイルを作成または上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0393 2012-12-19 15:43 2012-01-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211971 8.8 HIGH
Network 		wtcms_project wtcms An issue was discovered in WTCMS 1.0. It allows index.php?g=admin&m=setting&a=site_post CSRF. CWE-352
 Origin Validation Error 		CVE-2019-8910 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211972 7.5 HIGH
Network 		wtcms_project wtcms An issue was discovered in WTCMS 1.0. It allows remote attackers to cause a denial of service (resource consumption) via crafted dimensions for the verification code image. CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-8909 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211973 9.8 CRITICAL
Network 		wtcms_project wtcms An issue was discovered in WTCMS 1.0. It allows remote attackers to execute arbitrary PHP code by going to the "Setting -> Mailbox configuration -> Registration email template" screen, and uploading … CWE-706
 Use of Incorrectly-Resolved Name or Reference 		CVE-2019-8908 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211974 8.8 HIGH
Network 		file_project
debian
opensuse
canonical 		file
debian_linux
leap
ubuntu_linux 		do_core_note in readelf.c in libmagic.a in file 5.35 allows remote attackers to cause a denial of service (stack corruption and application crash) or possibly have unspecified other impact. CWE-787
 Out-of-bounds Write 		CVE-2019-8907 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211975 4.4 MEDIUM
Local 		file_project
canonical
opensuse
apple 		file
ubuntu_linux
leap
mac_os_x
iphone_os
watchos
tvos 		do_core_note in readelf.c in libmagic.a in file 5.35 has an out-of-bounds read because memcpy is misused. CWE-125
Out-of-bounds Read 		CVE-2019-8906 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211976 4.4 MEDIUM
Local 		debian
file_project
canonical
opensuse 		debian_linux
file
ubuntu_linux
leap 		do_core_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printable, a different vulnerability than CVE-2018-10360. CWE-125
Out-of-bounds Read 		CVE-2019-8905 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211977 8.8 HIGH
Network 		file_project
canonical 		file
ubuntu_linux 		do_bid_note in readelf.c in libmagic.a in file 5.35 has a stack-based buffer over-read, related to file_printf and file_vprintf. CWE-125
Out-of-bounds Read 		CVE-2019-8904 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211978 7.5 HIGH
Network 		totaljs total.js index.js in Total.js Platform before 3.2.3 allows path traversal. CWE-22
Path Traversal 		CVE-2019-8903 2024-11-21 13:50 2019-02-19 Show GitHub Exploit DB Packet Storm
211979 5.7 MEDIUM
Network 		idreamsoft icms An issue was discovered in idreamsoft iCMS through 7.0.14. A CSRF vulnerability can delete users' articles via the public/api.php?app=user URI. CWE-352
 Origin Validation Error 		CVE-2019-8902 2024-11-21 13:50 2019-02-18 Show GitHub Exploit DB Packet Storm
211980 7.8 HIGH
Local 		apple mac_os_x This issue was addressed by removing the vulnerable code. This issue is fixed in macOS Catalina 10.15.1, Security Update 2019-001, and Security Update 2019-006, macOS Catalina 10.15. A malicious appl… NVD-CWE-noinfo
CVE-2019-8509 2024-11-21 13:49 2020-10-28 Show GitHub Exploit DB Packet Storm