Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229551 7.5 危険 v3chat - V3 Chat Live Support の admin/index.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5783 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
229552 7.5 危険 zeeways - ZeeMatri の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5782 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
229553 7.5 危険 phpweather - PHP Weather の test.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5771 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229554 4.3 警告 phpweather - PHP Weather の config/make_config.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5770 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229555 7.5 危険 sirium - XOOPS 用の AM Events モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5768 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229556 6.8 警告 phparanoid - PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5758 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229557 3.5 注意 Textpattern - Textpattern の textarea/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5757 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229558 4.3 警告 WordPress.org - WordPress 用の Page Flip Image Gallery プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5752 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
229559 7.5 危険 Pligg - Pligg CMS の evb/check_url.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5739 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
229560 7.5 危険 PHP-Fusion - PHP-Fusion 用の Team Impact TI Blog System モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5733 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221541 7.5 HIGH
Network 		qibosoft qibosoft qibosoft through V7 allows remote attackers to read arbitrary files via the member/index.php main parameter, as demonstrated by SSRF to a URL on the same web site to read a .sql file. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-5725 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221542 5.5 MEDIUM
Local 		wireshark wireshark In Wireshark 2.4.0 to 2.4.11, the ENIP dissector could crash. This was addressed in epan/dissectors/packet-enip.c by changing the memory-management approach so that a use-after-free is avoided. CWE-416
 Use After Free 		CVE-2019-5721 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221543 5.5 MEDIUM
Local 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the ISAKMP dissector could crash. This was addressed in epan/dissectors/packet-isakmp.c by properly handling the case of a missing decryption data blo… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2019-5719 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221544 5.5 MEDIUM
Local 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the RTSE dissector and other ASN.1 dissectors could crash. This was addressed in epan/charsets.c by adding a get_t61_string length check. CWE-125
Out-of-bounds Read 		CVE-2019-5718 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221545 5.5 MEDIUM
Local 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.6.0 to 2.6.5 and 2.4.0 to 2.4.11, the P_MUL dissector could crash. This was addressed in epan/dissectors/packet-p_mul.c by rejecting the invalid sequence number of zero. CWE-20
 Improper Input Validation  		CVE-2019-5717 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221546 5.5 MEDIUM
Local 		wireshark
debian 		wireshark
debian_linux 		In Wireshark 2.6.0 to 2.6.5, the 6LoWPAN dissector could crash. This was addressed in epan/dissectors/packet-6lowpan.c by avoiding use of a TVB before its creation. CWE-20
 Improper Input Validation  		CVE-2019-5716 2024-11-21 13:45 2019-01-9 Show GitHub Exploit DB Packet Storm
221547 9.8 CRITICAL
Network 		frontaccounting frontaccounting includes/db/class.reflines_db.inc in FrontAccounting 2.4.6 contains a SQL Injection vulnerability in the reference field that can allow the attacker to grab the entire database of the application via… CWE-89
SQL Injection 		CVE-2019-5720 2024-11-21 13:45 2019-01-8 Show GitHub Exploit DB Packet Storm
221548 5.5 MEDIUM
Local 		linux
netapp 		linux_kernel
element_software_management_node
active_iq_performance_analytics_services 		The mincore() implementation in mm/mincore.c in the Linux kernel through 4.19.13 allowed local attackers to observe page cache access patterns of other processes on the same system, potentially allow… CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-5489 2024-11-21 13:45 2019-01-8 Show GitHub Exploit DB Packet Storm
221549 7.5 HIGH
Network 		earclink espcms-p8 EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. install_pack/espcms_public/espcms_db.php may allow retrieving sensitive information… CWE-89
SQL Injection 		CVE-2019-5488 2024-11-21 13:45 2019-01-8 Show GitHub Exploit DB Packet Storm
221550 6.5 MEDIUM
Network 		arubanetworks
siemens 		arubaos
scalance_w1750d_firmware 		A remote cross-site request forgery (csrf) vulnerability was discovered in Aruba Operating System Software version(s): 6.x.x.x: all versions, 8.x.x.x: all versions prior to 8.8.0.0. Aruba has release… CWE-352
 Origin Validation Error 		CVE-2019-5318 2024-11-21 13:44 2021-09-7 Show GitHub Exploit DB Packet Storm