Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229581 9.3 危険 Realtek Semiconductor Corp - Realtek Media Player におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5664 2012-12-20 18:52 2008-12-18 Show GitHub Exploit DB Packet Storm
229582 7.5 危険 Quassel IRC - Quassel Core における CRLF インジェクションの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5657 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229583 4.3 警告 TYPO3 Association - TYPO3 の felogin system エクステンション用の frontend プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5656 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229584 5 警告 Edgewall Software - Trac の HTML サニタイズフィルタにおけるフィッシング攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-5647 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229585 7.5 危険 Edgewall Software - Trac におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5646 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229586 4.3 警告 TYPO3 Association - TYPO3 用の file backend モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5644 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229587 4.3 警告 txtblogcms - TxtBlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5639 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229588 6.8 警告 qualityunit - Post Affiliate Pro の merchants/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5630 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229589 7.5 危険 turnkeyarcade - Turnkey Arcade Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5629 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229590 7.8 危険 Roundcube.net - roundcubemail におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5620 2012-12-20 18:52 2008-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221431 7.5 HIGH
Network 		siemens sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr2_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr3_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_… 		A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or … NVD-CWE-noinfo
CVE-2019-6574 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221432 9.1 CRITICAL
Network 		siemens simatic_hmi_comfort_panels_firmware
simatic_hmi_comfort_outdoor_panels_firmware
simatic_hmi_ktp_mobile_panels_ktp400f_firmware
simatic_hmi_ktp_mobile_panels_ktp700_firmware
simatic_hmi_kt… 		A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KT… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6572 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221433 5.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to force the application to perform requests to the internal workstation (port-scanning) and to perform requests to adjacent wor… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6516 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221434 5.3 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. Uploaded documents for API documentation are available to an unauthenticated user. NVD-CWE-noinfo
CVE-2019-6515 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221435 4.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to inject a JavaScript payload that will be stored in the database and then displayed and executed on the same page, aka XSS. CWE-79
Cross-site Scripting 		CVE-2019-6514 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221436 4.1 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. It is possible to force the application to perform requests to the internal workstation (SSRF port-scanning), other adjacent workstations (SSRF netw… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6512 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221437 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to… NVD-CWE-Other
CVE-2019-6566 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221438 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privi… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6564 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221439 9.8 CRITICAL
Network 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Wind… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6548 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221440 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI eleme… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6546 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm