Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229601 7.5 危険 VWar - VWar の extra/online.php における SQL インジェクションの脆弱性 - CVE-2006-4142 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229602 7.5 危険 VWar - VWar の news.php における SQL インジェクションの脆弱性 - CVE-2006-4141 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229603 5 警告 SAP - SAP IGS におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4134 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229604 7.5 危険 SAP - SAP IGS におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-4133 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229605 6.5 警告 symantec veritas - Symantec VERITAS Backup Exec におけるヒープベースのバッファオーバーフローの脆弱性 - CVE-2006-4128 2012-12-20 18:02 2006-08-11 Show GitHub Exploit DB Packet Storm
229606 7.5 危険 simple one-file guestbook - Simple one-file guestbook における認証を回避される脆弱性 - CVE-2006-4122 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229607 5.1 警告 see-commerce - See-Commerce の owimg.php3 における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4121 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229608 5.4 警告 サン・マイクロシステムズ - Sun Solaris の squeue_drain 関数におけるサービス運用妨害 (DoS) の脆弱性 - CVE-2006-4117 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229609 7.5 危険 phpmyring - Nicolas Grandjean PHPMyRing の view_com.php における SQL インジェクションの脆弱性 - CVE-2006-4114 2012-12-20 18:02 2006-08-14 Show GitHub Exploit DB Packet Storm
229610 7.5 危険 Ruby on Rails project - Ruby on Rails の "依存型分類メカニズム" における任意の Ruby コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2006-4112 2012-12-20 18:02 2006-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 30, 2026, 4:58 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
212091 6.1 MEDIUM
Network 		vertrigoserv_project vertrigoserv VertrigoServ 2.17 allows XSS via the /inc/extensions.php ext parameter. CWE-79
Cross-site Scripting 		CVE-2019-8938 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
212092 3.3 LOW
Local 		qemu
opensuse 		qemu
leap 		hw/ppc/spapr.c in QEMU through 3.1.0 allows Information Exposure because the hypervisor shares the /proc/device-tree/system-id and /proc/device-tree/model system attributes with a guest. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2019-8934 2024-11-21 13:50 2019-03-22 Show GitHub Exploit DB Packet Storm
212093 7.7 HIGH
Network 		tibco jasperreports_server The SOAP API component vulnerability of TIBCO Software Inc.'s TIBCO JasperReports Server, and TIBCO JasperReports Server for ActiveMatrix BPM contains a vulnerability that may allow a malicious authe… NVD-CWE-noinfo
CVE-2019-8986 2024-11-21 13:50 2019-03-8 Show GitHub Exploit DB Packet Storm
212094 6.1 MEDIUM
Network 		wuzhicms wuzhicms XSS exists in WUZHI CMS 4.1.0 via index.php?m=core&f=map&v=baidumap&x=[XSS]&y=[XSS] to coreframe/app/core/map.php. CWE-79
Cross-site Scripting 		CVE-2019-9108 2024-11-21 13:50 2019-02-25 Show GitHub Exploit DB Packet Storm
212095 6.1 MEDIUM
Network 		wuzhicms wuzhi_cms XSS exists in WUZHI CMS 4.1.0 via index.php?m=attachment&f=imagecut&v=init&imgurl=[XSS] to coreframe/app/attachment/imagecut.php. CWE-79
Cross-site Scripting 		CVE-2019-9107 2024-11-21 13:50 2019-02-25 Show GitHub Exploit DB Packet Storm
212096 8.8 HIGH
Network 		thinkphp
opensourcebms
zzzcms 		thinkphp
open_source_background_management_system
zzzphp 		ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command Execution via public//?s=index/\think\app/invokefunction&function=call_user_func_array&vars[0]=syste… CWE-94
CWE-306
Code Injection
Missing Authentication for Critical Function 		CVE-2019-9082 2024-11-21 13:50 2019-02-25 Show GitHub Exploit DB Packet Storm
212097 5.4 MEDIUM
Network 		zzcms zzcms zzcms 2019 has XSS via an arbitrary user/ask.php?do=modify parameter because inc/stopsqlin.php does not block a mixed-case string such as sCrIpT. CWE-79
Cross-site Scripting 		CVE-2019-9078 2024-11-21 13:50 2019-02-25 Show GitHub Exploit DB Packet Storm
212098 7.8 HIGH
Local 		gnu
netapp
canonical
f5 		binutils
element_software
ubuntu_linux
traffix_signaling_delivery_controller 		An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section. CWE-787
 Out-of-bounds Write 		CVE-2019-9077 2024-11-21 13:50 2019-02-24 Show GitHub Exploit DB Packet Storm
212099 5.5 MEDIUM
Local 		gnu
netapp 		binutils
element_software_management 		An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an attempted excessive memory allocation in elf_read_notes in elf.c. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-9076 2024-11-21 13:50 2019-02-24 Show GitHub Exploit DB Packet Storm
212100 5.5 MEDIUM
Local 		gnu
netapp
canonical 		binutils
solidfire
hci_management_node
ubuntu_linux 		An issue was discovered in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.32. It is an out-of-bounds read leading to a SEGV in bfd_getl32 in libbfd.c, when ca… CWE-125
Out-of-bounds Read 		CVE-2019-9074 2024-11-21 13:50 2019-02-24 Show GitHub Exploit DB Packet Storm