Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229621 7.5 危険 slimcms - SlimCMS の edit.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5491 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
229622 7.5 危険 phpstore - PHPStore Yahoo Answers の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5490 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
229623 4.3 警告 turnkeyforms - TurnkeyForms Text Link Sales の admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5487 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
229624 7.5 危険 turnkeyforms - TurnkeyForms Text Link Sales の admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5486 2012-12-20 18:52 2008-12-12 Show GitHub Exploit DB Packet Storm
229625 4.3 警告 PunBB - PunBB の moderate.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5435 2012-12-20 18:52 2008-12-11 Show GitHub Exploit DB Packet Storm
229626 6.5 警告 PunBB - PunBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5434 2012-12-20 18:52 2008-12-11 Show GitHub Exploit DB Packet Storm
229627 4.3 警告 PunBB - PunBB の login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5433 2012-12-20 18:52 2008-12-11 Show GitHub Exploit DB Packet Storm
229628 4.3 警告 シマンテック - Norton Internet Security の Norton Antivirus におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5427 2012-12-20 18:52 2008-12-11 Show GitHub Exploit DB Packet Storm
229629 4.3 警告 サン・マイクロシステムズ - Sun Sun Ray Server Software などにおける Sun Ray 管理者パスワードを特定される脆弱性 CWE-200
情報漏えい 		CVE-2008-5423 2012-12-20 18:52 2008-12-4 Show GitHub Exploit DB Packet Storm
229630 7.5 危険 サン・マイクロシステムズ - Sun Sun Ray Server Software における Sun Ray 管理者パスワードを特定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5422 2012-12-20 18:52 2008-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221431 7.5 HIGH
Network 		siemens sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr2_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_6sr3_firmware
sinamics_perfect_harmony_gh180_with_nxg_i_control_mlfb_… 		A vulnerability has been identified in SINAMICS PERFECT HARMONY GH180 with NXG I control, MLFBs: 6SR2...-, 6SR3...-, 6SR4...- (All Versions with option G21, G22, G23, G26, G28, G31, G32, G38, G43 or … NVD-CWE-noinfo
CVE-2019-6574 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221432 9.1 CRITICAL
Network 		siemens simatic_hmi_comfort_panels_firmware
simatic_hmi_comfort_outdoor_panels_firmware
simatic_hmi_ktp_mobile_panels_ktp400f_firmware
simatic_hmi_ktp_mobile_panels_ktp700_firmware
simatic_hmi_kt… 		A vulnerability has been identified in SIMATIC HMI Comfort Panels 4" - 22" (All versions < V15.1 Update 1), SIMATIC HMI Comfort Outdoor Panels 7" & 15" (All versions < V15.1 Update 1), SIMATIC HMI KT… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6572 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221433 5.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to force the application to perform requests to the internal workstation (port-scanning) and to perform requests to adjacent wor… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6516 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221434 5.3 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. Uploaded documents for API documentation are available to an unauthenticated user. NVD-CWE-noinfo
CVE-2019-6515 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221435 4.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to inject a JavaScript payload that will be stored in the database and then displayed and executed on the same page, aka XSS. CWE-79
Cross-site Scripting 		CVE-2019-6514 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221436 4.1 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. It is possible to force the application to perform requests to the internal workstation (SSRF port-scanning), other adjacent workstations (SSRF netw… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6512 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
221437 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to… NVD-CWE-Other
CVE-2019-6566 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221438 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privi… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6564 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221439 9.8 CRITICAL
Network 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Wind… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6548 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
221440 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI eleme… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6546 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm