Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 1, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 229631 | 6.9 | 警告 | PvPGN | - | pvpgn の pvpgn-support-installer における任意のファイルを上書きされる脆弱性 |
CWE-59
リンク解釈の問題 |
CVE-2008-5370 | 2012-12-20 18:52 | 2008-08-11 | Show | GitHub Exploit DB Packet Storm |
| 229632 | 6.8 | 警告 | PHP-Fusion | - | PHP-Fusion の messages.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5335 | 2012-12-20 18:52 | 2008-12-4 | Show | GitHub Exploit DB Packet Storm |
| 229633 | 10 | 危険 | pie | - | Pie における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-5332 | 2012-12-20 18:52 | 2008-12-4 | Show | GitHub Exploit DB Packet Storm |
| 229634 | 7.5 | 危険 | xoops hocasi | - | XOOPS 用の GesGaleri モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5321 | 2012-12-20 18:52 | 2008-12-3 | Show | GitHub Exploit DB Packet Storm |
| 229635 | 5 | 警告 | Tiki Software Community Association | - | Tikiwiki における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-5319 | 2012-12-20 18:52 | 2008-10-17 | Show | GitHub Exploit DB Packet Storm |
| 229636 | 5 | 警告 | Tiki Software Community Association | - | Tikiwiki における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2008-5318 | 2012-12-20 18:52 | 2008-10-17 | Show | GitHub Exploit DB Packet Storm |
| 229637 | 7.5 | 危険 | pilotgroup | - | PG Roommate Finder Solution の admin/index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5307 | 2012-12-20 18:52 | 2008-12-2 | Show | GitHub Exploit DB Packet Storm |
| 229638 | 7.5 | 危険 | pilotgroup | - | PG Real Estate Solution の admin/index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5306 | 2012-12-20 18:52 | 2008-12-2 | Show | GitHub Exploit DB Packet Storm |
| 229639 | 10 | 危険 | TWiki | - | TWiki における任意の Perl コードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-5305 | 2012-12-20 18:52 | 2008-11-21 | Show | GitHub Exploit DB Packet Storm |
| 229640 | 4.3 | 警告 | TWiki | - | TWiki におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-5304 | 2012-12-20 18:52 | 2008-11-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 1, 2026, 4:12 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 221531 | 8.8 |
HIGH
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect optimization assumptions in V8 in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to execute arbitrary code inside a sandbox via a crafted HTML page. |
CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write |
CVE-2019-5782 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221532 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5781 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221533 | 7.8 |
HIGH
Local |
google redhat debian fedoraproject |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation debian_linux fedora |
Insufficient restrictions on what can be done with Apple Events in Google Chrome on macOS prior to 72.0.3626.81 allowed a local attacker to execute JavaScript via Apple Events. |
CWE-20
Improper Input Validation |
CVE-2019-5780 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221534 | 4.3 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Insufficient policy validation in ServiceWorker in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page. |
CWE-862
Missing Authorization |
CVE-2019-5779 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221535 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
A missing case for handling special schemes in permission request checks in Extensions in Google Chrome prior to 72.0.3626.81 allowed an attacker who convinced a user to install a malicious extension… |
CWE-79
Cross-site Scripting |
CVE-2019-5778 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221536 | 6.5 |
MEDIUM
Network |
google redhat debian fedoraproject |
chrome enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation debian_linux fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5777 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221537 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5776 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221538 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Incorrect handling of a confusable character in Omnibox in Google Chrome prior to 72.0.3626.81 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted domain name. |
NVD-CWE-noinfo
|
CVE-2019-5775 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221539 | 8.8 |
HIGH
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Omission of the .desktop filetype from the Safe Browsing checklist in SafeBrowsing in Google Chrome on Linux prior to 72.0.3626.81 allowed an attacker who convinced a user to download a .desktop file… |
CWE-862
Missing Authorization |
CVE-2019-5774 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |
| 221540 | 6.5 |
MEDIUM
Network |
google debian redhat fedoraproject |
chrome debian_linux enterprise_linux_desktop enterprise_linux_server enterprise_linux_workstation fedora |
Insufficient origin validation in IndexedDB in Google Chrome prior to 72.0.3626.81 allowed a remote attacker who had compromised the renderer process to bypass same origin policy via a crafted HTML p… |
CWE-346
Origin Validation Error |
CVE-2019-5773 | 2024-11-21 13:45 | 2019-02-20 | Show | GitHub Exploit DB Packet Storm |