Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229751	4.3	警告	web-album	-	WEBalbum の photo_add-c.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2698	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

229752	7.5	危険	phpinv	-	phpInv の entry.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2695	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

229753	4.3	警告	phpinv	-	phpInv の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2694	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

229754	7.5	危険	PilotCart	-	ASPilot Pilot Cart の pilot.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2688	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

229755	7.5	危険	promanager	-	ProManager の inc/config.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2687	2012-12-20 18:52	2008-06-13	Show	GitHub Exploit DB Packet Storm

229756	7.5	危険	realm project	-	Realm CMS の _RealmAdmin/login.asp における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2682	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229757	5	警告	realm project	-	Realm CMS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2681	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229758	4.3	警告	realm project	-	Realm CMS の _db/compact.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2680	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229759	7.5	危険	realm project	-	Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2679	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229760	7.5	危険	telephone	-	Telephone Directory 2008 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2678	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223961	8.1	HIGH Network	xerox	altalink_b8045_firmware altalink_b8055_firmware altalink_b8065_firmware altalink_b8075_firmware altalink_b8090_firmware altalink_c8030_firmware altalink_c8035_firmware altalink_c…	Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary d…	NVD-CWE-noinfo	CVE-2019-18629	2024-11-21 13:33	2021-03-4	Show	GitHub Exploit DB Packet Storm

223962	4.9	MEDIUM Network	xerox	altalink_b8045_firmware altalink_b8055_firmware altalink_b8065_firmware altalink_b8075_firmware altalink_b8090_firmware altalink_c8030_firmware altalink_c8035_firmware altalink_c…	Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow a user with administrative privileges to tu…	NVD-CWE-noinfo	CVE-2019-18628	2024-11-21 13:33	2021-03-4	Show	GitHub Exploit DB Packet Storm

223963	3.5	LOW Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to information disclosure.	CWE-209 Information Exposure Through an Error Message	CVE-2019-18947	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223964	4.8	MEDIUM Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to session fixation.	CWE-384 Session Fixation	CVE-2019-18946	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223965	8.0	HIGH Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to privilege escalation vulnerability.	NVD-CWE-noinfo	CVE-2019-18945	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223966	4.8	MEDIUM Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager Application Repository versions prior to 11.7.1 are vulnerable to reflected XSS.	CWE-79 Cross-site Scripting	CVE-2019-18944	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223967	8.0	HIGH Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to XML External Entity Processing (XXE) on certain operations.	CWE-611 XXE	CVE-2019-18943	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223968	4.8	MEDIUM Adjacent	microfocus	solutions_business_manager	Micro Focus Solutions Business Manager versions prior to 11.7.1 are vulnerable to stored XSS. The application reflects previously stored user input without encoding.	CWE-79 Cross-site Scripting	CVE-2019-18942	2024-11-21 13:33	2021-02-26	Show	GitHub Exploit DB Packet Storm

223969	7.8	HIGH Local	autotrace_project fedoraproject	autotrace fedora	A bitmap double free in main.c in autotrace 0.31.1 allows attackers to cause an unspecified impact via a malformed bitmap image. This may occur after the use-after-free in CVE-2017-9182.	CWE-415 Double Free	CVE-2019-19005	2024-11-21 13:33	2021-02-12	Show	GitHub Exploit DB Packet Storm

223970	3.3	LOW Local	autotrace_project fedoraproject	autotrace fedora	A biWidth*biBitCnt integer overflow in input-bmp.c in autotrace 0.31.1 allows attackers to provide an unexpected input value to malloc via a malformed bitmap image.	CWE-190 Integer Overflow or Wraparound	CVE-2019-19004	2024-11-21 13:33	2021-02-12	Show	GitHub Exploit DB Packet Storm