Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229781 5 警告 php-daily - PHP-Daily の download_file.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4758 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229782 7.5 危険 php-daily - PHP-Daily における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4757 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229783 4.3 警告 php-daily - PHP-Daily の add_prest_date.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4756 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229784 7.5 危険 pozscripts - PozScripts Classified Auctions Script の gotourl.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4755 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229785 5.8 警告 scripts-for-sites - SFS Ez Forum の forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4754 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229786 7.5 危険 tech logic - TlNews における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4752 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229787 7.5 危険 uniwin - Uniwin eCart Professional における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4746 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229788 4.3 警告 uniwin - Uniwin eCart Professional の emailFriend.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4745 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229789 7.5 危険 quidascript - QuidaScript FAQ Management Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4743 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
229790 4.3 警告 timetrex - TimeTrex の interface/Login.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4742 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221671 7.5 HIGH
Network 		netapp fas26x0_firmware
fas27x0_firmware
fas8200_firmware
aff_c190_firmware
aff_a200_firmware
aff_a220_firmware
aff_a300_firmware 		Certain versions of the NetApp Service Processor and Baseboard Management Controller firmware allow a remote unauthenticated attacker to cause a Denial of Service (DoS). NVD-CWE-noinfo
CVE-2019-5500 2024-11-21 13:45 2020-05-12 Show GitHub Exploit DB Packet Storm
221672 9.8 CRITICAL
Network 		accellion file_transfer_appliance Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection'). CWE-78
OS Command  		CVE-2019-5623 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221673 9.8 CRITICAL
Network 		accellion file_transfer_appliance Accellion File Transfer Appliance version FTA_8_0_540 suffers from an instance of CWE-798: Use of Hard-coded Credentials. CWE-798
 Use of Hard-coded Credentials 		CVE-2019-5622 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221674 7.8 HIGH
Local 		abbs_software_audio_media_player_project abbs_software_audio_media_player ABBS Software Audio Media Player version 3.1 suffers from an instance of CWE-121: Stack-based Buffer Overflow. CWE-787
 Out-of-bounds Write 		CVE-2019-5621 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221675 9.8 CRITICAL
Network 		hitachienergy microscada_pro_sys600 ABB MicroSCADA Pro SYS600 version 9.3 suffers from an instance of CWE-306: Missing Authentication for Critical Function. CWE-306
Missing Authentication for Critical Function 		CVE-2019-5620 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221676 9.8 CRITICAL
Network 		aasync aasync AASync.com AASync version 2.2.1.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow. CWE-787
 Out-of-bounds Write 		CVE-2019-5619 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221677 7.8 HIGH
Local 		a-pdf wav_to_mp3 A-PDF WAV to MP3 version 1.0.0 suffers from an instance of CWE-121: Stack-based Buffer Overflow. CWE-787
 Out-of-bounds Write 		CVE-2019-5618 2024-11-21 13:45 2020-04-30 Show GitHub Exploit DB Packet Storm
221678 9.8 CRITICAL
Network 		freebsd
netapp 		freebsd
clustered_data_ontap 		In FreeBSD 12.1-STABLE before r356035, 12.1-RELEASE before 12.1-RELEASE-p4, 11.3-STABLE before r356036, and 11.3-RELEASE before 11.3-RELEASE-p8, incomplete packet data validation may result in access… CWE-119
CWE-20
Incorrect Access of Indexable Resource ('Range Error') 
 Improper Input Validation  		CVE-2019-5614 2024-11-21 13:45 2020-04-29 Show GitHub Exploit DB Packet Storm
221679 7.8 HIGH
Local 		vmware horizon_client
remote_console
workstation 		For VMware Horizon Client for Windows (5.x and prior before 5.3.0), VMware Remote Console for Windows (10.x before 11.0.0), VMware Workstation for Windows (15.x before 15.5.2) the folder containing c… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-5543 2024-11-21 13:45 2020-03-17 Show GitHub Exploit DB Packet Storm
221680 6.5 MEDIUM
Network 		barracuda load_balancer_adc_firmware Authenticated, administrative access to a Barracuda Load Balancer ADC running unpatched firmware <= v6.4 allows one to edit the LDAP service configuration of the balancer and change the LDAP server t… CWE-522
 Insufficiently Protected Credentials 		CVE-2019-5648 2024-11-21 13:45 2020-03-12 Show GitHub Exploit DB Packet Storm