Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229891 7.5 危険 SoftbizScripts - Softbiz Jokes & Funny Pics Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2874 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
229892 7.5 危険 sharecms - ShareCMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2870 2012-12-20 18:52 2008-06-26 Show GitHub Exploit DB Packet Storm
229893 6.8 警告 webchamado - WebChamado の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2858 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
229894 7.5 危険 softdivision - Maxtrade AIO の Trade モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2847 2012-12-20 18:52 2008-06-25 Show GitHub Exploit DB Packet Storm
229895 4.3 警告 traindepot - Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2839 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
229896 5 警告 traindepot - Traindepot の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2838 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
229897 7.5 危険 sidb - Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2834 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
229898 10 危険 worldlevel - le.cms の admin/upload.php における管理者の認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-2833 2012-12-20 18:52 2008-06-24 Show GitHub Exploit DB Packet Storm
229899 10 危険 tmsnc - tmsnc におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2828 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
229900 4.3 警告 Xerox - Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2825 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222201 7.5 HIGH
Network 		axiositalia registro_elettronico A vulnerability, which was classified as problematic, has been found in Axios Italia Axios RE 1.7.0/7.0.0. This issue affects some unknown processing of the component Error Message Handler. The manip… CWE-200
Information Exposure 		CVE-2019-25069 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222202 8.8 HIGH
Network 		axiositalia registro_elettronico A vulnerability classified as critical was found in Axios Italia Axios RE 1.7.0/7.0.0. This vulnerability affects unknown code of the file REDefault.aspx of the component Connection Handler. The mani… CWE-269
 Improper Privilege Management 		CVE-2019-25068 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222203 8.8 HIGH
Network 		podman_project
varlink 		podman
varlink 		A vulnerability, which was classified as critical, was found in Podman and Varlink 1.5.1. This affects an unknown part of the component API. The manipulation leads to Remote Privilege Escalation. It … NVD-CWE-noinfo
CVE-2019-25067 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222204 8.8 HIGH
Network 		ajenti ajenti A vulnerability has been found in ajenti 2.1.31 and classified as critical. This vulnerability affects unknown code of the component API. The manipulation leads to privilege escalation. The attack ca… CWE-78
OS Command  		CVE-2019-25066 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222205 9.8 CRITICAL
Network 		opennetadmin opennetadmin A vulnerability was found in OpenNetAdmin 18.1.1. It has been rated as critical. Affected by this issue is some unknown functionality. The manipulation leads to privilege escalation. The attack may b… CWE-78
OS Command  		CVE-2019-25065 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222206 8.8 HIGH
Network 		theaccessgroup corehr_core_portal A vulnerability was found in CoreHR Core Portal up to 27.0.7. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross site request forgery. It is possi… CWE-352
 Origin Validation Error 		CVE-2019-25064 2024-11-21 13:39 2022-06-10 Show GitHub Exploit DB Packet Storm
222207 7.8 HIGH
Local 		sricam deviceviewer A vulnerability was found in Sricam IP CCTV Camera. It has been classified as critical. Affected is an unknown function of the component Device Viewer. The manipulation leads to memory corruption. Lo… CWE-787
 Out-of-bounds Write 		CVE-2019-25063 2024-11-21 13:39 2022-06-8 Show GitHub Exploit DB Packet Storm
222208 7.8 HIGH
Local 		sricam deviceviewer A vulnerability was found in Sricam IP CCTV Camera and classified as critical. This issue affects some unknown processing of the component Device Viewer. The manipulation leads to memory corruption. … CWE-787
 Out-of-bounds Write 		CVE-2019-25062 2024-11-21 13:39 2022-06-8 Show GitHub Exploit DB Packet Storm
222209 7.5 HIGH
Network 		random_password_generator_project random_password_generator The random_password_generator (aka RandomPasswordGenerator) gem through 1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic nature, can facilitate password prediction. CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2019-25061 2024-11-21 13:39 2022-05-18 Show GitHub Exploit DB Packet Storm
222210 5.3 MEDIUM
Network 		wpgraphql wpgraphql The WPGraphQL WordPress plugin before 0.3.5 doesn't properly restrict access to information about other users' roles on the affected site. Because of this, a remote attacker could forge a GraphQL que… - CVE-2019-25060 2024-11-21 13:39 2022-05-10 Show GitHub Exploit DB Packet Storm