Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230011	6.3	警告	phpizabi	-	PHPizabi の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3723	2012-12-20 18:52	2008-08-20	Show	GitHub Exploit DB Packet Storm

230012	7.5	危険	scripts-for-sites	-	SFS Affiliate Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3719	2012-12-20 18:52	2008-08-20	Show	GitHub Exploit DB Packet Storm

230013	7.5	危険	phpbasket	-	PHPBasket の product.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3713	2012-12-20 18:52	2008-08-19	Show	GitHub Exploit DB Packet Storm

230014	7.5	危険	phparcadescript	-	PHPArcadeScript の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3711	2012-12-20 18:52	2008-08-19	Show	GitHub Exploit DB Packet Storm

230015	7.5	危険	zeeways	-	ZEEJOBSITE の bannerclick.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3706	2012-12-20 18:52	2008-08-19	Show	GitHub Exploit DB Packet Storm

230016	10	危険	シマンテック	-	Windows 用の SFW における任意のコードを実行される脆弱性	CWE-287 不適切な認証	CVE-2008-3703	2012-12-20 18:52	2008-08-14	Show	GitHub Exploit DB Packet Storm

230017	6.8	警告	Xen プロジェクト	-	Xen の flask_security_label 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-3687	2012-12-20 18:52	2008-08-14	Show	GitHub Exploit DB Packet Storm

230018	5	警告	サン・マイクロシステムズ	-	Sun Java System Web Proxy Server の FTP サブシステムにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-3683	2012-12-20 18:52	2008-08-12	Show	GitHub Exploit DB Packet Storm

230019	6.8	警告	YPNinc	-	YPN PHP Realty の dpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3682	2012-12-20 18:52	2008-08-14	Show	GitHub Exploit DB Packet Storm

230020	7.5	危険	pozscripts	-	PozScripts TubeGuru Video Sharing Script の ugroups.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3674	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221911	4.9	MEDIUM Network	huawei	usg9500_firmware	USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with h…	CWE-354 Improper Validation of Integrity Check Value	CVE-2019-5272	2024-11-21 13:44	2019-12-27	Show	GitHub Exploit DB Packet Storm

221912	6.5	MEDIUM Adjacent	linux debian canonical netapp oracle	linux_kernel debian_linux ubuntu_linux cloud_backup steelstore_cloud_integrated_storage data_availability_services solidfire hci_management_node active_iq_unified_manager e…	An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for statio…	CWE-287 Improper Authentication	CVE-2019-5108	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

221913	8.8	HIGH Adjacent	huawei	elle-al00b_firmware	Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (…	CWE-120 Classic Buffer Overflow	CVE-2019-5276	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

221914	5.5	MEDIUM Local	huawei	oceanstor_sns3096_firmware	Huawei OceanStor SNS3096 V100R002C01 have an information disclosure vulnerability. Attackers with low privilege can exploit this vulnerability by performing some specific operations. Successful explo…	NVD-CWE-noinfo	CVE-2019-5267	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

221915	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient input validation vulnerability. Attackers can exploit this vulnerability by sending crafted packets to the affected …	CWE-20 Improper Input Validation	CVE-2019-5266	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

221916	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender…	NVD-CWE-noinfo	CVE-2019-5265	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

221917	6.1	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality …	CWE-79 Cross-site Scripting	CVE-2019-4744	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

221918	4.3	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-4743	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

221919	6.1	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicious Web site, a remote attacker could exploit …	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2019-4742	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm

221920	4.3	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 is vulnerable to cross-site request forgery which could allow an attacker to execute malicious and unauthorized actions transmitted from a user that the website …	CWE-352 Origin Validation Error	CVE-2019-4736	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm