Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230141 6.5 警告 qualityunit - Post Affiliate Pro の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4602 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
230142 7.5 危険 steve dawson - PokerMax Poker League Tournament Script の configure.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-4600 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
230143 10 危険 slaytanic scripts - Slaytanic Scripts Content Plus における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4595 2012-12-20 18:52 2008-10-17 Show GitHub Exploit DB Packet Storm
230144 10 危険 sportspanel - Sports Clubs Web Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4592 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
230145 4.3 警告 phpwebgallery - PhpWebGallery の admin/include/isadmin.inc.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4591 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
230146 7.5 危険 stash - Stash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4590 2012-12-20 18:52 2008-10-16 Show GitHub Exploit DB Packet Storm
230147 5 警告 Matthias Wandel - jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4575 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
230148 7.5 危険 real-estate-scripts - Real Estate Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4570 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
230149 7.5 危険 xigla - XIGLA Software Absolute Poll Manager XE の xlacomments.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4569 2012-12-20 18:52 2008-10-15 Show GitHub Exploit DB Packet Storm
230150 6.8 警告 VideoLAN - VLC Media Player における任意のメモリを上書きされる脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4558 2012-12-20 18:52 2008-10-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224611 6.1 MEDIUM
Network 		innologi appointment_scheduler A vulnerability, which was classified as problematic, was found in innologi appointments Extension up to 2.0.5 on TYPO3. This affects an unknown part of the component Appointment Handler. The manipul… CWE-79
Cross-site Scripting 		CVE-2019-25094 2024-11-21 13:39 2023-01-4 Show GitHub Exploit DB Packet Storm
224612 5.4 MEDIUM
Network 		recent_threads_on_index_project recent_threads_on_index A vulnerability, which was classified as problematic, was found in dragonexpert Recent Threads on Index. Affected is the function recentthread_list_threads of the file inc/plugins/recentthreads/hooks… CWE-79
Cross-site Scripting 		CVE-2019-25093 2024-11-21 13:39 2023-01-2 Show GitHub Exploit DB Packet Storm
224613 4.8 MEDIUM
Network 		mellivora_project mellivora A vulnerability classified as problematic was found in Nakiami Mellivora up to 2.1.x. Affected by this vulnerability is the function print_user_ip_log of the file include/layout/user.inc.php of the c… - CVE-2019-25092 2024-11-21 13:39 2022-12-28 Show GitHub Exploit DB Packet Storm
224614 5.3 MEDIUM
Network 		nsupdate nsupdate.info A vulnerability classified as problematic has been found in nsupdate.info. This affects an unknown part of the file src/nsupdate/settings/base.py of the component CSRF Cookie Handler. The manipulatio… - CVE-2019-25091 2024-11-21 13:39 2022-12-28 Show GitHub Exploit DB Packet Storm
224615 7.5 HIGH
Network 		tendermint tendermint Due to support of Gzip compression in request bodies, as well as a lack of limiting response body sizes, a malicious server can cause a client to consume a significant amount of system resources, whi… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-25072 2024-11-21 13:39 2022-12-28 Show GitHub Exploit DB Packet Storm
224616 6.1 MEDIUM
Network 		sangoma freepbx A vulnerability was found in FreePBX arimanager up to 13.0.5.3 and classified as problematic. Affected by this issue is some unknown functionality of the component Views Handler. The manipulation of … - CVE-2019-25090 2024-11-21 13:39 2022-12-27 Show GitHub Exploit DB Packet Storm
224617 7.5 HIGH
Network 		muon_project muon A vulnerability has been found in Morgawr Muon 0.1.1 and classified as problematic. Affected by this vulnerability is an unknown functionality of the file src/muon/handler.clj. The manipulation leads… - CVE-2019-25089 2024-11-21 13:39 2022-12-27 Show GitHub Exploit DB Packet Storm
224618 7.5 HIGH
Network 		httpserver_project httpserver A vulnerability was found in RamseyK httpserver. It has been rated as critical. This issue affects the function ResourceHost::getResource of the file src/ResourceHost.cpp of the component URI Handler… CWE-22
Path Traversal 		CVE-2019-25087 2024-11-21 13:39 2022-12-27 Show GitHub Exploit DB Packet Storm
224619 5.4 MEDIUM
Network 		open open_media_player A vulnerability was found in IET-OU Open Media Player up to 1.5.0. It has been declared as problematic. This vulnerability affects the function webvtt of the file application/controllers/timedtext.ph… CWE-79
Cross-site Scripting 		CVE-2019-25086 2024-11-21 13:39 2022-12-27 Show GitHub Exploit DB Packet Storm
224620 8.8 HIGH
Network 		gnome gvariant_database A vulnerability was found in GNOME gvdb. It has been classified as critical. This affects the function gvdb_table_write_contents_async of the file gvdb-builder.c. The manipulation leads to use after … - CVE-2019-25085 2024-11-21 13:39 2022-12-26 Show GitHub Exploit DB Packet Storm