Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230171 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Visa Zone の view_news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4462 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
230172 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Dating Zone の advanced_search_results.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4461 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
230173 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech MMORPG Zone の game.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4460 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
230174 6.8 警告 positive software - Positive Software H-Sphere WebShell の actions.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4448 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
230175 4.3 警告 positive software - Positive Software H-Sphere WebShell の actions.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4447 2012-12-20 18:52 2008-10-6 Show GitHub Exploit DB Packet Storm
230176 4.3 警告 rmsoft - Xoops 用の rmdp モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4435 2012-12-20 18:52 2008-10-3 Show GitHub Exploit DB Packet Storm
230177 7.5 危険 rmsoft - Xoops 用の RMSOFT MiniShop モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4433 2012-12-20 18:52 2008-10-3 Show GitHub Exploit DB Packet Storm
230178 4.3 警告 rmsoft - Xoops 用の RMSOFT MiniShop モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4432 2012-12-20 18:52 2008-10-3 Show GitHub Exploit DB Packet Storm
230179 5 警告 トレンドマイクロ - Trend Micro OfficeScan のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4403 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
230180 10 危険 トレンドマイクロ - Trend Micro OfficeScan のサーバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4402 2012-12-20 18:52 2008-09-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224141 4.9 MEDIUM
Network 		oracle mysql Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Optimizer). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and prior. Easily… NVD-CWE-noinfo
CVE-2019-2507 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224142 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2506 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224143 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2505 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224144 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2504 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224145 6.4 MEDIUM
Adjacent 		oracle
mariadb
netapp
canonical
redhat 		mysql
mariadb
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterp… 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: Server: Connection Handling). Supported versions that are affected are 5.6.42 and prior, 5.7.24 and prior and 8.0.13 and pri… NVD-CWE-noinfo
CVE-2019-2503 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224146 4.9 MEDIUM
Network 		oracle
netapp 		mysql
oncommand_unified_manager
snapcenter
oncommand_workflow_automation
oncommand_insight 		Vulnerability in the MySQL Server component of Oracle MySQL (subcomponent: InnoDB). Supported versions that are affected are 8.0.13 and prior. Easily exploitable vulnerability allows high privileged … NVD-CWE-noinfo
CVE-2019-2502 2024-11-21 13:41 2019-01-17 Show GitHub Exploit DB Packet Storm
224147 - - - parseWildcardRules in Gin-Gonic CORS middleware before 1.6.0 mishandles a wildcard at the end of an origin string, e.g., https://example.community/* is allowed when the intention is that only https:/… - CVE-2019-25211 2024-11-21 13:40 2024-06-29 Show GitHub Exploit DB Packet Storm
224148 - - - An issue was discovered in Cloud Native Computing Foundation (CNCF) Helm through 3.13.3. It displays values of secrets when the --dry-run flag is used. This is a security concern in some use cases, s… - CVE-2019-25210 2024-11-21 13:40 2024-03-4 Show GitHub Exploit DB Packet Storm
224149 7.8 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: i2c: Fix a potential use after free Free the adap structure only after we are done using it. This patch just moves the put_device… CWE-416
 Use After Free 		CVE-2019-25162 2024-11-21 13:40 2024-02-27 Show GitHub Exploit DB Packet Storm
224150 7.1 HIGH
Local 		linux linux_kernel In the Linux kernel, the following vulnerability has been resolved: netlabel: fix out-of-bounds memory accesses There are two array out-of-bounds memory accesses, one in cipso_v4_map_lvl_valid(), t… CWE-125
Out-of-bounds Read 		CVE-2019-25160 2024-11-21 13:40 2024-02-27 Show GitHub Exploit DB Packet Storm