Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230361	10	危険	TYPO3 Association	-	TYPO3 Secure Directory エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4188	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

230362	4.3	警告	proactive cms	-	ProActive CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4187	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

230363	7.5	危険	webcms	-	webCMS Portal Edition の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4186	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

230364	9.3	危険	systemrequirementslab	-	Instant Expert Analysis で使用されている LLC Systems Requirements Lab における強制的にダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-4385	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

230365	7.8	危険	サムスン	-	Samsung DVR の Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4380	2012-12-20 18:52	2008-10-1	Show	GitHub Exploit DB Packet Storm

230366	4.3	警告	siteman	-	Siteman の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4365	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230367	7.8	危険	powerportal	-	PowerPortal におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4361	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230368	10	危険	spaw editor	-	SPAW Editor PHP Edtion の class/theme.class.php における脆弱性	CWE-20 不適切な入力確認	CVE-2008-4358	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230369	7.5	危険	Powie	-	Powie pLink の linkto.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4357	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

230370	7.5	危険	Powie	-	Powie PSCRIPT Forum の showprofil.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4355	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222511	4.1	MEDIUM Network	wso2	api_manager	An issue was discovered in WSO2 API Manager 2.6.0. It is possible to force the application to perform requests to the internal workstation (SSRF port-scanning), other adjacent workstations (SSRF netw…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-6512	2024-11-21 13:46	2019-05-15	Show	GitHub Exploit DB Packet Storm

222512	7.8	HIGH Local	ge	ge_communicator	GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to…	NVD-CWE-Other	CVE-2019-6566	2024-11-21 13:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

222513	7.8	HIGH Local	ge	ge_communicator	GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privi…	CWE-427 Uncontrolled Search Path Element	CVE-2019-6564	2024-11-21 13:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

222514	9.8	CRITICAL Network	ge	ge_communicator	GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Wind…	CWE-798 Use of Hard-coded Credentials	CVE-2019-6548	2024-11-21 13:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

222515	7.8	HIGH Local	ge	ge_communicator	GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI eleme…	CWE-427 Uncontrolled Search Path Element	CVE-2019-6546	2024-11-21 13:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

222516	5.6	MEDIUM Network	ge	ge_communicator	GE Communicator, all versions prior to 4.0.517, has a service running with system privileges that may allow an unprivileged user to perform certain administrative actions, which may allow the executi…	NVD-CWE-Other	CVE-2019-6544	2024-11-21 13:46	2019-05-10	Show	GitHub Exploit DB Packet Storm

222517	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_link_controller big-ip_policy_enforcement_manager big-ip_webaccelerator …	On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, the Traffic Management Microkernel (TMM) may restart when a virtual server has an HTTP/2 profile with Application Layer Protocol Negotia…	NVD-CWE-noinfo	CVE-2019-6619	2024-11-21 13:46	2019-05-4	Show	GitHub Exploit DB Packet Storm

222518	4.9	MEDIUM Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_link_controller big-ip_policy_enforcement_manager big-ip_webaccelerator …	On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, users with the Resource Administrator role can modify sensitive portions of the filesystem if provided A…	NVD-CWE-noinfo	CVE-2019-6618	2024-11-21 13:46	2019-05-4	Show	GitHub Exploit DB Packet Storm

222519	6.5	MEDIUM Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_link_controller big-ip_policy_enforcement_manager big-ip_webaccelerator …	On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, a user with the Resource Administrator role is able to overwrite sensitive low-level files (such as /etc…	CWE-269 Improper Privilege Management	CVE-2019-6617	2024-11-21 13:46	2019-05-4	Show	GitHub Exploit DB Packet Storm

222520	7.2	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_application_acceleration_manager big-ip_link_controller big-ip_policy_enforcement_manager big-ip_webaccelerator …	On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, administrative users with TMSH access can overwrite critical system files on BIG-IP which can result in …	NVD-CWE-noinfo	CVE-2019-6616	2024-11-21 13:46	2019-05-4	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed