Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230431 4.3 警告 softpedia - Softpedia SiteXS CMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2046 2012-12-20 18:52 2008-05-1 Show GitHub Exploit DB Packet Storm
230432 5 警告 SugarCRM - SugarCRM Sugar Community Edition における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2045 2012-12-20 18:52 2008-04-10 Show GitHub Exploit DB Packet Storm
230433 6.5 警告 turnkey solutions - Turnkey Web Tools SunShop Shopping Cart の admin/adminindex.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2038 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
230434 7.5 危険 Mike Jolley - WordPress 用の Download Monitor プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2034 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
230435 7.5 危険 WordPress.org - WordPress 用の Spreadsheet プラグインの ss_load.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1982 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
230436 7.5 危険 phphq - phShoutBox Final における権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-1971 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
230437 7.5 危険 quate - Quate Grape Web Statistics の includes/functions.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1963 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230438 7.5 危険 sipp - SIPp の call.cpp の get_remote_video_port_media 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1959 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230439 4.3 警告 wikepage - Wikepage Opus の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1956 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230440 4.3 警告 Toocharger - Martin BOUCHER MyBoard の rep.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1955 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223591 8.8 HIGH
Network 		google android In numerous hand-crafted functions in libmpeg2, NEON registers are not preserved. This could lead to remote code execution with no additional execution privileges needed. User interaction is needed f… CWE-20
 Improper Input Validation  		CVE-2019-2028 2024-11-21 13:40 2019-04-20 Show GitHub Exploit DB Packet Storm
223592 8.8 HIGH
Network 		google android In floor0_inverse1 of floor0.c, there is a possible out of bounds write due to an incorrect bounds check. This could lead to remote code execution with no additional execution privileges needed. User… CWE-787
 Out-of-bounds Write 		CVE-2019-2027 2024-11-21 13:40 2019-04-20 Show GitHub Exploit DB Packet Storm
223593 7.8 HIGH
Local 		google android In updateAssistMenuItems of Editor.java, there is a possible escape from the Setup Wizard due to a missing permission check. This could lead to local escalation of privilege and FRP bypass with no ad… CWE-862
 Missing Authorization 		CVE-2019-2026 2024-11-21 13:40 2019-04-20 Show GitHub Exploit DB Packet Storm
223594 7.3 HIGH
Network 		oracle retail_convenience_store_back_office Vulnerability in the Oracle Retail Convenience Store Back Office component of Oracle Retail Applications (subcomponent: Level 3 Maintenance Functions). The supported version that is affected is 3.6. … NVD-CWE-noinfo
CVE-2019-2424 2024-11-21 13:40 2019-04-24 Show GitHub Exploit DB Packet Storm
223595 5.5 MEDIUM
Local 		google android The permissions on /proc/iomem were world-readable. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation. Pr… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-2001 2024-11-21 13:40 2019-03-1 Show GitHub Exploit DB Packet Storm
223596 7.8 HIGH
Local 		google android In several functions of binder.c, there is possible memory corruption due to a use after free. This could lead to local escalation of privilege with no additional execution privileges needed. User in… CWE-787
CWE-416
 Out-of-bounds Write
 Use After Free 		CVE-2019-2000 2024-11-21 13:40 2019-03-1 Show GitHub Exploit DB Packet Storm
223597 3.8 LOW
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2501 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm
223598 8.8 HIGH
Local 		oracle vm_virtualbox Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Core). Supported versions that are affected are prior to 5.2.24 and prior to 6.0.2. Easily exploitable vuln… NVD-CWE-noinfo
CVE-2019-2500 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm
223599 6.1 MEDIUM
Network 		oracle peoplesoft_enterprise_peopletools Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: PIA Search Functionality). Supported versions that are affected are 8.55, 8.56 and 8.57. … NVD-CWE-noinfo
CVE-2019-2499 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm
223600 8.2 HIGH
Network 		oracle e-business_suite Vulnerability in the Oracle Partner Management component of Oracle E-Business Suite (subcomponent: Partner Dash board). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4… NVD-CWE-noinfo
CVE-2019-2498 2024-11-21 13:40 2019-01-17 Show GitHub Exploit DB Packet Storm