Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244151 5 警告 Coppermine Photo Gallery - Coppermine Photo Gallery (CPG) におけるデータベーステーブルの接頭語などの重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7186 2012-06-26 16:10 2009-09-9 Show GitHub Exploit DB Packet Storm
244152 4.3 警告 GNOME Project - GNOME Rhythmbox におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7185 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244153 4.3 警告 diigo - Diigo Toolbar および Diigolet におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7184 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244154 6.8 警告 evacms - EVA CMS の eva/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-7183 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244155 7.5 危険 butterflymedia - Butterfly Organizer における任意のアカウントを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7181 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244156 6.8 警告 celina jorge - Facil CMS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7176 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244157 4.3 警告 Imagely
WordPress.org		 - Wordpress の NextGEN Gallery プラグインの wp-admin/admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-7175 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244158 10 危険 gameservers - GSC における任意の管理者コマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7170 2012-06-26 16:10 2009-09-8 Show GitHub Exploit DB Packet Storm
244159 5 警告 BitTorrent, Inc. - BitTorrent および uTorrent の Web インターフェースにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-7166 2012-06-26 16:10 2009-09-4 Show GitHub Exploit DB Packet Storm
244160 6.8 警告 alice - TELECOM ITALIA Alice Gate2 Plus Wi-Fi の管理者パネルにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-7165 2012-06-26 16:10 2009-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219951 5.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to force the application to perform requests to the internal workstation (port-scanning) and to perform requests to adjacent wor… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6516 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
219952 5.3 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. Uploaded documents for API documentation are available to an unauthenticated user. NVD-CWE-noinfo
CVE-2019-6515 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
219953 4.8 MEDIUM
Network 		wso2 dashboard_server An issue was discovered in WSO2 Dashboard Server 2.0.0. It is possible to inject a JavaScript payload that will be stored in the database and then displayed and executed on the same page, aka XSS. CWE-79
Cross-site Scripting 		CVE-2019-6514 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
219954 4.1 MEDIUM
Network 		wso2 api_manager An issue was discovered in WSO2 API Manager 2.6.0. It is possible to force the application to perform requests to the internal workstation (SSRF port-scanning), other adjacent workstations (SSRF netw… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-6512 2024-11-21 13:46 2019-05-15 Show GitHub Exploit DB Packet Storm
219955 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to replace the uninstaller with a malicious version, which could allow an attacker to gain administrator privileges to… NVD-CWE-Other
CVE-2019-6566 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
219956 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows a non-administrative user to place malicious files within the installer file directory, which may allow an attacker to gain administrative privi… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6564 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
219957 9.8 CRITICAL
Network 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, contains two backdoor accounts with hardcoded credentials, which may allow control over the database. This service is inaccessible to attackers if Wind… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-6548 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
219958 7.8 HIGH
Local 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, allows an attacker to place malicious files within the working directory of the program, which may allow an attacker to manipulate widgets and UI eleme… CWE-427
 Uncontrolled Search Path Element 		CVE-2019-6546 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
219959 5.6 MEDIUM
Network 		ge ge_communicator GE Communicator, all versions prior to 4.0.517, has a service running with system privileges that may allow an unprivileged user to perform certain administrative actions, which may allow the executi… NVD-CWE-Other
CVE-2019-6544 2024-11-21 13:46 2019-05-10 Show GitHub Exploit DB Packet Storm
219960 7.5 HIGH
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_link_controller
big-ip_policy_enforcement_manager
big-ip_webaccelerator
 On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, the Traffic Management Microkernel (TMM) may restart when a virtual server has an HTTP/2 profile with Application Layer Protocol Negotia… NVD-CWE-noinfo
CVE-2019-6619 2024-11-21 13:46 2019-05-4 Show GitHub Exploit DB Packet Storm