Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
244311	7.5	危険	Activewebsoftwares	-	Active Price Comparison の login.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5974	2012-06-26 16:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

244312	7.5	危険	Activewebsoftwares	-	Active Web Mail の login.aspx における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5973	2012-06-26 16:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

244313	7.5	危険	Activewebsoftwares	-	Active Business Directory の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5972	2012-06-26 16:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

244314	7.5	危険	globsy	-	Globsy の globsy_edit.php における任意のファイルを上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-5966	2012-06-26 16:10	2009-01-26	Show	GitHub Exploit DB Packet Storm

244315	10	危険	gravity-gtd	-	Gravity GTD の library/setup/rpc.php における任意の PHP コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5963	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

244316	6.8	警告	gravity-gtd	-	Gravity GTD の library/setup/rpc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-5962	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

244317	7.5	危険	Activewebsoftwares	-	Active Test の start.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5959	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

244318	7.5	危険	Activewebsoftwares	-	Active Test における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5958	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

244319	5	警告	aspapps	-	ASP Template Creature におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5951	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

244320	7.5	危険	aspapps	-	ASP Template Creature の media/media_level.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5950	2012-06-26 16:10	2009-01-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220021	7.5	HIGH Network	huawei	usg9500_firmware	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a heap buffer overflow …	CWE-787 Out-of-bounds Write	CVE-2019-5275	2024-11-21 13:44	2019-12-27	Show	GitHub Exploit DB Packet Storm

220022	7.5	HIGH Network	huawei	usg9500_firmware	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in an infinite loop, an at…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-5274	2024-11-21 13:44	2019-12-27	Show	GitHub Exploit DB Packet Storm

220023	7.5	HIGH Network	huawei	usg9500_firmware	USG9500 with versions of V500R001C30;V500R001C60 have a denial of service vulnerability. Due to a flaw in the X.509 implementation in the affected products which can result in a large heap buffer ove…	CWE-120 Classic Buffer Overflow	CVE-2019-5273	2024-11-21 13:44	2019-12-27	Show	GitHub Exploit DB Packet Storm

220024	4.9	MEDIUM Network	huawei	usg9500_firmware	USG9500 with versions of V500R001C30;V500R001C60 have a missing integrity checking vulnerability. The software of the affected products does not check the integrity which may allow an attacker with h…	CWE-354 Improper Validation of Integrity Check Value	CVE-2019-5272	2024-11-21 13:44	2019-12-27	Show	GitHub Exploit DB Packet Storm

220025	6.5	MEDIUM Adjacent	linux debian canonical netapp oracle	linux_kernel debian_linux ubuntu_linux cloud_backup steelstore_cloud_integrated_storage data_availability_services solidfire hci_management_node active_iq_unified_manager e…	An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for statio…	CWE-287 Improper Authentication	CVE-2019-5108	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

220026	8.8	HIGH Adjacent	huawei	elle-al00b_firmware	Huawei smart phones with earlier versions than ELLE-AL00B 9.1.0.222(C00E220R2P1) have a buffer overflow vulnerability. An attacker may intercept and tamper with the packet in the local area network (…	CWE-120 Classic Buffer Overflow	CVE-2019-5276	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

220027	5.5	MEDIUM Local	huawei	oceanstor_sns3096_firmware	Huawei OceanStor SNS3096 V100R002C01 have an information disclosure vulnerability. Attackers with low privilege can exploit this vulnerability by performing some specific operations. Successful explo…	NVD-CWE-noinfo	CVE-2019-5267	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

220028	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an insufficient input validation vulnerability. Attackers can exploit this vulnerability by sending crafted packets to the affected …	CWE-20 Improper Input Validation	CVE-2019-5266	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

220029	7.5	HIGH Network	huawei	p30_firmware	Huawei Share function in P30 9.1.0.193(C00E190R2P1) smartphone has an improper access control vulnerability. The function incorrectly controls certain access messages, attackers can simulate a sender…	NVD-CWE-noinfo	CVE-2019-5265	2024-11-21 13:44	2019-12-24	Show	GitHub Exploit DB Packet Storm

220030	6.1	MEDIUM Network	ibm	financial_transaction_manager_for_multiplatform	IBM Financial Transaction Manager 3.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality …	CWE-79 Cross-site Scripting	CVE-2019-4744	2024-11-21 13:44	2019-12-21	Show	GitHub Exploit DB Packet Storm