Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244411 7.5 危険 bpowerhouse - Mini Blog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5594 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
244412 7.5 危険 bpowerhouse - Mini CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5593 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
244413 6.8 警告 check up - Check Up New Generation の findoffice.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5586 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
244414 7.5 危険 adcomplete - Poll Pro のログイン機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5573 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
244415 5 警告 dotnetindex - Professional Download Assistant におけるデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5572 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
244416 7.5 危険 dotnetindex - Professional Download Assistant の admin/login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5571 2012-06-26 16:03 2008-12-15 Show GitHub Exploit DB Packet Storm
244417 7.5 危険 Activewebsoftwares - Active eWebquiz の start.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5631 2012-06-26 16:03 2008-12-17 Show GitHub Exploit DB Packet Storm
244418 7.5 危険 Activewebsoftwares - Active Trade の account.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5627 2012-06-26 16:03 2008-12-17 Show GitHub Exploit DB Packet Storm
244419 4 警告 dxmsoft - XM Easy Personal FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5626 2012-06-26 16:03 2008-12-17 Show GitHub Exploit DB Packet Storm
244420 5 警告 aspapps - ASP AutoDealer におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5608 2012-06-26 16:03 2008-12-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219571 8.8 HIGH
Local 		vmware workstation
horizon
remote_console
fusion
esxi 		ESXi, Workstation, Fusion, VMRC and Horizon Client contain a use-after-free vulnerability in the virtual sound device. VMware has evaluated the severity of this issue to be in the Important severity … CWE-416
 Use After Free 		CVE-2019-5527 2024-11-21 13:45 2019-10-11 Show GitHub Exploit DB Packet Storm
219572 7.8 HIGH
Local 		nvidia shield_experience NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra software contains a vulnerability in the bootloader, where it does not validate the fields of the boot image, which may lead to code executio… CWE-20
 Improper Input Validation  		CVE-2019-5700 2024-11-21 13:45 2019-10-10 Show GitHub Exploit DB Packet Storm
219573 7.8 HIGH
Local 		nvidia shield_experience NVIDIA Shield TV Experience prior to v8.0.1, NVIDIA Tegra bootloader contains a vulnerability where the software performs an incorrect bounds check, which may lead to buffer overflow resulting in esc… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-5699 2024-11-21 13:45 2019-10-10 Show GitHub Exploit DB Packet Storm
219574 5.5 MEDIUM
Local 		netapp snapmanager SnapManager for Oracle prior to version 3.4.2P1 are susceptible to a vulnerability which when successfully exploited could lead to disclosure of sensitive information. NVD-CWE-noinfo
CVE-2019-5507 2024-11-21 13:45 2019-10-10 Show GitHub Exploit DB Packet Storm
219575 5.9 MEDIUM
Network 		netapp clustered_data_ontap Clustered Data ONTAP versions 9.0 and higher do not enforce hostname verification under certain circumstances making them susceptible to impersonation via man-in-the-middle attacks. CWE-295
Improper Certificate Validation  		CVE-2019-5506 2024-11-21 13:45 2019-10-10 Show GitHub Exploit DB Packet Storm
219576 7.5 HIGH
Network 		fon fon2601e-se_firmware
fon2601e-re_firmware
fon2601e-fsw-s_firmware
fon2601e-fsw-b_firmware 		FON2601E-SE, FON2601E-RE, FON2601E-FSW-S, and FON2601E-FSW-B with firmware versions 1.1.7 and earlier contain an issue where they may behave as open resolvers. If this vulnerability is exploited, FON… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-6015 2024-11-21 13:45 2019-10-5 Show GitHub Exploit DB Packet Storm
219577 9.8 CRITICAL
Network 		netapp ontap_select_deploy_administration_utility ONTAP Select Deploy administration utility versions 2.2 through 2.12.1 transmit credentials in plaintext. CWE-319
CWE-522
Cleartext Transmission of Sensitive Information
 Insufficiently Protected Credentials 		CVE-2019-5505 2024-11-21 13:45 2019-09-25 Show GitHub Exploit DB Packet Storm
219578 9.8 CRITICAL
Network 		netapp ontap_select_deploy_administration_utility ONTAP Select Deploy administration utility versions 2.12 & 2.12.1 ship with an HTTP service bound to the network allowing unauthenticated remote attackers to perform administrative actions. CWE-306
Missing Authentication for Critical Function 		CVE-2019-5504 2024-11-21 13:45 2019-09-25 Show GitHub Exploit DB Packet Storm
219579 9.6 CRITICAL
Network 		vmware fusion
workstation
esxi 		VMware ESXi (6.7 before ESXi670-201904101-SG and 6.5 before ESXi650-201903001), Workstation (15.x before 15.0.3 and 14.x before 14.1.6) and Fusion (11.x before 11.0.3 and 10.x before 10.1.6) contain … CWE-125
Out-of-bounds Read 		CVE-2019-5521 2024-11-21 13:45 2019-09-21 Show GitHub Exploit DB Packet Storm
219580 7.8 HIGH
Local 		linecorp line Integer overflow vulnerability in LINE(Android) from 4.4.0 to the version before 9.15.1 allows remote attackers to cause a denial of service (DoS) condition or execute arbitrary code via a specially … CWE-190
 Integer Overflow or Wraparound 		CVE-2019-6010 2024-11-21 13:45 2019-09-19 Show GitHub Exploit DB Packet Storm