Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 26, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244461 6.9 警告 アップル - CUPS の pstopdf における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5377 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
244462 6.9 警告 crip - crip の editcomment における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5376 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
244463 6.9 警告 cmus - cmus の cmus-status-display における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-5375 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
244464 7.5 危険 Activewebsoftwares - ActiveWebSoftwares ActiveVotes の VoteHistory.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5365 2012-06-26 16:03 2008-12-8 Show GitHub Exploit DB Packet Storm
244465 7.5 危険 bdigital web solutions - WebStudio CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5336 2012-06-26 16:03 2008-12-4 Show GitHub Exploit DB Packet Storm
244466 4.3 警告 easy-script - Wysi Wiki Wyg の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5323 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
244467 7.8 危険 easy-script - Wysi Wiki Wyg におけるシステム情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-5322 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
244468 6.5 警告 e107.org - e107 の usersettings.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5320 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
244469 7.8 危険 アップル
マイクロソフト		 - Apple iPhone Configuration Web Utility の Web インターフェースにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5315 2012-06-26 16:03 2008-12-3 Show GitHub Exploit DB Packet Storm
244470 6.8 警告 Bharat Mediratta - Gallery における管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-5296 2012-06-26 16:03 2008-11-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 26, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219171 4.3 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 4.10.1 allows remote authenticated attackers to bypass access restriction to change user information without access privileges via the Item function of User Information. NVD-CWE-noinfo
CVE-2019-5935 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219172 7.2 HIGH
Network 		cybozu garoon SQL injection vulnerability in the Cybozu Garoon 4.0.0 to 4.10.0 allows attacker with administrator rights to execute arbitrary SQL commands via the Log Search function of application 'logging'. CWE-89
SQL Injection 		CVE-2019-5934 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219173 4.3 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 4.10.0 allows remote authenticated attackers to bypass access restriction to view the Bulletin Board without view privileges via the application 'Bulletin'. NVD-CWE-noinfo
CVE-2019-5933 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219174 4.8 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 4.6.0 to 4.6.3 allows remote authenticated attackers to inject arbitrary web script or HTML via the application 'Portal'. CWE-79
Cross-site Scripting 		CVE-2019-5932 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219175 8.7 HIGH
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 4.6.3 allows authenticated attackers to alter the information with privileges invoking the installer via unspecified vectors. CWE-20
 Improper Input Validation  		CVE-2019-5931 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219176 4.3 MEDIUM
Network 		cybozu garoon Cybozu Garoon 4.0.0 to 4.6.3 allows remote attackers to bypass access restriction to browse unauthorized pages via the application 'Management of Basic System'. NVD-CWE-noinfo
CVE-2019-5930 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219177 6.1 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote attackers to inject arbitrary web script or HTML via the application 'Memo'. CWE-79
Cross-site Scripting 		CVE-2019-5929 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219178 6.1 MEDIUM
Network 		cybozu garoon Cross-site scripting vulnerability in Cybozu Garoon 4.0.0 to 4.6.3 allows remote attackers to inject arbitrary web script or HTML via Customize Item function. CWE-79
Cross-site Scripting 		CVE-2019-5928 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219179 9.1 CRITICAL
Network 		gitlab gitlab An Incorrect Access Control issue was discovered in GitLab Community and Enterprise Edition 6.0 and later but before 11.3.11, 11.4.x before 11.4.8, and 11.5.x before 11.5.1. The issue comments featur… NVD-CWE-noinfo
CVE-2019-5883 2024-11-21 13:45 2019-05-18 Show GitHub Exploit DB Packet Storm
219180 7.5 HIGH
Network 		freebsd freebsd In FreeBSD 11.3-PRERELEASE before r345378, 12.0-STABLE before r345377, 11.2-RELEASE before 11.2-RELEASE-p10, and 12.0-RELEASE before 12.0-RELEASE-p4, a bug in pf does not check if the outer ICMP or I… CWE-20
 Improper Input Validation  		CVE-2019-5598 2024-11-21 13:45 2019-05-16 Show GitHub Exploit DB Packet Storm