Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244561 3.5 注意 brim-project - Brim の Bookmarks プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4083 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244562 4.6 警告 brim-project - Brim の Tasks プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4082 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244563 6.5 警告 LedgerSMB
dws systems inc.
sql-ledger		 - LSMB などにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4078 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244564 7.8 危険 LedgerSMB
dws systems inc.
sql-ledger		 - LSMB の CGI スクリプトにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4077 2012-06-26 16:02 2008-08-26 Show GitHub Exploit DB Packet Storm
244565 6.8 警告 Dino - D-iscussion Board の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4075 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244566 5 警告 マイクロソフト
アドビシステムズ		 - Adobe Acrobat の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4071 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244567 4.3 警告 XOOPS
有限会社ブルームーン		 - XOOPS 用の Bluemoon PopnupBLOG モジュールの index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4053 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
244568 9.3 危険 friendly technologies - Friendly Technologies FriendlyPPPoE Client における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4050 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
244569 6.8 警告 friendly technologies - Friendly Technologies FriendlyPPPoE Client の fwRemoteCfg.dll における任意のプログラムを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4049 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
244570 6.8 警告 friendly technologies - Friendly Technologies FriendlyPPPoE Client の fwRemoteCfg.dll におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4048 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219201 6.1 MEDIUM
Network 		wpape ape_gallery The wpape APE GALLERY plugin 1.6.14 for WordPress has stored XSS via the classGallery.php getCategories function. CWE-79
Cross-site Scripting 		CVE-2019-6117 2024-11-21 13:45 2019-04-10 Show GitHub Exploit DB Packet Storm
219202 6.5 MEDIUM
Network 		rapid7 insightvm Users with Site-level permissions can access files containing the username-encrypted passwords of Security Console Global Administrators and clear-text passwords for restoring backups, as well as the… CWE-522
 Insufficiently Protected Credentials 		CVE-2019-5615 2024-11-21 13:45 2019-04-10 Show GitHub Exploit DB Packet Storm
219203 8.8 HIGH
Network 		vmware fusion
workstation 		VMware Workstation (14.x before 14.1.6) and Fusion (10.x before 10.1.6) contain an out-of-bounds write vulnerability in the e1000 virtual network adapter. This issue may allow a guest to execute code… CWE-787
 Out-of-bounds Write 		CVE-2019-5524 2024-11-21 13:45 2019-04-3 Show GitHub Exploit DB Packet Storm
219204 8.8 HIGH
Network 		vmware fusion
workstation 		VMware Workstation (15.x before 15.0.3, 14.x before 14.1.6) and Fusion (11.x before 11.0.3, 10.x before 10.1.6) updates address an out-of-bounds write vulnerability in the e1000 and e1000e virtual ne… CWE-787
 Out-of-bounds Write 		CVE-2019-5515 2024-11-21 13:45 2019-04-3 Show GitHub Exploit DB Packet Storm
219205 6.8 MEDIUM
Physics 		vmware fusion
workstation
esxi 		VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, 10.x before 1… CWE-367
 Time-of-check Time-of-use (TOCTOU) Race Condition 		CVE-2019-5519 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
219206 8.8 HIGH
Network 		vmware fusion VMware VMware Fusion (11.x before 11.0.3) contains a security vulnerability due to certain unauthenticated APIs accessible through a web socket. An attacker may exploit this issue by tricking the hos… CWE-306
Missing Authentication for Critical Function 		CVE-2019-5514 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
219207 6.8 MEDIUM
Physics 		vmware fusion
workstation
esxi 		VMware ESXi (6.7 before ESXi670-201903001, 6.5 before ESXi650-201903001, 6.0 before ESXi600-201903001), Workstation (15.x before 15.0.4, 14.x before 14.1.7), Fusion (11.x before 11.0.3, 10.x before 1… CWE-125
CWE-787
Out-of-bounds Read
 Out-of-bounds Write 		CVE-2019-5518 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
219208 9.8 CRITICAL
Network 		vmware vcloud_director VMware vCloud Director for Service Providers 9.5.x prior to 9.5.0.3 update resolves a Remote Session Hijack vulnerability in the Tenant and Provider Portals. Successful exploitation of this issue may… CWE-384
 Session Fixation 		CVE-2019-5523 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
219209 9.8 CRITICAL
Network 		overit geocall An issue was discovered in OverIT Geocall 6.3 before build 2:346977. An unauthenticated servlet allows an attacker to obtain a cookie of an authenticated user, and login to the web application. NVD-CWE-noinfo
CVE-2019-5891 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm
219210 8.8 HIGH
Network 		overit geocall An issue was discovered in OverIT Geocall 6.3 before build 2:346977. Weak authentication and session management allows an authenticated user to obtain access to the Administrative control panel and e… CWE-287
Improper Authentication 		CVE-2019-5890 2024-11-21 13:45 2019-04-2 Show GitHub Exploit DB Packet Storm