Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244741 7.5 危険 couponscript - PHP Coupon Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4090 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244742 6.8 警告 acoustica - Acoustica Beatcraft におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4087 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244743 3.5 注意 brim-project - Brim の Bookmarks プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4083 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244744 4.6 警告 brim-project - Brim の Tasks プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4082 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244745 6.5 警告 LedgerSMB
dws systems inc.
sql-ledger		 - LSMB などにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4078 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244746 7.8 危険 LedgerSMB
dws systems inc.
sql-ledger		 - LSMB の CGI スクリプトにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4077 2012-06-26 16:02 2008-08-26 Show GitHub Exploit DB Packet Storm
244747 6.8 警告 Dino - D-iscussion Board の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4075 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244748 5 警告 マイクロソフト
アドビシステムズ		 - Adobe Acrobat の特定の ActiveX コントロールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4071 2012-06-26 16:02 2008-09-15 Show GitHub Exploit DB Packet Storm
244749 4.3 警告 XOOPS
有限会社ブルームーン		 - XOOPS 用の Bluemoon PopnupBLOG モジュールの index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4053 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
244750 9.3 危険 friendly technologies - Friendly Technologies FriendlyPPPoE Client における任意のファイルを読まれる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4050 2012-06-26 16:02 2008-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218921 7.5 HIGH
Network 		citrix sharefile Citrix ShareFile before 19.12 allows User Enumeration. It is possible to enumerate application username based on different server responses using the request to check the otp code. No authentication … CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-7217 2024-11-21 13:47 2019-05-14 Show GitHub Exploit DB Packet Storm
218922 7.5 HIGH
Network 		qnap myqnapcloud Buffer Overflow vulnerability in myQNAPcloud Connect 1.3.3.0925 and earlier could allow remote attackers to crash the program. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-7181 2024-11-21 13:47 2019-05-10 Show GitHub Exploit DB Packet Storm
218923 9.8 CRITICAL
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 allows deserialization of untrusted data. An unauthenticated attacker could run commands on the server when port 17001 was remotely accessible. This po… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-7214 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
218924 6.5 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 allows directory traversal. An authenticated user could delete arbitrary files or could create files in new folders in arbitrary locations on the mail … CWE-22
Path Traversal 		CVE-2019-7213 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
218925 8.2 HIGH
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6985 has hardcoded secret keys. An unauthenticated attacker could access other users’ emails and file attachments. It was also possible to interact with mai… CWE-798
 Use of Hard-coded Credentials 		CVE-2019-7212 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
218926 6.1 MEDIUM
Network 		smartertools smartermail SmarterTools SmarterMail 16.x before build 6995 has stored XSS. JavaScript code could be executed on the application by opening a malicious email or when viewing a malicious file attachment. CWE-79
Cross-site Scripting 		CVE-2019-7211 2024-11-21 13:47 2019-04-25 Show GitHub Exploit DB Packet Storm
218927 9.8 CRITICAL
Network 		canonical snapd
ubuntu_linux 		Canonical snapd before version 2.37.1 incorrectly performed socket owner validation, allowing an attacker to run arbitrary commands as root. This issue affects: Canonical snapd versions prior to 2.37… CWE-863
 Incorrect Authorization 		CVE-2019-7304 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
218928 7.5 HIGH
Network 		canonical snapd
ubuntu_linux 		A vulnerability in the seccomp filters of Canonical snapd before version 2.37.4 allows a strict mode snap to insert characters into a terminal on a 64-bit host. The seccomp rules were generated to ma… NVD-CWE-Other
CVE-2019-7303 2024-11-21 13:47 2019-04-24 Show GitHub Exploit DB Packet Storm
218929 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.x, 10.x, and 11.x before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control. A user retains t… CWE-269
 Improper Privilege Management 		CVE-2019-7155 2024-11-21 13:47 2019-04-17 Show GitHub Exploit DB Packet Storm
218930 6.1 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 2 of 2). The user status field contains a lack o… CWE-79
Cross-site Scripting 		CVE-2019-6796 2024-11-21 13:47 2019-04-12 Show GitHub Exploit DB Packet Storm