Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244751 4.3 警告 アルバネットワークス株式会社 - Aruba Mobility Controller の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2272 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
244752 7.5 危険 CMS Made Simple - CMS Made Simple の FileManager モジュールの Postlet の javaUpload.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2267 2012-06-26 16:02 2008-05-16 Show GitHub Exploit DB Packet Storm
244753 7.5 危険 Emophp Programming - EMO Realty Manager の news.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2265 2012-06-26 16:02 2008-05-16 Show GitHub Exploit DB Packet Storm
244754 7.5 危険 cmsnx - Automated Link Exchange Portal の linking.page.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2263 2012-06-26 16:02 2008-05-16 Show GitHub Exploit DB Packet Storm
244755 4.6 警告 afuse - afuse の expand_template 関数における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2232 2012-06-26 16:02 2008-07-17 Show GitHub Exploit DB Packet Storm
244756 9.3 危険 cyberfolio - Cyberfolio における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2228 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
244757 7.5 危険 gamecms - gameCMS Lite の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2225 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
244758 7.5 危険 buyscripts - vShare YouTube Clone の group_posts.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2223 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
244759 7.5 危険 eqdkp - EQdkp の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2222 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
244760 4.3 警告 c-news.fr - C-News.fr C-News の install.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2219 2012-06-26 16:02 2008-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219171 5.5 MEDIUM
Local 		huawei honor_v10_firmware
p30_firmware
enjoy_7s_firmware
mate_20_firmware
honor_9_lite_firmware
honor_9i_firmware
m6_firmware
p30_pro_firmware
honor_20s_firmware 		There is a path traversal vulnerability in several Huawei smartphones. The system does not sufficiently validate certain pathnames from the application. An attacker could trick the user into installi… CWE-22
Path Traversal 		CVE-2019-5251 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
219172 7.8 HIGH
Local 		huawei mate_20_pro_firmware Mate 20 Pro smartphones with versions earlier than 9.1.0.135(C00E133R3P1) have an improper authorization vulnerability. The software does not properly restrict certain operation of certain privilege,… CWE-269
 Improper Privilege Management 		CVE-2019-5250 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
219173 7.4 HIGH
Adjacent 		huawei cloudengine_12800_firmware CloudEngine 12800 has a DoS vulnerability. An attacker of a neighboring device sends a large number of specific packets. As a result, a memory leak occurs after the device uses the specific packet. A… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2019-5248 2024-11-21 13:44 2019-12-14 Show GitHub Exploit DB Packet Storm
219174 8.8 HIGH
Network 		kakadusoftware kakadu_software An exploitable heap underflow vulnerability exists in the derive_taps_and_gains function in kdu_v7ar.dll of Kakadu Software SDK 7.10.2. A specially crafted jp2 file can cause a heap overflow, which c… CWE-787
 Out-of-bounds Write 		CVE-2019-5144 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
219175 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions. By simulating an incomplete new association… CWE-346
 Origin Validation Error 		CVE-2019-5062 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
219176 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the hostapd 2.6, where an attacker could trigger AP to send IAPP location updates for stations, before the required authentication process has… CWE-287
Improper Authentication 		CVE-2019-5061 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
219177 8.8 HIGH
Network 		leadtools leadtools An exploitable heap overflow vulnerability exists in the JPEG2000 parsing functionality of LEADTOOLS 20.0.2019.3.15. A specially crafted J2K image file can cause an out of bounds write of a null byte… CWE-787
 Out-of-bounds Write 		CVE-2019-5154 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
219178 9.8 CRITICAL
Network 		leadtools leadtools An exploitable code execution vulnerability exists in the DICOM network response functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an integer overflo… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-5093 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
219179 8.8 HIGH
Network 		leadtools leadtools An exploitable heap out of bounds write vulnerability exists in the UI tag parsing functionality of the DICOM image format of LEADTOOLS 20.0.2019.3.15. A specially crafted DICOM image can cause an of… CWE-787
 Out-of-bounds Write 		CVE-2019-5092 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
219180 7.5 HIGH
Network 		leadtools leadtools An exploitable denial-of-service vulnerability exists in the Dicom-packet parsing functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an infinite loop,… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-5091 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm