Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
244781	6.8	警告	AuraCMS	-	AuraCMS の online.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1398	2012-06-26 16:02	2008-03-20	Show	GitHub Exploit DB Packet Storm

244782	9.3	危険	Digium	-	Asterisk Open Source の AsteriskGUI HTTP サーバにおける管理者のセッションをハイジャックされる脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-1390	2012-06-26 16:02	2008-03-18	Show	GitHub Exploit DB Packet Storm

244783	1.9	注意	Gentoo Linux	-	src_compile などで使用される ssl-cert.eclass における binpkg から鍵を抽出される脆弱性	CWE-310 暗号の問題	CVE-2008-1383	2012-06-26 16:02	2008-03-18	Show	GitHub Exploit DB Packet Storm

244784	3.6	注意	drake team	-	Drake CMS の install/index.php における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1371	2012-06-26 16:02	2008-03-18	Show	GitHub Exploit DB Packet Storm

244785	6.5	警告	Alt-N	-	Alt-N Technologies MDaemon の IMAP サーバにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1358	2012-06-26 16:02	2008-03-17	Show	GitHub Exploit DB Packet Storm

244786	7.5	危険	advanced data solutions	-	Advanced Data Solutions VSO-XP の MyIssuesView.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1354	2012-06-26 16:02	2008-03-17	Show	GitHub Exploit DB Packet Storm

244787	7.5	危険	fully modded phpbb	-	phpbbfm の kb.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1350	2012-06-26 16:02	2008-03-17	Show	GitHub Exploit DB Packet Storm

244788	7.5	危険	exv2	-	eXV2 の Bama Galerie モジュールの viewcat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1349	2012-06-26 16:02	2008-03-17	Show	GitHub Exploit DB Packet Storm

244789	4.3	警告	ewebsite	-	PHP-Nuke の Weather モジュールの index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1348	2012-06-26 16:02	2008-03-17	Show	GitHub Exploit DB Packet Storm

244790	7.5	危険	bt	-	BT Home Hub ルータ上の cgi/b における任意の VoIP 電話呼び出しされる脆弱性	CWE-287 不適切な認証	CVE-2008-1334	2012-06-26 16:02	2008-03-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
219971	9.8	CRITICAL Network	crestron	am-100_firmware am-101_firmware	Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 are vulnerable to command injection via SNMP OID iso.3.6.1.4.1.3212.100.3.2.9.3. A remote, unauthenticated attacker can use this…	CWE-78 OS Command	CVE-2019-3925	2024-11-21 13:42	2019-05-1	Show	GitHub Exploit DB Packet Storm

219972	9.8	CRITICAL Network	crestron barco extron teqavit sharp optoma blackbox infocus	am-100_firmware am-101_firmware wepresent_wipg-1000p_firmware wepresent_wipg-1600w_firmware sharelink_200_firmware sharelink_250_firmware wips710_firmware pn-l703wa_firmware w…	The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 fir…	CWE-787 Out-of-bounds Write	CVE-2019-3930	2024-11-21 13:42	2019-05-1	Show	GitHub Exploit DB Packet Storm

219973	9.8	CRITICAL Network	crestron barco extron teqavit sharp optoma blackbox infocus	am-100_firmware am-101_firmware wepresent_wipg-1000p_firmware wepresent_wipg-1600w_firmware sharelink_200_firmware sharelink_250_firmware wips710_firmware pn-l703wa_firmware w…	The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Barco wePresent WiPG-1600W before firmware 2.4.1.19, Extron ShareLink 200/250 fir…	CWE-78 OS Command	CVE-2019-3929	2024-11-21 13:42	2019-05-1	Show	GitHub Exploit DB Packet Storm

219974	7.5	HIGH Network	atlassian	jira jira_server	The BrowseProjects.jspa resource in Jira before version 7.13.2, and from version 8.0.0 before version 8.0.2 allows remote attackers to see information for archived projects through a missing authoris…	CWE-862 Missing Authorization	CVE-2019-3399	2024-11-21 13:42	2019-05-1	Show	GitHub Exploit DB Packet Storm

219975	9.8	CRITICAL Network	facebook	wangle	Wangle's LineBasedFrameDecoder contains logic for identifying newlines which incorrectly advances a buffer, leading to a potential underflow. This affects versions of Wangle prior to v2019.04.22.00	CWE-787 Out-of-bounds Write	CVE-2019-3563	2024-11-21 13:42	2019-04-30	Show	GitHub Exploit DB Packet Storm

219976	6.1	MEDIUM Network	oculus	oculus_browser	A remote web page could inject arbitrary HTML code into the Oculus Browser UI, allowing an attacker to spoof UI and potentially execute code. This affects the Oculus Browser starting from version 5.2…	CWE-79 Cross-site Scripting	CVE-2019-3562	2024-11-21 13:42	2019-04-30	Show	GitHub Exploit DB Packet Storm

219977	9.8	CRITICAL Network	facebook	hhvm	Insufficient boundary checks for the strrpos and strripos functions allow access to out-of-bounds memory. This affects all supported versions of HHVM (4.0.3, 3.30.4, and 3.27.7 and below).	CWE-125 Out-of-bounds Read	CVE-2019-3561	2024-11-21 13:42	2019-04-30	Show	GitHub Exploit DB Packet Storm

219978	7.5	HIGH Network	facebook	fizz	An improperly performed length calculation on a buffer in PlaintextRecordLayer could lead to an infinite loop and denial-of-service based on user input. This issue affected versions of fizz prior to …	CWE-131 CWE-835 Incorrect Calculation of Buffer Size Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-3560	2024-11-21 13:42	2019-04-30	Show	GitHub Exploit DB Packet Storm

219979	8.8	HIGH Network	microfocus	network_operations_management network_automation	A potential security vulnerability has been identified in Micro Focus Network Automation Software 9.20, 9.21, 10.00, 10.10, 10.20, 10.30, 10.40, 10.50, 2018.05, 2018.08, 2018.11, and Micro Focus Netw…	NVD-CWE-noinfo	CVE-2019-3493	2024-11-21 13:42	2019-04-30	Show	GitHub Exploit DB Packet Storm

219980	7.8	HIGH Local	systemd_project canonical netapp	systemd ubuntu_linux solidfire hci_management_node snapprotect cn1610_firmware	It was discovered that a systemd service that uses DynamicUser property can get new privileges through the execution of SUID binaries, which would allow to create binaries owned by the service transi…	-	CVE-2019-3844	2024-11-21 13:42	2019-04-27	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed