Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244841 7.5 危険 flexbb - FlexBB における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0157 2012-06-26 15:54 2008-01-8 Show GitHub Exploit DB Packet Storm
244842 4.3 警告 evilboard - EvilBoard の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0155 2012-06-26 15:54 2008-01-8 Show GitHub Exploit DB Packet Storm
244843 7.5 危険 evilboard - EvilBoard の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0154 2012-06-26 15:54 2008-01-8 Show GitHub Exploit DB Packet Storm
244844 10 危険 Foxit Software Inc - Foxit WAC Server におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0151 2012-06-26 15:54 2008-01-8 Show GitHub Exploit DB Packet Storm
244845 7.5 危険 georgia softworks - GSW_SSHD の log 関数におけるフォーマットストリングの脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0097 2012-06-26 15:54 2008-01-7 Show GitHub Exploit DB Packet Storm
244846 7.5 危険 georgia softworks - GSW_SSHD におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0096 2012-06-26 15:54 2008-01-7 Show GitHub Exploit DB Packet Storm
244847 5 警告 Digium - Asterisk Open Source の SIP チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-0095 2012-06-26 15:54 2008-01-2 Show GitHub Exploit DB Packet Storm
244848 4.3 警告 eticket - eTicket の newticket.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0093 2012-06-26 15:54 2008-01-7 Show GitHub Exploit DB Packet Storm
244849 6.4 警告 agency4net - AGENCY4NET WebFTP の download2.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0091 2012-06-26 15:54 2008-01-3 Show GitHub Exploit DB Packet Storm
244850 6.8 警告 アルバネットワークス株式会社 - Aruba Mobility Controller の LDAP 認証機能におけるアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-0150 2012-06-26 15:54 2007-12-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 20, 2026, 4:14 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
219941 8.8 HIGH
Network 		rsa security_analytics
netwitness_platform 		RSA Netwitness Platform versions prior to 11.2.1.1 is vulnerable to an Authorization Bypass vulnerability. A remote low privileged attacker could potentially exploit this vulnerability to gain access… NVD-CWE-noinfo
CVE-2019-3724 2024-11-21 13:42 2019-05-16 Show GitHub Exploit DB Packet Storm
219942 4.8 MEDIUM
Network 		mcafee network_security_manager Cross Site Scripting (XSS) vulnerability in McAfee Network Security Manager (NSM) Prior to 9.1 Update 5 allows an authenticated administrator to embed an XSS in the administrator interface via a spec… CWE-79
Cross-site Scripting 		CVE-2019-3602 2024-11-21 13:42 2019-05-16 Show GitHub Exploit DB Packet Storm
219943 7.5 HIGH
Network 		mcafee endpoint_security Protection Mechanism Failure in the Firewall in McAfee Endpoint Security (ENS) 10.x prior to 10.6.1 May 2019 update allows context-dependent attackers to circumvent ENS protection where GTI flagged I… NVD-CWE-Other
CVE-2019-3586 2024-11-21 13:42 2019-05-16 Show GitHub Exploit DB Packet Storm
219944 9.8 CRITICAL
Network 		whatsapp whatsapp A buffer overflow vulnerability in WhatsApp VOIP stack allowed remote code execution via specially crafted series of RTCP packets sent to a target phone number. The issue affects WhatsApp for Android… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-3568 2024-11-21 13:42 2019-05-15 Show GitHub Exploit DB Packet Storm
219945 8.8 HIGH
Network 		lifesize icon_300_firmware
icon_500_firmware
icon_700_firmware 		A Remote Code Execution issue in the DNS Query Web UI in Lifesize Icon LS_RM3_3.7.0 (2421) allows remote authenticated attackers to execute arbitrary commands via a crafted DNS Query address field in… CWE-78
OS Command  		CVE-2019-3702 2024-11-21 13:42 2019-05-14 Show GitHub Exploit DB Packet Storm
219946 5.9 MEDIUM
Network 		suse manager SUSE Manager until version 4.0.7 and Uyuni until commit 1b426ad5ed0a7191a6fb46bb83e98ae4b99a5ade created world-readable swap files on systems that don't have a swap already configured and don't have … CWE-922
 Insecure Storage of Sensitive Information 		CVE-2019-3684 2024-11-21 13:42 2019-05-14 Show GitHub Exploit DB Packet Storm
219947 5.9 MEDIUM
Network 		whatsapp whatsapp
whatsapp_business 		A bug in WhatsApp for Android's messaging logic would potentially allow a malicious individual who has taken over over a WhatsApp user's account to recover previously sent messages. This behavior req… NVD-CWE-noinfo
CVE-2019-3566 2024-11-21 13:42 2019-05-11 Show GitHub Exploit DB Packet Storm
219948 6.5 MEDIUM
Network 		vmware
oracle 		spring_cloud_config
communications_cloud_native_core_policy 		Spring Cloud Config, versions 2.1.x prior to 2.1.2, versions 2.0.x prior to 2.0.4, and versions 1.4.x prior to 1.4.6, and older unsupported versions allow applications to serve arbitrary configuratio… CWE-22
Path Traversal 		CVE-2019-3799 2024-11-21 13:42 2019-05-7 Show GitHub Exploit DB Packet Storm
219949 5.3 MEDIUM
Network 		pivotal_software spring_data_java_persistence_api This affects Spring Data JPA in versions up to and including 2.1.5, 2.0.13 and 1.11.19. Derived queries using any of the predicates ‘startingWith’, ‘endingWith’ or ‘containing’ could return more resu… CWE-200
Information Exposure 		CVE-2019-3797 2024-11-21 13:42 2019-05-7 Show GitHub Exploit DB Packet Storm
219950 7.5 HIGH
Network 		facebook thrift Legacy C++ Facebook Thrift servers (using cpp instead of cpp2) would not error upon receiving messages with containers of fields of unknown type. As a result, malicious clients could send short messa… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-3565 2024-11-21 13:42 2019-05-7 Show GitHub Exploit DB Packet Storm