Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
244861 4.3 警告 boutikone - BoutikOne CMS の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5126 2012-06-26 16:03 2008-11-17 Show GitHub Exploit DB Packet Storm
244862 6.8 警告 castillocentral - CCleague Pro の admin.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5125 2012-06-26 16:03 2008-11-17 Show GitHub Exploit DB Packet Storm
244863 6.8 警告 castillocentral - CCleague Pro の admin.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5123 2012-06-26 16:03 2008-11-17 Show GitHub Exploit DB Packet Storm
244864 7.5 危険 Episerver - Ektron CMS400.NET における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5122 2012-06-26 16:03 2008-11-17 Show GitHub Exploit DB Packet Storm
244865 7.2 危険 ブルーコートシステムズ
シトリックス・システムズ
シスコシステムズ
SafeNet, Inc		 - Cisco VPN Client などの製品で使用される dne2000.sys における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5121 2012-06-26 16:03 2008-07-18 Show GitHub Exploit DB Packet Storm
244866 9.3 危険 balabit - syslog-ng における intented jail を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5110 2012-06-26 16:03 2008-11-17 Show GitHub Exploit DB Packet Storm
244867 7.2 危険 dcgrendel
Canonical		 - Ubuntu におけるログイン制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-5104 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
244868 7.2 危険 dcgrendel
Canonical		 - Ubuntu の VMBuilder におけるログイン制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-5103 2012-06-26 16:03 2008-11-13 Show GitHub Exploit DB Packet Storm
244869 10 危険 AEF Group - Electron Inc. Advanced Electron Forum における任意の PHP コードが実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5090 2012-06-26 16:03 2008-11-14 Show GitHub Exploit DB Packet Storm
244870 9.3 危険 datadynamics - Data Dynamics ActiveReports の DDActiveReportsViewer2.ARViewer2 ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-5089 2012-06-26 16:03 2008-11-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
220411 8.8 HIGH
Network 		libsdl
debian
opensuse
fedoraproject
canonical 		simple_directmedia_layer
debian_linux
leap
fedora
ubuntu_linux 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in InitMS_ADPCM in audio/SDL_wave.c (inside the wNumCoef loop). CWE-125
Out-of-bounds Read 		CVE-2019-7573 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220412 8.8 HIGH
Network 		libsdl
debian
opensuse
canonical
fedoraproject 		simple_directmedia_layer
debian_linux
leap
ubuntu_linux
fedora 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a buffer over-read in IMA_ADPCM_nibble in audio/SDL_wave.c. CWE-125
Out-of-bounds Read 		CVE-2019-7572 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220413 6.5 MEDIUM
Network 		pbootcms pbootcms A CSRF vulnerability was found in PbootCMS v1.3.6 that can delete users via an admin.php/User/del/ucode/ URI. CWE-352
 Origin Validation Error 		CVE-2019-7570 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220414 8.8 HIGH
Network 		wdoyo doyo An issue was discovered in DOYO (aka doyocms) 2.3(20140425 update). There is a CSRF vulnerability that can add a super administrator account via admin.php?c=a_adminuser&a=add&run=1. CWE-352
 Origin Validation Error 		CVE-2019-7569 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220415 9.8 CRITICAL
Network 		baijiacms_project baijiacms An issue was discovered in baijiacms V4 that can result in time-based blind SQL injection to get data via the cate parameter in an index.php?act=index request. CWE-89
SQL Injection 		CVE-2019-7568 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220416 6.1 MEDIUM
Network 		bijiadao waimai_super_cms An issue was discovered in Waimai Super Cms 20150505. admin.php?m=Member&a=adminaddsave has XSS via the username or password parameter. CWE-79
Cross-site Scripting 		CVE-2019-7567 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220417 8.8 HIGH
Network 		cszcms csz_cms CSZ CMS 1.1.8 has CSRF via admin/users/new/add. CWE-352
 Origin Validation Error 		CVE-2019-7566 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220418 5.5 MEDIUM
Local 		boolector_project boolector In parser/btorsmt2.c in Boolector 3.0.0, opening a specially crafted input file leads to a use after free in get_failed_assumptions or btor_delete. CWE-416
 Use After Free 		CVE-2019-7560 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220419 5.5 MEDIUM
Local 		btor2tools_project btor2tools In btor2parser/btor2parser.c in Boolector Btor2Tools before 2019-01-15, opening a specially crafted input file leads to an out of bounds write in pusht_bfr. CWE-787
 Out-of-bounds Write 		CVE-2019-7559 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm
220420 7.8 HIGH
Local 		sqlalchemy
debian
opensuse
redhat
oracle 		sqlalchemy
debian_linux
leap
backports_sle
enterprise_linux_eus
enterprise_linux_server_tus
enterprise_linux_server_aus
enterprise_linux
communications_operations_monitor 		SQLAlchemy 1.2.17 has SQL Injection when the group_by parameter can be controlled. CWE-89
SQL Injection 		CVE-2019-7548 2024-11-21 13:48 2019-02-7 Show GitHub Exploit DB Packet Storm