Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
245041 5.1 警告 exbb - ExBB Italia の modules/threadstop/threadstop.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1861 2012-06-26 16:02 2008-04-17 Show GitHub Exploit DB Packet Storm
245042 7.5 危険 724cms - 724Networks 724CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1858 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245043 7.5 危険 coronamatrix - CoronaMatrix phpAddressBook の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1847 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245044 6.8 警告 Coppermine Photo Gallery - CPG の bridge/coppermine.inc.php のセッションハンドリング機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1841 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245045 6.5 警告 Coppermine Photo Gallery - Coppermine Photo Gallery (CPG) の upload.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1840 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245046 7.5 危険 bosdev - BosClassifieds Classified Ads System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1838 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245047 3.3 注意 cecilia - Cecilia の lib/prefs.tcl における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-1832 2012-06-26 16:02 2008-04-16 Show GitHub Exploit DB Packet Storm
245048 4.3 警告 DivX - DivXDB 2002 の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1800 2012-06-26 16:02 2008-04-15 Show GitHub Exploit DB Packet Storm
245049 7.5 危険 dragoon - Dragoon の forum/kietu/libs/calendrier.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1798 2012-06-26 16:02 2008-04-15 Show GitHub Exploit DB Packet Storm
245050 4.9 警告 comix - Comix におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-1796 2012-06-26 16:02 2008-04-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
218781 6.5 MEDIUM
Network 		google
opensuse 		chrome
leap
backports_sle 		Out of bounds access in SwiftShader in Google Chrome prior to 73.0.3683.75 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
 Out-of-bounds Write 		CVE-2019-5844 2024-11-21 13:45 2020-01-4 Show GitHub Exploit DB Packet Storm
218782 6.1 MEDIUM
Network 		yahoo athenz Open redirect vulnerability in Athenz v1.8.24 and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a specially crafted page. CWE-601
Open Redirect 		CVE-2019-6035 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218783 6.1 MEDIUM
Network 		appleple a-blog_cms a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows arbitrary scripts to be executed in the context of the application due to unspecified … CWE-74
Injection 		CVE-2019-6034 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218784 6.1 MEDIUM
Network 		appleple a-blog_cms Cross-site scripting vulnerability in a-blog cms versions prior to Ver.2.10.23 (Ver.2.10.x), Ver.2.9.26 (Ver.2.9.x), and Ver.2.8.64 (Ver.2.8.x) allows remote attackers to inject arbitrary web script … CWE-79
Cross-site Scripting 		CVE-2019-6033 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218785 7.4 HIGH
Network 		ntv news_24 The NTV News24 prior to Ver.3.0.0 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers and obtain sensitive information via a crafted certifi… CWE-295
Improper Certificate Validation  		CVE-2019-6032 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218786 6.1 MEDIUM
Network 		dayz kinza Cross-site scripting vulnerability in KINZA for Windows version 5.9.2 and earlier and for Mac version 5.0.0 and earlier allows remote attackers to inject arbitrary web script or HTML via RSS reader. CWE-79
Cross-site Scripting 		CVE-2019-6031 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218787 8.8 HIGH
Network 		custom_body_class_project custom_body_class Cross-site request forgery (CSRF) vulnerability in Custom Body Class 0.6.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2019-6030 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218788 6.1 MEDIUM
Network 		custom_body_class_project custom_body_class Cross-site scripting vulnerability in Custom Body Class 0.6.0 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2019-6029 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218789 8.8 HIGH
Network 		wpspellcheck wpspellcheck Cross-site request forgery (CSRF) vulnerability in WP Spell Check 7.1.9 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors. CWE-352
 Origin Validation Error 		CVE-2019-6027 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm
218790 6.5 MEDIUM
Network 		rakuten rakuma Rakuma App for Android version 7.15.0 and earlier, and for iOS version 7.16.4 and earlier allows an attacker to bypass authentication and obtain the user's authentication information via a malicious … CWE-522
 Insufficiently Protected Credentials 		CVE-2019-6024 2024-11-21 13:45 2019-12-27 Show GitHub Exploit DB Packet Storm