Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245161	9.3	危険	アップルマイクロソフト	-	Windows XP および Vista の Apple QuickTime Player における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2008-2010	2012-06-26 16:02	2008-04-29	Show	GitHub Exploit DB Packet Storm

245162	9.3	危険	Cerulean Studios	-	Cerulean Studios Trillian の Display Names メッセージ機能におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2008	2012-06-26 16:02	2008-04-29	Show	GitHub Exploit DB Packet Storm

245163	4.3	警告	アップル	-	Apple iCal におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-2006	2012-06-26 16:02	2008-05-22	Show	GitHub Exploit DB Packet Storm

245164	7.5	危険	badblue	-	BadBlue Personal Edition におけるサービス運用妨害の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2003	2012-06-26 16:02	2008-04-28	Show	GitHub Exploit DB Packet Storm

245165	4.3	警告	アップル	-	Apple Safari におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2008-2001	2012-06-26 16:02	2008-04-28	Show	GitHub Exploit DB Packet Storm

245166	4.3	警告	アップル	-	Apple Safari におけるサービス運用妨害 (アプリケーションクラッシュ) 状態となる脆弱性	CWE-399 リソース管理の問題	CVE-2008-2000	2012-06-26 16:02	2008-04-28	Show	GitHub Exploit DB Packet Storm

245167	5	警告	アップル	-	Apple Safari におけるアドレスバーを偽装される脆弱性	CWE-Other その他	CVE-2008-1999	2012-06-26 16:02	2008-04-28	Show	GitHub Exploit DB Packet Storm

245168	7.2	危険	ahmed abdel-hamid mohamed	-	Acon の acon.c におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1994	2012-06-26 16:02	2008-04-27	Show	GitHub Exploit DB Packet Storm

245169	7.5	危険	Acidcat	-	Acidcat CMS における任意のファイルをアップロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1993	2012-06-26 16:02	2008-04-27	Show	GitHub Exploit DB Packet Storm

245170	7.5	危険	Acidcat	-	Acidcat CMS における制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1992	2012-06-26 16:02	2008-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
218451	6.1	MEDIUM Network	phpmywind	phpmywind	An issue was discovered in PHPMyWind 5.5. The username parameter of the /install/index.php page has a stored Cross-site Scripting (XSS) vulnerability, as demonstrated by admin/login.php.	CWE-79 Cross-site Scripting	CVE-2019-7660	2024-11-21 13:48	2019-03-8	Show	GitHub Exploit DB Packet Storm

218452	9.1	CRITICAL Network	broadcom	privileged_access_manager	An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attacker to gain sensitive information or alter configuration.	CWE-287 Improper Authentication	CVE-2019-7392	2024-11-21 13:48	2019-02-27	Show	GitHub Exploit DB Packet Storm

218453	3.3	LOW Local	bosch	smart_camera	An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to setting of insecure permissions, a malicious app could potentially succeed in retrieving video clips or still im…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2019-7729	2024-11-21 13:48	2019-02-22	Show	GitHub Exploit DB Packet Storm

218454	7.5	HIGH Network	bosch	smart_camera	An issue was discovered in the Bosch Smart Camera App before 1.3.1 for Android. Due to improperly implemented TLS certificate checks, a malicious actor could potentially succeed in executing a man-in…	CWE-295 Improper Certificate Validation	CVE-2019-7728	2024-11-21 13:48	2019-02-22	Show	GitHub Exploit DB Packet Storm

218455	9.8	CRITICAL Network	tintin\+\+_project	tintin\+\+ wintin\+\+	Stack-based buffer overflow in the strip_vt102_codes function in TinTin++ 2.01.6 and WinTin++ 2.01.6 allows remote attackers to execute arbitrary code by sending a long message to the client.	CWE-787 Out-of-bounds Write	CVE-2019-7629	2024-11-21 13:48	2019-02-19	Show	GitHub Exploit DB Packet Storm

218456	7.5	HIGH Network	cmswing	cmswing	global.encryptPassword in bootstrap/global.js in CMSWing 1.3.7 relies on multiple MD5 operations for password hashing.	CWE-916 Use of Password Hash With Insufficient Computational Effort	CVE-2019-7649	2024-11-21 13:48	2019-02-18	Show	GitHub Exploit DB Packet Storm

218457	7.4	HIGH Network	amazon	fire_os	Amazon Fire OS before 5.3.6.4 allows a man-in-the-middle attack against HTTP requests for "Terms of Use" and Privacy pages.	CWE-346 Origin Validation Error	CVE-2019-7399	2024-11-21 13:48	2019-02-17	Show	GitHub Exploit DB Packet Storm

218458	5.3	MEDIUM Network	jforum	jforum	In JForum 2.1.8, an unauthenticated, remote attacker can enumerate whether a user exists by using the "create user" function. If a register/check/username?username= request corresponds to a username …	CWE-209 Information Exposure Through an Error Message	CVE-2019-7550	2024-11-21 13:48	2019-02-13	Show	GitHub Exploit DB Packet Storm

218459	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.3. Inadequate filtering on URL fields in various core components could lead to an XSS vulnerability.	CWE-79 Cross-site Scripting	CVE-2019-7744	2024-11-21 13:48	2019-02-13	Show	GitHub Exploit DB Packet Storm

218460	9.8	CRITICAL Network	joomla	joomla\!	An issue was discovered in Joomla! before 3.9.3. The phar:// stream wrapper can be used for objection injection attacks because there is no protection mechanism (such as the TYPO3 PHAR stream wrapper…	CWE-502 CWE-917 Deserialization of Untrusted Data Improper Neutralization of Special Elements used in an Expression Language Statement ('Expression Language Injection')	CVE-2019-7743	2024-11-21 13:48	2019-02-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed