Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 226961 | 9.3 | 危険 | ソフォス | - | Sophos Anti-Virus における HTML 文書内のマルウェアの検出を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-5541 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226962 | 9.3 | 危険 | securecomputing | - | Secure Computing Secure Web Gateway における HTML ドキュメント内のマルウェアの検出を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-5540 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226963 | 9.3 | 危険 | Beijing Rising International Software | - | RISING Antivirus における HTML 文書内のマルウェアの検出を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-5539 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226964 | 9.3 | 危険 | ウェブルート株式会社 | - | Prevx Prevx における HTML 文書内のマルウェアの検知を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-5538 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226965 | 9.3 | 危険 | クイックヒール・テクノロジーズ・ジャパン株式会社 | - | CAT-QuickHeal におけるマルウェアの検知を回避される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-5524 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226966 | 7.5 | 危険 | pozscripts | - | PozScripts Business Directory Script の showcategory.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5496 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226967 | 7.5 | 危険 | phpstore | - | PHPStore Wholesales の track.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5493 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226968 | 9.3 | 危険 | verypdf | - | VeryDOC PDF Viewer OCX Control の pdfview.ocx におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-5492 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226969 | 7.5 | 危険 | slimcms | - | SlimCMS の edit.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5491 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
| 226970 | 7.5 | 危険 | phpstore | - | PHPStore Yahoo Answers の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-5490 | 2012-12-20 18:52 | 2008-12-12 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 8, 2026, 4:54 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 213651 | 7.5 |
HIGH
Network |
codesys |
gateway hmi simulation_runtime safety_sil2 control_for_beaglebone control_for_empc-a\/imx6 control_for_iot2000 control_for_pfc100 control_for_pfc200 control_for_raspberry_p… |
An issue was discovered in 3S-Smart CODESYS before 3.5.15.0 . Crafted network packets cause the Control Runtime to crash. |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2019-9009 | 2024-11-21 13:50 | 2019-09-18 | Show | GitHub Exploit DB Packet Storm |
| 213652 | 8.8 |
HIGH
Network |
codesys |
control_for_beaglebone control_for_empc-a\/imx6 control_for_iot2000 control_for_pfc100 control_for_pfc200 control_for_raspberry_pi control_rte control_win hmi simulation_ru… |
An issue was discovered in 3S-Smart CODESYS V3 through 3.5.12.30. A user with low privileges can take full control over the runtime. |
CWE-732
Incorrect Permission Assignment for Critical Resource |
CVE-2019-9008 | 2024-11-21 13:50 | 2019-09-17 | Show | GitHub Exploit DB Packet Storm |
| 213653 | 7.5 |
HIGH
Network |
codesys |
control_for_beaglebone_sl control_for_empc-a\/imx6_sl control_for_iot2000_sl control_for_linux_sl control_for_pfc100_sl control_for_pfc200_sl control_for_raspberry_pi_sl control_… |
An issue was discovered in 3S-Smart CODESYS V3 products. A crafted communication request may cause uncontrolled memory allocations in the affected CODESYS products and may result in a denial-of-servi… |
CWE-770
Allocation of Resources Without Limits or Throttling |
CVE-2019-9012 | 2024-11-21 13:50 | 2019-08-16 | Show | GitHub Exploit DB Packet Storm |
| 213654 | 9.8 |
CRITICAL
Network |
codesys |
control_for_beaglebone_sl control_for_empc-a\/imx6_sl control_for_iot2000_sl control_for_linux_sl control_for_pfc100_sl control_for_pfc200_sl control_for_raspberry_pi_sl control_… |
An issue was discovered in 3S-Smart CODESYS V3 products. The CODESYS Gateway does not correctly verify the ownership of a communication channel. All variants of the following CODESYS V3 products in a… |
NVD-CWE-noinfo
|
CVE-2019-9010 | 2024-11-21 13:50 | 2019-08-16 | Show | GitHub Exploit DB Packet Storm |
| 213655 | 8.8 |
HIGH
Adjacent |
codesys |
control_for_beaglebone_sl control_for_empc-a\/imx6_sl control_for_iot2000_sl control_for_linux_sl control_for_pfc100_sl control_for_pfc200_sl raspberry_pi control_rte_sl contr… |
An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All v… |
CWE-327
Use of a Broken or Risky Cryptographic Algorithm |
CVE-2019-9013 | 2024-11-21 13:50 | 2019-08-16 | Show | GitHub Exploit DB Packet Storm |
| 213656 | 7.5 |
HIGH
Network |
rdbrck | shift | Redbrick Shift through 3.4.3 allows an attacker to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application. |
CWE-522
Insufficiently Protected Credentials |
CVE-2019-8932 | 2024-11-21 13:50 | 2019-07-18 | Show | GitHub Exploit DB Packet Storm |
| 213657 | 7.5 |
HIGH
Network |
rdbrck | shift | Redbrick Shift through 3.4.3 allows an attacker to extract emails of services (such as Gmail, Outlook, etc.) used in the application. |
NVD-CWE-noinfo
|
CVE-2019-8931 | 2024-11-21 13:50 | 2019-07-18 | Show | GitHub Exploit DB Packet Storm |
| 213658 | 7.8 |
HIGH
Local |
blackberry | qnx_software_development_platform | An information disclosure vulnerability leading to a potential local escalation of privilege in the procfs service (the /proc filesystem) of BlackBerry QNX Software Development Platform version(s) 6.… |
NVD-CWE-noinfo
|
CVE-2019-8998 | 2024-11-21 13:50 | 2019-07-13 | Show | GitHub Exploit DB Packet Storm |
| 213659 | 6.1 |
MEDIUM
Network |
apachefriends | xampp | iart.php in XAMPP 1.7.0 has XSS, a related issue to CVE-2008-3569. |
CWE-79
Cross-site Scripting |
CVE-2019-8920 | 2024-11-21 13:50 | 2019-07-10 | Show | GitHub Exploit DB Packet Storm |
| 213660 | 9.8 |
CRITICAL
Network |
couchbase | sync_gateway | In Couchbase Sync Gateway 2.1.2, an attacker with access to the Sync Gateway’s public REST API was able to issue additional N1QL statements and extract sensitive data or call arbitrary N1QL functions… |
CWE-89
SQL Injection |
CVE-2019-9039 | 2024-11-21 13:50 | 2019-06-27 | Show | GitHub Exploit DB Packet Storm |