Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 2, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227001	7.5	危険	phpeasydata	-	PHPEasyData の annuaire.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2113	2012-12-20 18:52	2008-05-8	Show	GitHub Exploit DB Packet Storm

227002	5	警告	vicftps	-	VicFTPS におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-2031	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

227003	5.8	警告	RSAセキュリティ	-	Web の IIS 用の RSA Authentication Agent におけるオープンリダイレクトの脆弱性	CWE-200 情報漏えい	CVE-2008-2027	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

227004	4.3	警告	RSAセキュリティ	-	RSA Authentication Agent の WebID/IISWebAgentIF.dll におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2026	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

227005	7.5	危険	Simple Machines	-	SMF における CAPTCHA のテストを通過される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2019	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227006	4	警告	phpizabi	-	PHPizabi の template.class.php の AssignUser 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-2018	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227007	9.3	危険	watchfire	-	WatchFire AppScan の特定の ActiveX コントロールにおける絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2015	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227008	6.8	警告	pnflashgames	-	PostNuke 用の pnFlashGames モジュールの index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2013	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227009	7.5	危険	postnuke software foundation	-	PostNuke 用の PostSchedule モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2012	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227010	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Directory Proxy Server におけるサーバに対するアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1995	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211621	7.8	HIGH Local	pdfalto_project xpdfreader	pdfalto xpdf	There is an invalid memory access in the function GfxIndexedColorSpace::mapColorToBase() located in GfxState.cc in Xpdf 4.0.0, as used in pdfalto 0.2. It can be triggered by (for example) sending a c…	CWE-125 Out-of-bounds Read	CVE-2019-9878	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211622	7.8	HIGH Local	xpdfreader	xpdf	There is an invalid memory access vulnerability in the function TextPage::findGaps() located at TextOutputDev.c in Xpdf 4.01, which can (for example) be triggered by sending a crafted pdf file to the…	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2019-9877	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211623	9.8	CRITICAL Network	oembed_project	oembed	plugin.js in the w8tcha oEmbed plugin before 2019-03-14 for CKEditor mishandles SCRIPT elements.	CWE-19 Data Processing Errors	CVE-2019-9870	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211624	7.2	HIGH Network	veritas	netbackup_appliance	An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The SMTP password is displayed to an administrator.	CWE-522 Insufficiently Protected Credentials	CVE-2019-9868	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211625	7.2	HIGH Network	veritas	netbackup_appliance	An issue was discovered in the Web Console in Veritas NetBackup Appliance through 3.1.2. The proxy server password is displayed to an administrator.	CWE-522 Insufficiently Protected Credentials	CVE-2019-9867	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211626	5.5	MEDIUM Local	linux	linux_kernel	In the Linux kernel through 5.0.2, the function inotify_update_existing_watch() in fs/notify/inotify/inotify_user.c neglects to call fsnotify_put_mark() with IN_MASK_CREATE after fsnotify_find_mark()…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-9857	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211627	6.1	MEDIUM Network	openid	openid_connect	Doorkeeper::OpenidConnect (aka the OpenID Connect extension for Doorkeeper) 1.4.x and 1.5.x before 1.5.4 has an open redirect via the redirect_uri field in an OAuth authorization request (that result…	CWE-601 Open Redirect	CVE-2019-9837	2024-11-21 13:52	2019-03-22	Show	GitHub Exploit DB Packet Storm

211628	9.6	CRITICAL Adjacent	fujitsu	lx901_firmware gk900_firmware	The receiver (aka bridge) component of Fujitsu Wireless Keyboard Set LX901 GK900 devices allows Keystroke Injection. This occurs because it accepts unencrypted 2.4 GHz packets, even though all legiti…	NVD-CWE-noinfo	CVE-2019-9835	2024-11-21 13:52	2019-03-16	Show	GitHub Exploit DB Packet Storm

211629	7.5	HIGH Network	screen_stream_project	screen_stream	The Screen Stream application through 3.0.15 for Android allows remote attackers to cause a denial of service via many simultaneous /start-stop requests.	NVD-CWE-noinfo	CVE-2019-9833	2024-11-21 13:52	2019-03-16	Show	GitHub Exploit DB Packet Storm

211630	7.5	HIGH Network	airdrop_project	airdrop	The AirDrop application through 2.0 for Android allows remote attackers to cause a denial of service via a client that makes many socket connections through a configured port.	NVD-CWE-noinfo	CVE-2019-9832	2024-11-21 13:52	2019-03-16	Show	GitHub Exploit DB Packet Storm