Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 4, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227071	9.3	危険	Rdesktop	-	rdesktop の process_redirect_pdu 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1802	2012-12-20 18:52	2008-05-12	Show	GitHub Exploit DB Packet Storm

227072	5	警告	sabros.us	-	sabros.us の thumbnails.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1799	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227073	7.1	危険	securecomputing	-	Secure Computing Webwasher におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-1797	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227074	6.8	警告	prozilla	-	Prozilla Forum の forum.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1789	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227075	7.5	危険	prozilla	-	Prozilla Entertainers の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1788	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227076	4.3	警告	poplar gedcom viewer	-	Poplar Gedcom Viewer の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1787	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227077	5.5	警告	prozilla	-	Prozilla Top 100 の delete.php における統計情報を削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-1785	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227078	7.5	危険	prozilla	-	Prozilla Topsites における管理操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1784	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227079	6.4	警告	prozilla	-	Prozilla Reviews における任意のユーザを削除される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-1783	2012-12-20 18:52	2008-04-15	Show	GitHub Exploit DB Packet Storm

227080	6.8	警告	phpblock	-	PhpBlock の modules/basicfog/basicfogfactory.class.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1776	2012-12-20 18:52	2008-04-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 4, 2026, 4:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
213191	9.8	CRITICAL Network	zoneminder	zoneminder	daemonControl in includes/functions.php in ZoneMinder before 1.32.3 allows command injection via shell metacharacters.	CWE-78 OS Command	CVE-2019-8427	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213192	6.1	MEDIUM Network	zoneminder	zoneminder	skins/classic/views/controlcap.php in ZoneMinder before 1.32.3 has XSS via the newControl array, as demonstrated by the newControl[MinTiltRange] parameter.	CWE-79 Cross-site Scripting	CVE-2019-8426	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213193	6.1	MEDIUM Network	zoneminder	zoneminder	includes/database.php in ZoneMinder before 1.32.3 has XSS in the construction of SQL-ERR messages.	CWE-79 Cross-site Scripting	CVE-2019-8425	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213194	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder before 1.32.3 has SQL Injection via the ajax/status.php sort parameter.	CWE-89 SQL Injection	CVE-2019-8424	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213195	9.8	CRITICAL Network	zoneminder	zoneminder	ZoneMinder through 1.32.3 has SQL Injection via the skins/classic/views/events.php filter[Query][terms][0][cnj] parameter.	CWE-89 SQL Injection	CVE-2019-8423	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213196	7.2	HIGH Network	pbootcms	pbootcms	A SQL Injection vulnerability exists in PbootCMS v1.3.2 via the description parameter in apps\admin\controller\content\ContentController.php.	CWE-89 SQL Injection	CVE-2019-8422	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213197	7.2	HIGH Network	bagesoft	bagecms	upload/protected/modules/admini/views/post/index.php in BageCMS through 3.1.4 allows SQL Injection via the title or titleAlias parameter.	CWE-89 SQL Injection	CVE-2019-8421	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213198	6.1	MEDIUM Network	vnote_project	vnote	VNote 2.2 has XSS via a new text note.	CWE-79 Cross-site Scripting	CVE-2019-8419	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213199	8.8	HIGH Network	seacms	seacms	SeaCMS 7.2 mishandles member.php?mod=repsw4 requests.	NVD-CWE-noinfo	CVE-2019-8418	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm

213200	5.5	MEDIUM Local	mi	mi_mix_2_firmware	On Xiaomi MIX 2 devices with the 4.4.78 kernel, a NULL pointer dereference in the ioctl interface of the device file /dev/elliptic1 or /dev/elliptic0 causes a system crash via IOCTL 0x4008c575 (aka d…	CWE-476 NULL Pointer Dereference	CVE-2019-8413	2024-11-21 13:49	2019-02-18	Show	GitHub Exploit DB Packet Storm