Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227081	7.5	危険	Pligg	-	Pligg の editlink.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1774	2012-12-20 18:52	2008-04-14	Show	GitHub Exploit DB Packet Storm

227082	6.8	警告	VideoLAN	-	VLC におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-1769	2012-12-20 18:52	2008-04-13	Show	GitHub Exploit DB Packet Storm

227083	6.8	警告	VideoLAN	-	VLC における整数オーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1768	2012-12-20 18:52	2008-04-13	Show	GitHub Exploit DB Packet Storm

227084	10	危険	phpBB	-	phpBB における脆弱性	CWE-noinfo 情報不足	CVE-2008-1766	2012-12-20 18:52	2008-04-12	Show	GitHub Exploit DB Packet Storm

227085	4.9	警告	サン・マイクロシステムズ	-	Sun N1 Grid Engine の Qmaster デーモンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-1756	2012-12-20 18:52	2008-04-9	Show	GitHub Exploit DB Packet Storm

227086	5	警告	zekewalker	-	World of Phaos の showSource.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-1755	2012-12-20 18:52	2008-04-11	Show	GitHub Exploit DB Packet Storm

227087	1.7	注意	シマンテック	-	Symantec Altiris Deployment Solution における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2008-1754	2012-12-20 18:52	2008-04-10	Show	GitHub Exploit DB Packet Storm

227088	2.1	注意	Beijing Rising International Software	-	Rising Antivirus 2008 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-1738	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227089	6.9	警告	ソフォス	-	Sophos Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-1737	2012-12-20 18:52	2008-04-29	Show	GitHub Exploit DB Packet Storm

227090	7.5	危険	pragmaticutopia	-	Joomla! 用の com_puarcade コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1733	2012-12-20 18:52	2008-04-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 2, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
211661	7.5	HIGH Network	tinysvcmdns_project	tinysvcmdns	In tinysvcmdns through 2018-01-16, a maliciously crafted mDNS (Multicast DNS) packet triggers an infinite loop while parsing an mDNS query. When mDNS compressed labels point to each other, the functi…	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2019-9747	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

211662	7.5	HIGH Network	webmproject	libwebm	In libwebm before 2019-03-08, a NULL pointer dereference caused by the functions OutputCluster and OutputTracks in webm_info.cc will trigger an abort, which allows a DoS attack, a similar issue to CV…	CWE-476 NULL Pointer Dereference	CVE-2019-9746	2024-11-21 13:52	2019-03-14	Show	GitHub Exploit DB Packet Storm

211663	7.5	HIGH Network	gdata-software	total_security	gdwfpcd.sys in G Data Total Security before 2019-02-22 allows an attacker to bypass ACLs because Interpreted Device Characteristics lacks FILE_DEVICE_SECURE_OPEN and therefore files and directories "…	CWE-862 Missing Authorization	CVE-2019-9742	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211664	6.1	MEDIUM Network	golang debian fedoraproject redhat	go debian_linux fedora enterprise_linux developer_tools	An issue was discovered in net/http in Go 1.11.5. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the second argument to http.NewRequest with \r\n followed by …	CWE-93 CRLF Injection	CVE-2019-9741	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211665	6.1	MEDIUM Network	python	python	An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the fir…	CWE-93 CRLF Injection	CVE-2019-9740	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211666	6.1	MEDIUM Network	golangtc	gopher	jimmykuu Gopher 2.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.	CWE-79 Cross-site Scripting	CVE-2019-9738	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211667	6.1	MEDIUM Network	ipandao	editor.md	Editor.md 1.5.0 has DOM-based XSS via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.	CWE-79 Cross-site Scripting	CVE-2019-9737	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211668	6.1	MEDIUM Network	1024tools	1024tools	DOM-based XSS exists in 1024Tools Markdown 1.0 via vectors involving the '<EMBED SRC="data:image/svg+xml' substring.	CWE-79 Cross-site Scripting	CVE-2019-9736	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211669	6.5	MEDIUM Network	openstack redhat debian	neutron openstack debian_linux	An issue was discovered in the iptables firewall module in OpenStack Neutron before 10.0.8, 11.x before 11.0.7, 12.x before 12.0.6, and 13.x before 13.0.3. By setting a destination port in a security…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2019-9735	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

211670	7.8	HIGH Local	shanda	maplestory_online	In Shanda MapleStory Online V160, the SdoKeyCrypt.sys driver allows privilege escalation to NT AUTHORITY\SYSTEM because of not validating the IOCtl 0x8000c01c input value, leading to an integer signe…	CWE-787 CWE-129 Out-of-bounds Write Improper Validation of Array Index	CVE-2019-9729	2024-11-21 13:52	2019-03-13	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed