Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227211 4.3 警告 torrenttrader - TorrentTrader Classic の account-inbox.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-1172 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227212 7.8 危険 simm-comm - SCI Photo Chat Server の組み込まれた HTTP サーバにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1169 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227213 4.3 警告 sarg - Sarg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1168 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227214 10 危険 sarg - Sarg の useragent.c におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1167 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227215 7.5 危険 phpComasy - phpComasy の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1164 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227216 7.5 危険 phparcadescript - phpArcadeScript の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1163 2012-12-20 18:34 2008-03-5 Show GitHub Exploit DB Packet Storm
227217 7.5 危険 ZyXEL - ZyXEL ZyWALL における権限を取得される脆弱性 CWE-DesignError
CVE-2008-1160 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
227218 5.1 警告 The phpMyAdmin Project - phpMyAdmin における SQL インジェクションおよびクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
CWE-89
CVE-2008-1149 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
227219 9.3 危険 synce - SynCE-dccm の vdccm の src/utils.cpp における任意のコマンドを実行される脆弱性 CWE-20
CWE-94
CVE-2008-1136 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
227220 4.3 警告 xrms crm - XRMS CRM の admin/users/self.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1129 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223461 3.3 LOW
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the … CWE-416
 Use After Free 		CVE-2019-13511 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223462 7.8 HIGH
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the applica… CWE-416
 Use After Free 		CVE-2019-13510 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223463 9.8 CRITICAL
Network 		givewp givewp A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2019-13578 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223464 9.8 CRITICAL
Network 		adenion blog2social The Adenion Blog2Social plugin through 5.5.0 for WordPress allows SQL Injection. CWE-89
SQL Injection 		CVE-2019-13572 2024-11-21 13:25 2019-08-2 Show GitHub Exploit DB Packet Storm
223465 8.8 HIGH
Network 		cimg cimg CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image. CWE-787
 Out-of-bounds Write 		CVE-2019-13568 2024-11-21 13:25 2019-08-1 Show GitHub Exploit DB Packet Storm
223466 9.1 CRITICAL
Network 		wpfastestcache wp_fastest_cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. CWE-22
Path Traversal 		CVE-2019-13635 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223467 6.5 MEDIUM
Network 		imgix imgix Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250x64250 pixels, which is mishandled… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13655 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223468 9.8 CRITICAL
Network 		vsourz advanced_cf7_db A SQL injection vulnerability exists in the Vsourz Digital Advanced CF7 DB plugin through 1.6.1 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute a… CWE-89
SQL Injection 		CVE-2019-13571 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223469 7.4 HIGH
Network 		oneidentity cloud_access_manager One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-13498 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223470 6.1 MEDIUM
Network 		wikindx_project wikindx A cross-site scripting (XSS) vulnerability in getPagingStart() in core/lists/PAGING.php in WIKINDX before 5.8.2 allows remote attackers to inject arbitrary web script or HTML via the PagingStart para… CWE-79
Cross-site Scripting 		CVE-2019-13588 2024-11-21 13:25 2019-07-27 Show GitHub Exploit DB Packet Storm