Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227241	9.3	危険	simba technologies SAP	-	SAP SAPgui の mdrmsap.dll における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4387	2012-12-20 18:52	2008-11-10	Show	GitHub Exploit DB Packet Storm

227242	7.5	危険	rianxosencabos cms	-	Rianxosencabos CMS における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4244	2012-12-20 18:52	2008-09-25	Show	GitHub Exploit DB Packet Storm

227243	7.5	危険	softacid	-	SoftAcid HRS の city.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4204	2012-12-20 18:52	2008-09-24	Show	GitHub Exploit DB Packet Storm

227244	6.9	警告	レッドハット	-	cman の fence_egenera における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4192	2012-12-20 18:52	2008-09-29	Show	GitHub Exploit DB Packet Storm

227245	10	危険	TYPO3 Association	-	TYPO3 Secure Directory エクステンションにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-4188	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

227246	4.3	警告	proactive cms	-	ProActive CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4187	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

227247	7.5	危険	webcms	-	webCMS Portal Edition の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4186	2012-12-20 18:52	2008-09-23	Show	GitHub Exploit DB Packet Storm

227248	9.3	危険	systemrequirementslab	-	Instant Expert Analysis で使用されている LLC Systems Requirements Lab における強制的にダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-4385	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

227249	7.8	危険	サムスン	-	Samsung DVR の Web インターフェースにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-4380	2012-12-20 18:52	2008-10-1	Show	GitHub Exploit DB Packet Storm

227250	4.3	警告	siteman	-	Siteman の search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4365	2012-12-20 18:52	2008-09-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222681	9.8	CRITICAL Network	blake2	blake2-rust	An issue was discovered in the blake2 crate before 0.8.1 for Rust. The BLAKE2b and BLAKE2s algorithms, when used with HMAC, produce incorrect results because the block sizes are half of the required …	CWE-327 Use of a Broken or Risky Cryptographic Algorithm	CVE-2019-16143	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222682	9.8	CRITICAL Network	renderdocs-rs_project	renderdocs-rs	An issue was discovered in the renderdoc crate before 0.5.0 for Rust. Multiple exposed methods take self by immutable reference, which is incompatible with a multi-threaded application.	CWE-20 Improper Input Validation	CVE-2019-16142	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222683	7.5	HIGH Network	once_cell_project	once_cell	An issue was discovered in the once_cell crate before 1.0.1 for Rust. There is a panic during initialization of Lazy.	CWE-20 Improper Input Validation	CVE-2019-16141	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222684	9.8	CRITICAL Network	isahc_project	isahc	An issue was discovered in the chttp crate before 0.1.3 for Rust. There is a use-after-free during buffer conversion.	CWE-416 Use After Free	CVE-2019-16140	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222685	9.8	CRITICAL Network	compact_arena_project	compact_arena	An issue was discovered in the compact_arena crate before 0.4.0 for Rust. Generativity is mishandled, leading to an out-of-bounds write or read.	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2019-16139	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222686	9.8	CRITICAL Network	image-rs	image	An issue was discovered in the image crate before 0.21.3 for Rust, affecting the HDR image format decoder. Vec::set_len is called on an uninitialized vector, leading to a use-after-free and arbitrary…	CWE-416 Use After Free	CVE-2019-16138	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222687	7.5	HIGH Network	spin-rs_project	spin-rs	An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclus…	CWE-662 Improper Synchronization	CVE-2019-16137	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222688	6.5	MEDIUM Network	weaver	eteams_oa	An issue was discovered in eteams OA v4.0.34. Because the session is not strictly checked, the account names and passwords of all employees in the company can be obtained by an ordinary account. Spec…	CWE-613 Insufficient Session Expiration	CVE-2019-16133	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222689	6.5	MEDIUM Network	phpok	oklite	An issue was discovered in OKLite v1.2.25. framework/admin/tpl_control.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring.	CWE-22 Path Traversal	CVE-2019-16132	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

222690	8.8	HIGH Network	phpok	oklite	framework/admin/modulec_control.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-16131	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed