Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227291	6.8	警告	yourownbux	-	YourOwnBux の memberstats.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4093	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227292	6.8	警告	source workshop	-	Web Directory Script の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4091	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227293	7.5	危険	source workshop	-	Reciprocal Links Manager の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4086	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227294	4.4	警告	stephenjungels	-	Plait の plaiter における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4085	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227295	7.5	危険	stash	-	Stash の admin/login.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-4081	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227296	6.8	警告	stash	-	Stash における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4080	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227297	7.5	危険	zanfi solutions	-	Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4074	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227298	7.5	危険	zanfi solutions	-	Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4073	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227299	7.5	危険	phsdev	-	phsBlog の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4072	2012-12-20 18:52	2008-09-15	Show	GitHub Exploit DB Packet Storm

227300	7.5	危険	texmedia	-	Million Pixel Script の tops_top.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4055	2012-12-20 18:52	2008-09-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222631	4.1	MEDIUM Local	linux redhat canonical	linux_kernel enterprise_linux ubuntu_linux	drivers/gpu/drm/amd/amdkfd/kfd_interrupt.c in the Linux kernel 5.2.14 does not check the alloc_workqueue return value, leading to a NULL pointer dereference. NOTE: The security community disputes thi…	CWE-476 NULL Pointer Dereference	CVE-2019-16229	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222632	7.5	HIGH Network	py-lmdb_project	py-lmdb	An issue was discovered in py-lmdb 0.97. There is a divide-by-zero error in the function mdb_env_open2 if mdb_env_read_header obtains a zero value for a certain size field. NOTE: this outcome occurs …	CWE-369 Divide By Zero	CVE-2019-16228	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222633	9.8	CRITICAL Network	py-lmdb_project	py-lmdb	An issue was discovered in py-lmdb 0.97. For certain values of mn_flags, mdb_cursor_set triggers a memcpy with an invalid write operation within mdb_xcursor_init1. NOTE: this outcome occurs when acce…	CWE-787 Out-of-bounds Write	CVE-2019-16227	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222634	7.5	HIGH Network	py-lmdb_project	py-lmdb	An issue was discovered in py-lmdb 0.97. mdb_node_del does not validate a memmove in the case of an unexpected node->mn_hi, leading to an invalid write operation. NOTE: this outcome occurs when acces…	CWE-787 Out-of-bounds Write	CVE-2019-16226	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222635	9.8	CRITICAL Network	py-lmdb_project	py-lmdb	An issue was discovered in py-lmdb 0.97. For certain values of mp_flags, mdb_page_touch does not properly set up mc->mc_pg[mc->top], leading to an invalid write operation. NOTE: this outcome occurs w…	CWE-787 Out-of-bounds Write	CVE-2019-16225	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222636	9.8	CRITICAL Network	py-lmdb_project	py-lmdb	An issue was discovered in py-lmdb 0.97. For certain values of md_flags, mdb_node_add does not properly set up a memcpy destination, leading to an invalid write operation. NOTE: this outcome occurs w…	CWE-787 Out-of-bounds Write	CVE-2019-16224	2024-11-21 13:30	2019-09-12	Show	GitHub Exploit DB Packet Storm

222637	5.4	MEDIUM Network	wordpress debian	wordpress debian_linux	WordPress before 5.2.3 allows XSS in post previews by authenticated users.	CWE-79 Cross-site Scripting	CVE-2019-16223	2024-11-21 13:30	2019-09-11	Show	GitHub Exploit DB Packet Storm

222638	6.1	MEDIUM Network	wordpress debian	wordpress debian_linux	WordPress before 5.2.3 has an issue with URL sanitization in wp_kses_bad_protocol_once in wp-includes/kses.php that can lead to cross-site scripting (XSS) attacks.	CWE-79 Cross-site Scripting	CVE-2019-16222	2024-11-21 13:30	2019-09-11	Show	GitHub Exploit DB Packet Storm

222639	6.1	MEDIUM Network	wordpress debian	wordpress debian_linux	WordPress before 5.2.3 allows reflected XSS in the dashboard.	CWE-79 Cross-site Scripting	CVE-2019-16221	2024-11-21 13:30	2019-09-11	Show	GitHub Exploit DB Packet Storm

222640	6.1	MEDIUM Network	wordpress debian	wordpress debian_linux	In WordPress before 5.2.3, validation and sanitization of a URL in wp_validate_redirect in wp-includes/pluggable.php could lead to an open redirect if a provided URL path does not start with a forwar…	CWE-601 Open Redirect	CVE-2019-16220	2024-11-21 13:30	2019-09-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed