Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227321 6.8 警告 xlight ftp server - XLight FTP Server の LDAP 認証機能におけるアクセス制限を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-0604 2012-12-20 18:34 2008-02-6 Show GitHub Exploit DB Packet Storm
227322 4.3 警告 Skype Technologies S.A. - Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0583 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227323 4.3 警告 Skype Technologies S.A. - Windows 上で稼動する Skype の Internet Explorer Web コントロールにおけるクロスゾーンスクリプティングの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0582 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227324 4.3 警告 トリップワイヤ - Tripwire Enterprise の Web 管理ログインページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0578 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227325 4.3 警告 webSPELL - webSPELL の admin/admincenter.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-0575 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227326 4.3 警告 webSPELL - webSPELL の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0574 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227327 7.2 危険 SafeNet, Inc - SafeNET HighAssurance Remote および SoftRemote の IPSecDrv.sys における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0573 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227328 4.3 警告 uniwin - Uniwin eCart Professional におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0558 2012-12-20 18:34 2008-02-4 Show GitHub Exploit DB Packet Storm
227329 10 危険 radio toolbox - Steamcast におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-0550 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227330 5 警告 radio toolbox - Steamcast の OggHeaderParse 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-0549 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223531 7.5 HIGH
Network 		gpac gpac In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-based buffer over-read, as demonstrated by a crash in gf_m2ts_sync in media_tools/mpegts.c. CWE-125
Out-of-bounds Read 		CVE-2019-13618 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223532 6.5 MEDIUM
Network 		f5 njs njs through 0.3.3, used in NGINX, has a heap-based buffer over-read in nxt_vsprintf in nxt/nxt_sprintf.c during error handling, as demonstrated by an njs_regexp_literal call that leads to an njs_pars… CWE-125
Out-of-bounds Read 		CVE-2019-13617 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223533 8.1 HIGH
Network 		libsdl
debian
opensuse
fedoraproject
canonical
redhat 		simple_directmedia_layer
debian_linux
leap
backports_sle
fedora
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux<… 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. CWE-125
Out-of-bounds Read 		CVE-2019-13616 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223534 5.5 MEDIUM
Local 		videolan vlc_media_player libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement. CWE-125
Out-of-bounds Read 		CVE-2019-13615 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223535 8.8 HIGH
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.838 to 0.9.8.846, remote attackers can bypass authentication in the login process by leveraging the knowledge of a valid username. The attacker… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-13605 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223536 5.9 MEDIUM
Network 		hidglobal digital_persona_u.are.u_4500_driver_firmware An issue was discovered in the HID Global DigitalPersona (formerly Crossmatch) U.are.U 4500 Fingerprint Reader Windows Biometric Framework driver 5.0.0.5. It has a statically coded initialization vec… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-13603 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223537 7.5 HIGH
Network 		altn mdaemon_email_server MDaemon Email Server 19 through 20.0.1 skips SpamAssassin checks by default for e-mail messages larger than 2 MB (and limits checks to 10 MB even with special configuration), which is arguably incons… CWE-20
 Improper Input Validation  		CVE-2019-13612 2024-11-21 13:25 2019-07-16 Show GitHub Exploit DB Packet Storm
223538 8.8 HIGH
Network 		python-engineio_project python-engineio An issue was discovered in python-engineio through 3.8.2. There is a Cross-Site WebSocket Hijacking (CSWSH) vulnerability that allows attackers to make WebSocket connections to a server by using a vi… CWE-352
 Origin Validation Error 		CVE-2019-13611 2024-11-21 13:25 2019-07-16 Show GitHub Exploit DB Packet Storm
223539 5.9 MEDIUM
Network 		assaabloy hid_digitalpersona_4500_firmware There is a short key vulnerability in HID Global DigitalPersona (formerly Crossmatch) U.are.U 4500 Fingerprint Reader v24. The key for obfuscating the fingerprint image is vulnerable to brute-force a… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2019-13604 2024-11-21 13:25 2019-07-15 Show GitHub Exploit DB Packet Storm
223540 7.8 HIGH
Local 		videolan
debian
canonical
opensuse 		vlc_media_player
debian_linux
ubuntu_linux
leap
backports_sle 		An Integer Underflow in MP4_EIA608_Convert() in modules/demux/mp4/mp4.c in VideoLAN VLC media player through 3.0.7.1 allows remote attackers to cause a denial of service (heap-based buffer overflow a… CWE-787
CWE-191
 Out-of-bounds Write
 Integer Underflow (Wrap or Wraparound) 		CVE-2019-13602 2024-11-21 13:25 2019-07-15 Show GitHub Exploit DB Packet Storm