Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227331 5 警告 radio toolbox - Steamcast におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-0548 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227332 4.3 警告 shoppingtree - CP の admin/utilities_ConfigHelp.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0547 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227333 7.5 危険 shoppingtree - CP における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0546 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227334 10 危険 Simple DirectMedia Layer - SDL_image の IMG_lbm.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0544 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227335 7.5 危険 PreProject.com - Pre Dynamic Institution における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0543 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227336 4.3 警告 trixbox - trixbox におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0540 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227337 6.8 警告 phpip - phpIP Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0538 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
227338 4.3 警告 softcart - SoftCart の SoftCart.exe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0523 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
227339 7.5 危険 WordPress.org - WordPress 用の WassUp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0520 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
227340 9.3 危険 SQLiteManager - SQLiteManager の spaw/dialogs/confirm.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0516 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 6, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223461 3.3 LOW
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the … CWE-416
 Use After Free 		CVE-2019-13511 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223462 7.8 HIGH
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the applica… CWE-416
 Use After Free 		CVE-2019-13510 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223463 9.8 CRITICAL
Network 		givewp givewp A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2019-13578 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
223464 9.8 CRITICAL
Network 		adenion blog2social The Adenion Blog2Social plugin through 5.5.0 for WordPress allows SQL Injection. CWE-89
SQL Injection 		CVE-2019-13572 2024-11-21 13:25 2019-08-2 Show GitHub Exploit DB Packet Storm
223465 8.8 HIGH
Network 		cimg cimg CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image. CWE-787
 Out-of-bounds Write 		CVE-2019-13568 2024-11-21 13:25 2019-08-1 Show GitHub Exploit DB Packet Storm
223466 9.1 CRITICAL
Network 		wpfastestcache wp_fastest_cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. CWE-22
Path Traversal 		CVE-2019-13635 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223467 6.5 MEDIUM
Network 		imgix imgix Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250x64250 pixels, which is mishandled… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13655 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223468 9.8 CRITICAL
Network 		vsourz advanced_cf7_db A SQL injection vulnerability exists in the Vsourz Digital Advanced CF7 DB plugin through 1.6.1 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute a… CWE-89
SQL Injection 		CVE-2019-13571 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223469 7.4 HIGH
Network 		oneidentity cloud_access_manager One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-13498 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
223470 6.1 MEDIUM
Network 		wikindx_project wikindx A cross-site scripting (XSS) vulnerability in getPagingStart() in core/lists/PAGING.php in WIKINDX before 5.8.2 allows remote attackers to inject arbitrary web script or HTML via the PagingStart para… CWE-79
Cross-site Scripting 		CVE-2019-13588 2024-11-21 13:25 2019-07-27 Show GitHub Exploit DB Packet Storm