Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 11, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227351	7.5	危険	scssboard	-	sCssBoard の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-5577	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227352	7.5	危険	scssboard	-	sCssBoard の admin/forums.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-5576	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227353	7.5	危険	proclanmanager	-	Pro Clan Manager におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2008-5575	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227354	7.5	危険	unscripts	-	Webmaster Marketplace の member.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-5574	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227355	4.3	警告	phpeppershop	-	PHPepperShop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5569	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227356	4.3	警告	php multiple newsletters	-	Triangle Solutions PHP Multiple Newsletters の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-5566	2012-12-20 18:52	2008-12-15	Show	GitHub Exploit DB Packet Storm

227357	5	警告	サン・マイクロシステムズ	-	Sun Java System Portal Server の Sun Java Web Console コンポーネントにおけるローカルファイルをアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-5549	2012-12-20 18:52	2008-12-5	Show	GitHub Exploit DB Packet Storm

227358	9.3	危険	VirusBuster	-	VirusBuster における HTML 文書内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5548	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

227359	9.3	危険	VirusBlokAda Ltd.	-	VirusBlokAda VBA32 における HTML 文書内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5546	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

227360	9.3	危険	トレンドマイクロ	-	Trend Micro AntiVirus の Trend Micro VSAPI における HTML 文書内のマルウェアの検出を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2008-5545	2012-12-20 18:52	2008-12-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224161	5.5	MEDIUM Local	adremsoft	netcrunch	AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted.	CWE-522 Insufficiently Protected Credentials	CVE-2019-14477	2024-11-21 13:26	2020-12-17	Show	GitHub Exploit DB Packet Storm

224162	6.5	MEDIUM Adjacent	tianocore debian	edk2 debian_linux	Logic issue EDK II may allow an unauthenticated user to potentially enable denial of service via adjacent access.	NVD-CWE-noinfo	CVE-2019-14587	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224163	8.0	HIGH Adjacent	tianocore debian	edk2 debian_linux	Use after free vulnerability in EDK II may allow an authenticated user to potentially enable escalation of privilege, information disclosure and/or denial of service via adjacent access.	CWE-416 Use After Free	CVE-2019-14586	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224164	7.8	HIGH Local	tianocore debian	edk2 debian_linux	Logic issue in DxeImageVerificationHandler() for EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.	NVD-CWE-noinfo	CVE-2019-14575	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224165	7.8	HIGH Local	tianocore debian	edk2 debian_linux	Integer truncation in EDK II may allow an authenticated user to potentially enable escalation of privilege via local access.	CWE-787 CWE-681 Out-of-bounds Write Incorrect Conversion between Numeric Types	CVE-2019-14563	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224166	5.5	MEDIUM Local	tianocore debian	edk2 debian_linux	Integer overflow in DxeImageVerificationHandler() EDK II may allow an authenticated user to potentially enable denial of service via local access.	CWE-190 Integer Overflow or Wraparound	CVE-2019-14562	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224167	7.5	HIGH Network	tianocore	edk2	Uncontrolled resource consumption in EDK II may allow an unauthenticated user to potentially enable denial of service via network access.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-14559	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224168	4.9	MEDIUM Network	tianocore	edk2	Improper authentication in EDK II may allow a privileged user to potentially enable information disclosure via network access.	CWE-287 Improper Authentication	CVE-2019-14553	2024-11-21 13:26	2020-11-24	Show	GitHub Exploit DB Packet Storm

224169	5.7	MEDIUM Adjacent	intel debian	bios debian_linux	Insufficient control flow management in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to p…	NVD-CWE-Other	CVE-2019-14558	2024-11-21 13:26	2020-10-5	Show	GitHub Exploit DB Packet Storm

224170	8.0	HIGH Adjacent	intel	bios	Buffer overflow in BIOS firmware for 8th, 9th, 10th Generation Intel(R) Core(TM), Intel(R) Celeron(R) Processor 4000 & 5000 Series Processors may allow an authenticated user to potentially enable ele…	CWE-120 Classic Buffer Overflow	CVE-2019-14557	2024-11-21 13:26	2020-10-5	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed