Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227401 6.5 警告 shelter manager - Robin Rawson-Tetley ASM における脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2174 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
227402 7.1 危険 ヤマハ - Yamaha ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2173 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
227403 4.3 警告 ZyXEL - ZyXEL ZyWALL 100 におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2167 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
227404 4.3 警告 SonicWALL - SonicWall Email Security におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2162 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
227405 10 危険 tftp - Windows 上で稼動している TFTP Server におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2161 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
227406 7.5 危険 wordnet - Wordnet の searchwn におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2149 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
227407 4.6 警告 VideoLAN - VideoLAN VLC における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2147 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
227408 7.5 危険 WordPress.org - Wordpress の wp-includes/vars.php における特定のページに対するアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2146 2012-12-20 18:52 2008-05-12 Show GitHub Exploit DB Packet Storm
227409 2.6 注意 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-2140 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
227410 6.5 警告 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2139 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223881 9.8 CRITICAL
Network 		foliovision fv_flowplayer_video_player A SQL injection vulnerability exists in the FolioVision FV Flowplayer Video Player plugin before 7.3.19.727 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker … CWE-89
SQL Injection 		CVE-2019-13573 2024-11-21 13:25 2019-07-18 Show GitHub Exploit DB Packet Storm
223882 9.1 CRITICAL
Network 		nsa ghidra NSA Ghidra before 9.0.1 allows XXE when a project is opened or restored, or a tool is imported, as demonstrated by a project.prp file. CWE-611
XXE 		CVE-2019-13625 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223883 9.8 CRITICAL
Network 		onosproject onos In ONOS 1.15.0, apps/yang/web/src/main/java/org/onosproject/yang/web/YangWebResource.java mishandles backquote characters within strings that can be used in a shell command. CWE-19
 Data Processing Errors 		CVE-2019-13624 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223884 7.8 HIGH
Local 		nsa ghidra In NSA Ghidra before 9.1, path traversal can occur in RestoreTask.java (from the package ghidra.app.plugin.core.archive) via an archive with an executable file that has an initial ../ in its filename… CWE-22
Path Traversal 		CVE-2019-13623 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223885 7.5 HIGH
Network 		gpac gpac In GPAC before 0.8.0, isomedia/isom_read.c in libgpac.a has a heap-based buffer over-read, as demonstrated by a crash in gf_m2ts_sync in media_tools/mpegts.c. CWE-125
Out-of-bounds Read 		CVE-2019-13618 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223886 6.5 MEDIUM
Network 		f5 njs njs through 0.3.3, used in NGINX, has a heap-based buffer over-read in nxt_vsprintf in nxt/nxt_sprintf.c during error handling, as demonstrated by an njs_regexp_literal call that leads to an njs_pars… CWE-125
Out-of-bounds Read 		CVE-2019-13617 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223887 8.1 HIGH
Network 		libsdl
debian
opensuse
fedoraproject
canonical
redhat 		simple_directmedia_layer
debian_linux
leap
backports_sle
fedora
ubuntu_linux
enterprise_linux_desktop
enterprise_linux_workstation
enterprise_linux_server
enterprise_linux<… 		SDL (Simple DirectMedia Layer) through 1.2.15 and 2.x through 2.0.9 has a heap-based buffer over-read in BlitNtoN in video/SDL_blit_N.c when called from SDL_SoftBlit in video/SDL_blit.c. CWE-125
Out-of-bounds Read 		CVE-2019-13616 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223888 5.5 MEDIUM
Local 		videolan vlc_media_player libebml before 1.3.6, as used in the MKV module in VideoLAN VLC Media Player binaries before 3.0.3, has a heap-based buffer over-read in EbmlElement::FindNextElement. CWE-125
Out-of-bounds Read 		CVE-2019-13615 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223889 8.8 HIGH
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.838 to 0.9.8.846, remote attackers can bypass authentication in the login process by leveraging the knowledge of a valid username. The attacker… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-13605 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm
223890 5.9 MEDIUM
Network 		hidglobal digital_persona_u.are.u_4500_driver_firmware An issue was discovered in the HID Global DigitalPersona (formerly Crossmatch) U.are.U 4500 Fingerprint Reader Windows Biometric Framework driver 5.0.0.5. It has a statically coded initialization vec… CWE-330
 Use of Insufficiently Random Values 		CVE-2019-13603 2024-11-21 13:25 2019-07-17 Show GitHub Exploit DB Packet Storm