Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227671	6.3	警告	xwine	-	Debian GNU/Linux 上で稼動する XWine の w_export.c における任意のコマンドを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0931	2012-12-20 18:34	2008-03-3	Show	GitHub Exploit DB Packet Storm

227672	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Manuales モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0922	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

227673	4.3	警告	tendenci	-	Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0793	2012-12-20 18:34	2008-02-14	Show	GitHub Exploit DB Packet Storm

227674	4.3	警告	Simple Machines	-	SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0775	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

227675	7.5	危険	site2nite	-	Site2Nite の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0771	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

227676	5	警告	SafeNet, Inc	-	SafeNet Sentinel Protection Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0760	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

227677	10	危険	サイベース	-	SQL Anywhere で使用されている Sybase MobiLink の mlsrv10.exe におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0912	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

227678	4.3	警告	schoolwires	-	Schoolwires Academic Portal の browse.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0909	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

227679	7.5	危険	schoolwires	-	browse.asp の Schoolwires Academic Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0908	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

227680	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Inhalt モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0907	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224131	3.3	LOW Local	fujielectric	frenic_loader	Fuji Electric FRENIC Loader 3.5.0.0 and prior is vulnerable to an out-of-bounds read vulnerability, which may allow an attacker to read limited information from the device.	CWE-125 Out-of-bounds Read	CVE-2019-13512	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224132	3.3	LOW Local	rockwellautomation	arena_simulation_software	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the …	CWE-416 Use After Free	CVE-2019-13511	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224133	7.8	HIGH Local	rockwellautomation	arena_simulation_software	Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the applica…	CWE-416 Use After Free	CVE-2019-13510	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224134	9.8	CRITICAL Network	givewp	givewp	A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQ…	CWE-89 SQL Injection	CVE-2019-13578	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224135	9.8	CRITICAL Network	adenion	blog2social	The Adenion Blog2Social plugin through 5.5.0 for WordPress allows SQL Injection.	CWE-89 SQL Injection	CVE-2019-13572	2024-11-21 13:25	2019-08-2	Show	GitHub Exploit DB Packet Storm

224136	8.8	HIGH Network	cimg	cimg	CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image.	CWE-787 Out-of-bounds Write	CVE-2019-13568	2024-11-21 13:25	2019-08-1	Show	GitHub Exploit DB Packet Storm

224137	9.1	CRITICAL Network	wpfastestcache	wp_fastest_cache	The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal.	CWE-22 Path Traversal	CVE-2019-13635	2024-11-21 13:25	2019-07-30	Show	GitHub Exploit DB Packet Storm

224138	6.5	MEDIUM Network	imgix	imgix	Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250x64250 pixels, which is mishandled…	CWE-400 Uncontrolled Resource Consumption	CVE-2019-13655	2024-11-21 13:25	2019-07-30	Show	GitHub Exploit DB Packet Storm

224139	9.8	CRITICAL Network	vsourz	advanced_cf7_db	A SQL injection vulnerability exists in the Vsourz Digital Advanced CF7 DB plugin through 1.6.1 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute a…	CWE-89 SQL Injection	CVE-2019-13571	2024-11-21 13:25	2019-07-30	Show	GitHub Exploit DB Packet Storm

224140	7.4	HIGH Network	oneidentity	cloud_access_manager	One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4.	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2019-13498	2024-11-21 13:25	2019-07-30	Show	GitHub Exploit DB Packet Storm