Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227701 9.3 危険 reality - PHPizabi の image.php における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0805 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
227702 6.8 警告 Thecus - Thecus N5200Pro NAS Server の usrgetform.html における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0804 2012-12-20 18:34 2008-02-18 Show GitHub Exploit DB Packet Storm
227703 7.5 危険 VWar - VWar の calendar.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0753 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
227704 10 危険 ソニー・コンピュータエンタテインメント - Sony ImageStation 用の SonyISUpload.cab におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-0748 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
227705 7.5 危険 PreProject.com - PreProjects.com Pre Hotels & Resorts Management System の user_login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0744 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
227706 7.5 危険 powerscripts - PowerScripts PowerNews におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0742 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
227707 7.5 危険 shoppingtree - CP の admin/SA_shipFedExMeter.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0739 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
227708 7.5 危険 shoppingtree - CP における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0738 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
227709 7.5 危険 shoppingtree - CP の admin/utilities_ConfigHelp.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0737 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
227710 5 警告 shoppingtree - CP の admin/SA_shipFedExMeter.asp におけるパスを取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-0736 2012-12-20 18:34 2008-02-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224061 5.4 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, XSS in the domain parameter allows a low-privilege user to achieve root access via the email list page. CWE-79
Cross-site Scripting 		CVE-2019-13476 2024-11-21 13:24 2019-08-22 Show GitHub Exploit DB Packet Storm
224062 8.8 HIGH
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.837, CSRF in the forgot password function allows an attacker to change the password for the root account. CWE-352
 Origin Validation Error 		CVE-2019-13477 2024-11-21 13:24 2019-08-22 Show GitHub Exploit DB Packet Storm
224063 6.5 MEDIUM
Network 		otrs
debian 		otrs
debian_linux 		An issue was discovered in Open Ticket Request System (OTRS) 7.0.x through 7.0.8, and Community Edition 5.0.x through 5.0.36 and 6.0.x through 6.0.19. An attacker who is logged into OTRS as an agent … NVD-CWE-noinfo
CVE-2019-13458 2024-11-21 13:24 2019-08-21 Show GitHub Exploit DB Packet Storm
224064 7.8 HIGH
Local 		extenua silvershield extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an a… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13069 2024-11-21 13:24 2019-08-18 Show GitHub Exploit DB Packet Storm
224065 5.9 MEDIUM
Network 		w1.fi
fedoraproject
canonical
debian 		hostapd
fedora
ubuntu_linux
debian_linux 		The implementations of SAE and EAP-pwd in hostapd and wpa_supplicant 2.x through 2.8 are vulnerable to side-channel attacks as a result of observable timing differences and cache access patterns when… CWE-203
 Information Exposure Through Discrepancy 		CVE-2019-13377 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224066 5.5 MEDIUM
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A reachable assertion in the lookup1_values function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file. CWE-617
 Reachable Assertion 		CVE-2019-13223 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224067 7.1 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		An out-of-bounds read of a global buffer in the draw_line function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a craf… CWE-125
Out-of-bounds Read 		CVE-2019-13222 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224068 7.8 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A stack buffer overflow in the compute_codewords function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or execute arbitrary code by opening a crafted Ogg Vorbis fi… CWE-787
 Out-of-bounds Write 		CVE-2019-13221 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224069 7.1 HIGH
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		Use of uninitialized stack variables in the start_decoder function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service or disclose sensitive information by opening a craf… CWE-908
 Use of Uninitialized Resource 		CVE-2019-13220 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm
224070 5.5 MEDIUM
Local 		stb_vorbis_project
debian 		stb_vorbis
debian_linux 		A NULL pointer dereference in the get_window function in stb_vorbis through 2019-03-04 allows an attacker to cause a denial of service by opening a crafted Ogg Vorbis file. CWE-476
 NULL Pointer Dereference 		CVE-2019-13219 2024-11-21 13:24 2019-08-16 Show GitHub Exploit DB Packet Storm