Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 8, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227701	4.3	警告	TYPO3 Association	-	TYPO3 用の air_filemanager エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2344	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

227702	7.5	危険	turnkey web tools	-	Turnkey Web Tools SunShop Shopping Cart の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2339	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

227703	4.3	警告	Vastal I-Tech & Co.	-	Vastal I-Tech phpVID の search_results.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2335	2012-12-20 18:52	2008-05-19	Show	GitHub Exploit DB Packet Storm

227704	7.5	危険	phpway	-	Kostenloses Linkmanagementscript における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2301	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227705	7.5	危険	加藤和良	-	Web Slider の Admin.php における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2298	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227706	7.5	危険	roticv	-	Rantx の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2297	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227707	7.5	危険	rgboard	-	Rgboard の include/bbs.lib.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2296	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227708	4.3	警告	rgboard	-	Rgboard の rg_search.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2295	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227709	7.5	危険	tpvgames	-	MPCS の admin.php における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2293	2012-12-20 18:52	2008-05-18	Show	GitHub Exploit DB Packet Storm

227710	7.5	危険	シマンテック	-	Symantec Altiris Deployment Solution の axengine.exe における暗号化されたドメイン資格情報を推測される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-2291	2012-12-20 18:52	2008-05-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224121	7.8	HIGH Local	ezautomation	ez_plc_editor	An attacker could use a specially crafted project file to corrupt the memory and execute code under the privileges of the EZ PLC Editor Versions 1.8.41 and prior.	CWE-787 Out-of-bounds Write	CVE-2019-13522	2024-11-21 13:25	2019-09-5	Show	GitHub Exploit DB Packet Storm

224122	7.8	HIGH Local	ezautomation	ez_touch_editor	An attacker could use a specially crafted project file to overflow the buffer and execute code under the privileges of the EZ Touch Editor Versions 2.1.0 and prior.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-13518	2024-11-21 13:25	2019-09-5	Show	GitHub Exploit DB Packet Storm

224123	8.8	HIGH Network	datalogic	av7000_firmware	Datalogic AV7000 Linear barcode scanner all versions prior to 4.6.0.0 is vulnerable to authentication bypass, which may allow an attacker to remotely execute arbitrary code.	CWE-287 Improper Authentication	CVE-2019-13526	2024-11-21 13:25	2019-08-30	Show	GitHub Exploit DB Packet Storm

224124	7.5	HIGH Network	citrix	storefront_server	Citrix StoreFront Server before 1903, 7.15 LTSR before CU4 (3.12.4000), and 7.6 LTSR before CU8 (3.0.8000) allows XXE attacks.	CWE-611 XXE	CVE-2019-13608	2024-11-21 13:25	2019-08-30	Show	GitHub Exploit DB Packet Storm

224125	5.3	MEDIUM Network	control-webpanel	webpanel	In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.848, the Login process allows attackers to check whether a username is valid by comparing response times.	CWE-203 Information Exposure Through Discrepancy	CVE-2019-13599	2024-11-21 13:25	2019-08-22	Show	GitHub Exploit DB Packet Storm

224126	7.8	HIGH Local	fujielectric	alpha5_smart_loader_firmware	Multiple buffer overflow issues have been identified in Alpha5 Smart Loader: All versions prior to 4.2. An attacker could use specially crafted project files to overflow the buffer and execute code u…	CWE-787 Out-of-bounds Write	CVE-2019-13520	2024-11-21 13:25	2019-08-21	Show	GitHub Exploit DB Packet Storm

224127	8.8	HIGH Network	osisoft	pi_web_api	In OSIsoft PI Web API and prior, the affected product is vulnerable to a direct attack due to a cross-site request forgery protection setting that has not taken effect.	CWE-352 Origin Validation Error	CVE-2019-13516	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224128	6.5	MEDIUM Network	osisoft	pi_web_api	OSIsoft PI Web API 2018 and prior may allow disclosure of sensitive information.	CWE-532 Inclusion of Sensitive Information in Log Files	CVE-2019-13515	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224129	7.8	HIGH Local	deltaww	delta_industrial_automation_dopsoft	In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger a use-after-free vulnerability, which may allow information disclosure, r…	CWE-416 Use After Free	CVE-2019-13514	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

224130	7.8	HIGH Local	deltaww	delta_industrial_automation_dopsoft	In Delta Industrial Automation DOPSoft, Version 4.00.06.15 and prior, processing a specially crafted project file may trigger multiple out-of-bounds read vulnerabilities, which may allow information …	CWE-125 Out-of-bounds Read	CVE-2019-13513	2024-11-21 13:25	2019-08-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed