Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":May 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 227781 | 10 | 危険 | シマンテック | - | Symantec Backup Exec System Recovery Manager で使用される Symantec LiveState Apache Tomcat サーバで稼動している FileUpload クラスにおける任意の JSP ファイルをアップロードされる脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2008-0457 | 2012-12-20 18:34 | 2008-02-4 | Show | GitHub Exploit DB Packet Storm |
| 227782 | 5 | 警告 | siteman | - | Siteman の articles.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-0452 | 2012-12-20 18:34 | 2008-01-24 | Show | GitHub Exploit DB Packet Storm |
| 227783 | 7.5 | 危険 | rocksalt international | - | VP-ASP Shopping Cart の paypalresult.asp における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0449 | 2012-12-20 18:34 | 2008-01-24 | Show | GitHub Exploit DB Packet Storm |
| 227784 | 7.5 | 危険 | small axe solutions | - | Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-0442 | 2012-12-20 18:34 | 2008-01-24 | Show | GitHub Exploit DB Packet Storm |
| 227785 | 6.8 | 警告 | 東芝 | - | Toshiba Surveillance RecordSend ActiveX コントロールにおけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2008-0399 | 2012-12-20 18:34 | 2008-01-23 | Show | GitHub Exploit DB Packet Storm |
| 227786 | 6.8 | 警告 | WordPress.org | - | WordPress 用の WP-Forum プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0388 | 2012-12-20 18:34 | 2008-01-22 | Show | GitHub Exploit DB Packet Storm |
| 227787 | 7.5 | 危険 | urulu | - | Urulu の server/widgetallocator.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0385 | 2012-12-20 18:34 | 2008-02-29 | Show | GitHub Exploit DB Packet Storm |
| 227788 | 6.8 | 警告 | softpedia | - | Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-0376 | 2012-12-20 18:34 | 2008-01-22 | Show | GitHub Exploit DB Packet Storm |
| 227789 | 6.8 | 警告 | Pixelpost.org | - | Pixelpost の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0358 | 2012-12-20 18:34 | 2008-01-16 | Show | GitHub Exploit DB Packet Storm |
| 227790 | 7.5 | 危険 | phpecho cms | - | PHPEcho CMS の forum モジュールにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-0355 | 2012-12-20 18:34 | 2008-01-18 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:May 7, 2026, 4:22 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224171 | 7.8 |
HIGH
Local |
libosinfo fedoraproject redhat |
libosinfo fedora enterprise_linux enterprise_linux_eus enterprise_linux_server_tus enterprise_linux_server_aus |
libosinfo 1.5.0 allows local users to discover credentials by listing a process, because credentials are passed to osinfo-install-script via the command line. |
CWE-200
Information Exposure |
CVE-2019-13313 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224172 | 9.8 |
CRITICAL
Network |
mytinytodo | mytinytodo | myTinyTodo 1.3.3 through 1.4.3 allows CSV Injection. This is fixed in 1.5. |
CWE-1236
Improper Neutralization of Formula Elements in a CSV File |
CVE-2019-13144 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224173 | 8.8 |
HIGH
Network |
ffmpeg | ffmpeg | block_cmp() in libavcodec/zmbvenc.c in FFmpeg 4.1.3 has a heap-based buffer over-read. |
CWE-125
Out-of-bounds Read |
CVE-2019-13312 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224174 | 6.5 |
MEDIUM
Network |
imagemagick canonical debian opensuse |
imagemagick ubuntu_linux debian_linux leap |
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of a wand/mogrify.c error. |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-13311 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224175 | 6.5 |
MEDIUM
Network |
imagemagick canonical opensuse |
imagemagick ubuntu_linux leap |
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of an error in MagickWand/mogrify.c. |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-13310 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224176 | 6.5 |
MEDIUM
Network |
imagemagick debian canonical opensuse |
imagemagick debian_linux ubuntu_linux leap |
ImageMagick 7.0.8-50 Q16 has memory leaks at AcquireMagickMemory because of mishandling the NoSuchImage error in CLIListOperatorImages in MagickWand/operation.c. |
CWE-401
Missing Release of Memory after Effective Lifetime |
CVE-2019-13309 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224177 | 8.8 |
HIGH
Network |
imagemagick canonical debian opensuse |
imagemagick ubuntu_linux debian_linux leap |
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow in MagickCore/fourier.c in ComplexImage. |
CWE-787
Out-of-bounds Write |
CVE-2019-13308 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224178 | 7.8 |
HIGH
Local |
imagemagick debian canonical opensuse |
imagemagick debian_linux ubuntu_linux leap |
ImageMagick 7.0.8-50 Q16 has a heap-based buffer overflow at MagickCore/statistic.c in EvaluateImages because of mishandling rows. |
CWE-787
Out-of-bounds Write |
CVE-2019-13307 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224179 | 7.8 |
HIGH
Local |
imagemagick debian canonical opensuse |
imagemagick debian_linux ubuntu_linux leap |
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of off-by-one errors. |
CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error |
CVE-2019-13306 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |
| 224180 | 7.8 |
HIGH
Local |
imagemagick debian canonical opensuse |
imagemagick debian_linux ubuntu_linux leap |
ImageMagick 7.0.8-50 Q16 has a stack-based buffer overflow at coders/pnm.c in WritePNMImage because of a misplaced strncpy and an off-by-one error. |
CWE-787 CWE-193 Out-of-bounds Write Off-by-one Error |
CVE-2019-13305 | 2024-11-21 13:24 | 2019-07-5 | Show | GitHub Exploit DB Packet Storm |