Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227981	6.8	警告	Xine	-	xine-lib の xineplug_dmx_asf.so プラグインにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1110	2012-12-20 18:34	2008-02-29	Show	GitHub Exploit DB Packet Storm

227982	6.8	警告	quantum game library	-	Quantum Game Library における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1069	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227983	6.8	警告	portail web php	-	Portail Web Php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1068	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227984	6.8	警告	phpqladmin	-	phpQLAdmin における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1067	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227985	7.5	危険	Smarty	-	S9Y などの製品で使用される Smarty における任意の PHP 関数を呼び出される脆弱性	CWE-20 不適切な入力確認	CVE-2008-1066	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227986	4.3	警告	WordPress.org	-	WordPress 用の Sniplets プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1061	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227987	7.5	危険	WordPress.org	-	WordPress 用の Sniplets プラグインにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1060	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227988	7.5	危険	WordPress.org	-	WordPress 用の Sniplets プラグインにおける PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1059	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227989	6.9	警告	symark	-	Symark PowerBroker におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-1056	2012-12-20 18:34	2008-02-28	Show	GitHub Exploit DB Packet Storm

227990	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Kose_Yazilari モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1053	2012-12-20 18:34	2008-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 10, 2026, 4:58 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
214531	7.5	HIGH Network	adobe	coldfusion	ColdFusion 2018- update 4 and earlier and ColdFusion 2016- update 11 and earlier have a Security bypass vulnerability. Successful exploitation could lead to Information Disclosure in the context of t…	NVD-CWE-noinfo	CVE-2019-8072	2024-11-21 13:49	2019-09-28	Show	GitHub Exploit DB Packet Storm

214532	6.1	MEDIUM Network	open-emr	openemr	OpenEMR v5.0.1-6 allows XSS.	CWE-79 Cross-site Scripting	CVE-2019-8368	2024-11-21 13:49	2019-09-17	Show	GitHub Exploit DB Packet Storm

214533	7.2	HIGH Network	open-emr	openemr	OpenEMR v5.0.1-6 allows code execution.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-8371	2024-11-21 13:49	2019-09-17	Show	GitHub Exploit DB Packet Storm

214534	7.8	HIGH Local	adobe	application_manager	Adobe application manager installer version 10.0 have an Insecure Library Loading (DLL hijacking) vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context of the c…	CWE-427 Uncontrolled Search Path Element	CVE-2019-8076	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

214535	9.8	CRITICAL Network	adobe	flash_player_desktop_runtime flash_player	Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Use after free vulnerability. Successful exploitation could lead to Arbitrary Code Execution in the context …	CWE-416 Use After Free	CVE-2019-8070	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

214536	9.8	CRITICAL Network	adobe	flash_player_desktop_runtime flash_player	Adobe Flash Player 32.0.0.238 and earlier versions, 32.0.0.207 and earlier versions have a Same Origin Method Execution vulnerability. Successful exploitation could lead to Arbitrary Code Execution i…	CWE-346 Origin Validation Error	CVE-2019-8069	2024-11-21 13:49	2019-09-13	Show	GitHub Exploit DB Packet Storm

214537	6.5	MEDIUM Network	atlassian	jira_server	The /plugins/servlet/gadgets/makeRequest resource in Jira before version 8.4.0 allows remote attackers to access the content of internal network resources via a Server Side Request Forgery (SSRF) vul…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2019-8451	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

214538	4.8	MEDIUM Network	atlassian	jira_server	Various templates of the Optimization plugin in Jira before version 7.13.6, and from version 8.0.0 before version 8.4.0 allow remote attackers who have permission to manage custom fields to inject ar…	CWE-79 Cross-site Scripting	CVE-2019-8450	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

214539	5.3	MEDIUM Network	atlassian	jira	The /rest/api/latest/groupuserpicker resource in Jira before version 8.4.0 allows remote attackers to enumerate usernames via an information disclosure vulnerability.	CWE-306 Missing Authentication for Critical Function	CVE-2019-8449	2024-11-21 13:49	2019-09-11	Show	GitHub Exploit DB Packet Storm

214540	7.8	HIGH Local	checkpoint	endpoint_security capsule_docs_standalone_client remote_access_clients	Check Point Endpoint Security Initial Client for Windows before version E81.30 tries to load a DLL placed in any PATH location on a clean image without Endpoint Client installed. An attacker can leve…	CWE-426 Untrusted Search Path	CVE-2019-8461	2024-11-21 13:49	2019-08-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed