Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 14, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228011	4.3	警告	phpwebgallery	-	PhpWebGallery の admin/include/isadmin.inc.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-4591	2012-12-20 18:52	2008-10-16	Show	GitHub Exploit DB Packet Storm

228012	7.5	危険	stash	-	Stash における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4590	2012-12-20 18:52	2008-10-16	Show	GitHub Exploit DB Packet Storm

228013	5	警告	Matthias Wandel	-	jhead の DoCommand 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4575	2012-12-20 18:52	2008-10-15	Show	GitHub Exploit DB Packet Storm

228014	7.5	危険	real-estate-scripts	-	Real Estate Classifieds の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4570	2012-12-20 18:52	2008-10-15	Show	GitHub Exploit DB Packet Storm

228015	7.5	危険	xigla	-	XIGLA Software Absolute Poll Manager XE の xlacomments.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4569	2012-12-20 18:52	2008-10-15	Show	GitHub Exploit DB Packet Storm

228016	6.8	警告	VideoLAN	-	VLC Media Player における任意のメモリを上書きされる脆弱性	CWE-399 リソース管理の問題	CVE-2008-4558	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

228017	7.2	危険	Fabrice Bellard	-	Debian GNU/Linux 上で稼動する qemu の qemu-make-debian-root における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4553	2012-12-20 18:52	2008-10-15	Show	GitHub Exploit DB Packet Storm

228018	5	警告	strongSwan	-	strongSwan におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-4551	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

228019	9.3	危険	rtssentry	-	RTS Sentry の PTZCamPanelCtrl ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-4548	2012-12-20 18:52	2008-10-14	Show	GitHub Exploit DB Packet Storm

228020	7.5	危険	PHP-Fusion	-	PHP-Fusion 用の Recepies モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4527	2012-12-20 18:52	2008-10-9	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221681	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on th…	NVD-CWE-noinfo	CVE-2019-1303	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221682	8.8	HIGH Network	microsoft	asp.net_core	An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of…	CWE-20 Improper Input Validation	CVE-2019-1302	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221683	7.5	HIGH Network	microsoft	powershell_core .net_core	A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1301	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221684	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…	CWE-787 Out-of-bounds Write	CVE-2019-1300	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221685	6.5	MEDIUM Network	microsoft	edge	An information disclosure vulnerability exists when Microsoft Edge based on Edge HTML improperly handles objects in memory, aka 'Microsoft Edge based on Edge HTML Information Disclosure Vulnerability…	CWE-665 Improper Initialization	CVE-2019-1299	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221686	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…	CWE-787 Out-of-bounds Write	CVE-2019-1298	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221687	8.8	HIGH Network	microsoft	excel office office_365_proplus	A remote code execution vulnerability exists in Microsoft Excel software when the software fails to properly handle objects in memory, aka 'Microsoft Excel Remote Code Execution Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1297	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221688	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This …	CWE-20 Improper Input Validation	CVE-2019-1296	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221689	8.8	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	A remote code execution vulnerability exists in Microsoft SharePoint where APIs aren't properly protected from unsafe data input, aka 'Microsoft SharePoint Remote Code Execution Vulnerability'. This …	CWE-20 Improper Input Validation	CVE-2019-1295	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221690	4.6	MEDIUM Physics	microsoft	windows_10 windows_server_2016 windows_server_2019	A security feature bypass exists when Windows Secure Boot improperly restricts access to debugging functionality, aka 'Windows Secure Boot Security Feature Bypass Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1294	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm