Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 9, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228091 6.8 警告 phpip - phpIP Management における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0538 2012-12-20 18:34 2008-02-1 Show GitHub Exploit DB Packet Storm
228092 4.3 警告 softcart - SoftCart の SoftCart.exe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0523 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228093 7.5 危険 WordPress.org - WordPress 用の WassUp プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0520 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228094 9.3 危険 SQLiteManager - SQLiteManager の spaw/dialogs/confirm.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-0516 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228095 7.8 危険 Phpcms - phpCMS の parser/include/class.cache_phpcms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0513 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228096 6.8 警告 WordPress.org - WordPress 用の Dean's Permalinks Migration プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-0508 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228097 7.5 危険 WordPress.org - WordPress 用の AdServe プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0507 2012-12-20 18:34 2008-01-31 Show GitHub Exploit DB Packet Storm
228098 5.8 警告 加藤和良 - phpMyClub におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0501 2012-12-20 18:34 2008-01-30 Show GitHub Exploit DB Packet Storm
228099 7.5 危険 WordPress.org - WordPress 用の fGallery プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0491 2012-12-20 18:34 2008-01-30 Show GitHub Exploit DB Packet Storm
228100 7.5 危険 WordPress.org - WordPress 用の WP-Cal プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0490 2012-12-20 18:34 2008-01-30 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224451 5.5 MEDIUM
Local 		google
opensuse 		chrome
backports 		Insufficient validation of untrusted input in intents in Google Chrome on Android prior to 78.0.3904.70 allowed a local attacker to leak files via a crafted application. CWE-20
 Improper Input Validation  		CVE-2019-13707 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224452 7.8 HIGH
Local 		google
opensuse 		chrome
backports_sle 		Out of bounds memory access in PDFium in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to potentially exploit heap corruption via a crafted PDF file. CWE-787
 Out-of-bounds Write 		CVE-2019-13706 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224453 4.3 MEDIUM
Network 		google
opensuse 		chrome
backports 		Insufficient policy enforcement in extensions in Google Chrome prior to 78.0.3904.70 allowed an attacker who convinced a user to install a malicious extension to leak cross-origin data via a crafted … CWE-269
 Improper Privilege Management 		CVE-2019-13705 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224454 4.3 MEDIUM
Network 		google
opensuse 		chrome
backports_sle 		Insufficient policy enforcement in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to bypass content security policy via a crafted HTML page. CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-13704 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224455 4.3 MEDIUM
Network 		google
opensuse 		chrome
backports_sle 		Insufficient policy enforcement in the Omnibox in Google Chrome on Android prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-13703 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224456 7.8 HIGH
Local 		google
opensuse 		chrome
backports_sle 		Inappropriate implementation in installer in Google Chrome on Windows prior to 78.0.3904.70 allowed a local attacker to perform privilege escalation via a crafted executable. CWE-269
 Improper Privilege Management 		CVE-2019-13702 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224457 4.3 MEDIUM
Network 		google
opensuse 		chrome
backports_sle 		Incorrect implementation in navigation in Google Chrome prior to 78.0.3904.70 allowed a remote attacker to spoof the contents of the Omnibox (URL bar) via a crafted HTML page. CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-13701 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224458 8.8 HIGH
Network 		google
opensuse 		chrome
backports_sle 		Out of bounds memory access in the gamepad API in Google Chrome prior to 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a c… CWE-787
 Out-of-bounds Write 		CVE-2019-13700 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224459 8.8 HIGH
Network 		google
opensuse 		chrome
backports_sle 		Use after free in media in Google Chrome prior to 78.0.3904.70 allowed a remote attacker who had compromised the renderer process to potentially exploit heap corruption via a crafted HTML page. CWE-416
 Use After Free 		CVE-2019-13699 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm
224460 8.8 HIGH
Network 		google chrome Out of bounds memory access in JavaScript in Google Chrome prior to 73.0.3683.103 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. CWE-787
 Out-of-bounds Write 		CVE-2019-13698 2024-11-21 13:25 2019-11-26 Show GitHub Exploit DB Packet Storm