Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228121	4.3	警告	TYPO3 Association	-	TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2452	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228122	7.5	危険	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2451	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228123	4.3	警告	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2450	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228124	7.5	危険	wgcc	-	WGCC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2446	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228125	4.3	警告	wgcc	-	WGCC の profile.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2445	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228126	7.5	危険	therealestatescript	-	The Real Estate Script の dpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2443	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

228127	5	警告	トレンドマイクロ	-	Trend Micro OfficeScan および Worry-Free Business Security クライアントの OfficeScanNT Listener サービスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2439	2012-12-20 18:52	2008-09-26	Show	GitHub Exploit DB Packet Storm

228128	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan および Client Server Messaging Security の cgiRecvFile.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2437	2012-12-20 18:52	2008-09-12	Show	GitHub Exploit DB Packet Storm

228129	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-2435	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

228130	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおけるクライアントシステム上へ任意のライブラリファイルをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-2434	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 12, 2026, 5:06 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224761	7.8	HIGH Local	qualcomm	apq8009_firmware apq8017_firmware apq8053_firmware apq8096_firmware apq8096au_firmware apq8098_firmware ipq6018_firmware ipq8074_firmware mdm9150_firmware mdm9205_firmware<…	Lack of check that the RX FIFO write index that is read from shared RAM is less than the FIFO size results into memory corruption and potential information leakage in Snapdragon Auto, Snapdragon Comp…	CWE-787 Out-of-bounds Write	CVE-2019-14000	2024-11-21 13:25	2020-03-5	Show	GitHub Exploit DB Packet Storm

224762	7.5	HIGH Network	combodo	itop	iTop 2.2.0 through 2.6.0 allows remote attackers to cause a denial of service (application outage) via many requests to launch a compile operation. The requests use the pages/exec.php?exec_env=produc…	NVD-CWE-noinfo	CVE-2019-13967	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

224763	6.1	MEDIUM Network	combodo	itop	In iTop through 2.6.0, an XSS payload can be delivered in certain fields (such as icon) of the XML file used to build the dashboard. This is similar to CVE-2015-6544 (which is only about the dashboar…	CWE-79 Cross-site Scripting	CVE-2019-13966	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

224764	6.1	MEDIUM Network	combodo	itop	Because of a lack of sanitization around error messages, multiple Reflective XSS issues exist in iTop through 2.6.0 via the param_file parameter to webservices/export.php, webservices/cron.php, or en…	CWE-79 Cross-site Scripting	CVE-2019-13965	2024-11-21 13:25	2020-02-15	Show	GitHub Exploit DB Packet Storm

224765	7.5	HIGH Network	siemens	profinet_driver dk_standard_ethernet_controller simatic_ipc_support ek-ertec_200_firmware ek-ertec_200p_firmware ruggedcom_rm1224_firmware scalance_m-800_firmware scalance_s615_f…	Profinet-IO (PNIO) stack versions prior V06.00 do not properly limit internal resource allocation when multiple legitimate diagnostic package requests are sent to the DCE-RPC interface. This could le…	-	CVE-2019-13946	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

224766	7.5	HIGH Network	siemens	ozw672_firmware ozw772_firmware	A vulnerability has been identified in OZW672 (All versions < V10.00), OZW772 (All versions < V10.00). Vulnerable versions of OZW Web Server use predictable path names for project files that legitima…	CWE-552 Files or Directories Accessible to External Parties	CVE-2019-13941	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

224767	7.5	HIGH Network	siemens	s7-1200_cpu_1211c_firmware s7-1200_cpu_1212c_firmware s7-1200_cpu_1214c_firmware s7-1200_cpu_1215c_firmware s7-1200_cpu_1217c_firmware s7-1200_cpu_1212fc_firmware s7-1200_cpu_1214fc…	A vulnerability has been identified in SIMATIC ET 200pro IM154-8 PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8F PN/DP CPU (All versions < V3.X.17), SIMATIC ET 200pro IM154-8FX PN/DP C…	-	CVE-2019-13940	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

224768	7.5	HIGH Network	siemens	scalance_s602_firmware scalance_s612_firmware scalance_s623_firmware scalance_s627-2m_firmware	A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627…	-	CVE-2019-13925	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

224769	7.5	HIGH Network	siemens	scalance_s602_firmware scalance_s612_firmware scalance_s623_firmware scalance_s627-2m_firmware	A vulnerability has been identified in SCALANCE S602 (All versions >= V3.0 and < V4.1), SCALANCE S612 (All versions >= V3.0 and < V4.1), SCALANCE S623 (All versions >= V3.0 and < V4.1), SCALANCE S627…	CWE-400 Uncontrolled Resource Consumption	CVE-2019-13926	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

224770	5.4	MEDIUM Network	siemens	scalance_xc-200_firmware scalance_xf-200_firmware scalance_xp-200_firmware scalance_x-200irt_firmware scalance_xb-200_firmware scalance_xr-300wg_firmware scalance_x-300_firmware …	A vulnerability has been identified in SCALANCE S602 (All versions < V4.1), SCALANCE S612 (All versions < V4.1), SCALANCE S623 (All versions < V4.1), SCALANCE S627-2M (All versions < V4.1), SCALANCE …	-	CVE-2019-13924	2024-11-21 13:25	2020-02-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed