Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 14, 2026, 12:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228351 6.5 警告 xchangeboard - XchangeBoard の newThread.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3035 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228352 7.5 危険 rss aggregator - RSS-aggregator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3034 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228353 9.3 危険 rss aggregator - RSS-aggregator における admin 関数へアクセスされ脆弱性 CWE-287
不適切な認証 		CVE-2008-3033 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228354 4.3 警告 The phpMyAdmin Project - TYPO3 用の phpMyAdmin エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3032 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228355 7.5 危険 Thomas Abeel - Simple PHP Agenda の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3031 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228356 4.3 警告 Web-Empowered Church Team - TYPO3 用の WEC Discussion Forum エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3029 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228357 4.3 警告 TYPO3 Association - TYPO3 用の Send-A-Card エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3028 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228358 7.5 危険 vangogh web cms - VanGogh Web CMS の get_article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3027 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228359 7.5 危険 plx web studio - plx Ad Trader の ad.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3025 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
228360 6.9 警告 QNX Software Systems - QNX Momentics の phgrafx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3024 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221671 7.8 HIGH
Local 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_7
windows_server_2019
windows_rt_8.1 		An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE ID is uniqu… NVD-CWE-noinfo
CVE-2019-1014 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221672 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_7 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… CWE-200
Information Exposure 		CVE-2019-1013 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221673 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_7 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… CWE-200
Information Exposure 		CVE-2019-1011 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221674 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_7 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… CWE-200
Information Exposure 		CVE-2019-1009 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221675 7.8 HIGH
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An elevation of privilege exists in Windows Audio Service, aka 'Windows Audio Service Elevation of Privilege Vulnerability'. This CVE ID is unique from CVE-2019-1021, CVE-2019-1022, CVE-2019-1026, CV… CWE-269
 Improper Privilege Management 		CVE-2019-1007 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221676 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_rt_8.1
windows_7
windows_server_2019 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… CWE-200
Information Exposure 		CVE-2019-1012 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221677 6.5 MEDIUM
Network 		microsoft windows_server_2008
windows_server_2012
windows_10
windows_8.1
windows_server_2016
windows_server_2019
windows_7
windows_rt_8.1 		An information disclosure vulnerability exists when the Windows GDI component improperly discloses the contents of its memory, aka 'Windows GDI Information Disclosure Vulnerability'. This CVE ID is u… CWE-200
Information Exposure 		CVE-2019-1010 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221678 7.5 HIGH
Network 		microsoft internet_explorer A remote code execution vulnerability exists in the way the scripting engine handles objects in memory in Microsoft browsers, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID is un… CWE-787
 Out-of-bounds Write 		CVE-2019-1005 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221679 7.5 HIGH
Network 		microsoft chakracore
edge 		A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th… CWE-787
 Out-of-bounds Write 		CVE-2019-1003 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm
221680 7.5 HIGH
Network 		microsoft edge A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th… CWE-787
 Out-of-bounds Write 		CVE-2019-1002 2024-11-21 13:35 2019-06-12 Show GitHub Exploit DB Packet Storm