Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228711 4.3 警告 TYPO3 Association - TYPO3 用の WT Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2526 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
228712 4.3 警告 TYPO3 Association - TYPO3 用の Event Database エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2525 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
228713 7.5 危険 raknet - RakNet の Autopatcher サーバプラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2523 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
228714 6.5 警告 YABSoft - YABSoft Mega File Hosting Script の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2521 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
228715 2.1 注意 sarab - SaraB の sarab.sh スクリプトにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2517 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
228716 5 警告 シマンテック - Symantec Backup Exec System Recovery Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2512 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
228717 7.5 危険 WordPress.org - WordPress 用 Upload File プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2510 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
228718 4.3 警告 tr script news - Tr Script News の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2508 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
228719 7.5 危険 simpel side - Simpel Side Weblosning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2506 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
228720 4.3 警告 simpel side - Simpel Side Weblosning の result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2505 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221611 7.8 HIGH
Local 		microsoft windows_server_2019
windows_10 		An elevation of privilege vulnerability exists when the Windows Data Sharing Service improperly handles file operations, aka 'Windows Data Sharing Service Elevation of Privilege Vulnerability'. This … NVD-CWE-noinfo
CVE-2019-1379 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221612 5.5 MEDIUM
Local 		microsoft windows_10
windows_server_2016
windows_server_2019 		An information disclosure vulnerability exists in the way Windows Error Reporting (WER) handles objects in memory, aka 'Windows Error Reporting Information Disclosure Vulnerability'. CWE-200
Information Exposure 		CVE-2019-1374 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221613 9.8 CRITICAL
Network 		microsoft exchange_server A remote code execution vulnerability exists in Microsoft Exchange through the deserialization of metadata via PowerShell, aka 'Microsoft Exchange Remote Code Execution Vulnerability'. CWE-502
 Deserialization of Untrusted Data 		CVE-2019-1373 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221614 5.5 MEDIUM
Local 		microsoft open_enclave_software_development_kit An information disclosure vulnerability exists when affected Open Enclave SDK versions improperly handle objects in memory, aka 'Open Enclave SDK Information Disclosure Vulnerability'. CWE-200
Information Exposure 		CVE-2019-1370 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221615 5.3 MEDIUM
Network 		microsoft windows_10
windows_server_2016
windows_server_2019 		An information disclosure vulnerability exists when the Windows TCP/IP stack improperly handles IPv6 flowlabel filled in packets, aka 'Windows TCP/IP Information Disclosure Vulnerability'. CWE-200
Information Exposure 		CVE-2019-1324 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221616 6.8 MEDIUM
Network 		microsoft windows_server_2016
windows_10
windows_server_2019 		A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper… CWE-20
 Improper Input Validation  		CVE-2019-1310 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221617 6.8 MEDIUM
Network 		microsoft windows_10
windows_server_2016
windows_server_2019 		A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka 'Windows Hyper… CWE-20
 Improper Input Validation  		CVE-2019-1309 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221618 7.5 HIGH
Network 		microsoft azure_stack A spoofing vulnerability exists when Azure Stack fails to validate certain requests, aka 'Azure Stack Spoofing Vulnerability'. CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-1234 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm
221619 7.8 HIGH
Local 		microsoft windows_10_update_assistant An elevation of privilege vulnerability exists in Windows 10 Update Assistant in the way it handles permissions.A locally authenticated attacker could run arbitrary code with elevated system privileg… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-1378 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm
221620 6.5 MEDIUM
Network 		microsoft sql_server_management_studio An information disclosure vulnerability exists in Microsoft SQL Server Management Studio (SSMS) when it improperly enforces permissions, aka 'SQL Server Management Studio Information Disclosure Vulne… CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-1376 2024-11-21 13:36 2019-10-10 Show GitHub Exploit DB Packet Storm