Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228781	9.3	危険	ZyXEL	-	ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2007-6730	2012-12-20 18:34	2009-09-10	Show	GitHub Exploit DB Packet Storm

228782	4.3	警告	ZyXEL	-	ZyXEL P-330W ルータの Web 管理インターフェースにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2007-6729	2012-12-20 18:34	2009-09-10	Show	GitHub Exploit DB Packet Storm

228783	6.8	警告	webportal	-	WebPortal CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0142	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228784	7.5	危険	webportal	-	WebPortal CMS の actions.php における任意のアカウントへのアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2008-0141	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228785	6.4	警告	uebimiau	-	Uebimiau Webmail の error.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0140	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228786	7.5	危険	snetworks	-	SNETWORKS PHP CLASSIFIEDS の config.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0137	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228787	5	警告	snitz forums 2000	-	Snitz Forums 2000 における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0136	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228788	5	警告	snitz forums 2000	-	Snitz Forums 2000 におけるデータベースをダウンロードされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0135	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228789	4.3	警告	snitz forums 2000	-	Snitz Forums 2000 の Forums/setup.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0134	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

228790	7.5	危険	thomas perez	-	Tribisur における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0133	2012-12-20 18:34	2008-01-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221971	6.5	MEDIUM Network	djangoproject fedoraproject	django fedora	Django 2.1 before 2.1.15 and 2.2 before 2.2.8 allows unintended model editing. A Django model admin displaying inline related models, where the user has view-only permissions to a parent model but ed…	CWE-276 Incorrect Default Permissions	CVE-2019-19118	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221972	9.8	CRITICAL Network	freeswitch	freeswitch	FreeSWITCH 1.6.10 through 1.10.1 has a default password in event_socket.conf.xml.	CWE-798 Use of Hard-coded Credentials	CVE-2019-19492	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221973	6.1	MEDIUM Network	testlink	testlink	TestLink 1.9.19 has XSS via the lib/testcases/archiveData.php edit parameter, the index.php reqURI parameter, or the URI in a lib/testcases/tcEdit.php?doAction=doDeleteStep request.	CWE-79 Cross-site Scripting	CVE-2019-19491	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221974	7.3	HIGH Local	litemanager	litemanager	LiteManager 4.5.0 has weak permissions (Everyone: Full Control) in the "LiteManagerFree - Server" folder, as demonstrated by ROMFUSClient.exe.	CWE-276 Incorrect Default Permissions	CVE-2019-19490	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221975	5.5	MEDIUM Local	smplayer	smplayer	SMPlayer 19.5.0 has a buffer overflow via a long .m3u file.	CWE-120 Classic Buffer Overflow	CVE-2019-19489	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221976	4.6	MEDIUM Physics	opensc_project	opensc	An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-cac1.c mishandles buffer limits for CAC certificates.	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2019-19481	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221977	4.6	MEDIUM Physics	opensc_project	opensc	An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/pkcs15-prkey.c has an incorrect free operation in sc_pkcs15_decode_prkdf_entry.	CWE-672 Operation on a Resource after Expiration or Release	CVE-2019-19480	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221978	5.5	MEDIUM Local	opensc_project debian fedoraproject	opensc debian_linux fedora	An issue was discovered in OpenSC through 0.19.0 and 0.20.x through 0.20.0-rc3. libopensc/card-setcos.c has an incorrect read operation during parsing of a SETCOS file attribute.	CWE-125 Out-of-bounds Read	CVE-2019-19479	2024-11-21 13:34	2019-12-2	Show	GitHub Exploit DB Packet Storm

221979	8.8	HIGH Network	zmanda	amanda	In Zmanda Management Console 3.3.9, ZMC_Admin_Advanced?form=adminTasks&action=Apply&command= allows CSRF, as demonstrated by command injection with shell metacharacters. This may depend on weak defau…	CWE-352 CWE-78 Origin Validation Error OS Command	CVE-2019-19469	2024-11-21 13:34	2019-12-1	Show	GitHub Exploit DB Packet Storm

221980	4.9	MEDIUM Network	proftpd fedoraproject debian	proftpd fedora debian_linux	An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encounter…	CWE-476 NULL Pointer Dereference	CVE-2019-19269	2024-11-21 13:34	2019-12-1	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed