Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 16, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228841	7.5	危険	virtual design studios	-	Virtual Design Studio vlbook の include/global.inc.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2073	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228842	4.3	警告	virtual design studios	-	Virtual Design Studio vlbook の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2072	2012-12-20 18:52	2008-05-5	Show	GitHub Exploit DB Packet Storm

228843	4.3	警告	WordPress.org	-	WordPress におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2068	2012-12-20 18:52	2008-04-25	Show	GitHub Exploit DB Packet Storm

228844	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Jokes Site Script の jokes.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2065	2012-12-20 18:52	2008-05-2	Show	GitHub Exploit DB Packet Storm

228845	10	危険	phpgedview	-	PhpGedView における脆弱性	CWE-noinfo 情報不足	CVE-2008-2064	2012-12-20 18:52	2008-05-2	Show	GitHub Exploit DB Packet Storm

228846	4.3	警告	softpedia	-	Softpedia SiteXS CMS の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2046	2012-12-20 18:52	2008-05-1	Show	GitHub Exploit DB Packet Storm

228847	5	警告	SugarCRM	-	SugarCRM Sugar Community Edition における絶対パストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2045	2012-12-20 18:52	2008-04-10	Show	GitHub Exploit DB Packet Storm

228848	6.5	警告	turnkey solutions	-	Turnkey Web Tools SunShop Shopping Cart の admin/adminindex.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2038	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

228849	7.5	危険	Mike Jolley	-	WordPress 用の Download Monitor プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2034	2012-12-20 18:52	2008-04-30	Show	GitHub Exploit DB Packet Storm

228850	7.5	危険	WordPress.org	-	WordPress 用の Spreadsheet プラグインの ss_load.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1982	2012-12-20 18:52	2008-04-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 16, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221731	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 office windows_server_2016 windows_rt_8.1 windows_7 windows_server_2019 office_365_proplus	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2019-1246	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221732	6.5	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_7 windows_rt_8.1	An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE…	CWE-200 Information Exposure	CVE-2019-1245	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221733	6.5	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE…	CWE-200 Information Exposure	CVE-2019-1244	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221734	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_7 windows_rt_8.1	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2019-1243	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221735	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_7 windows_rt_8.1	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2019-1242	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221736	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_rt_8.1 windows_7	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2019-1241	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221737	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019 windows_7	A remote code execution vulnerability exists when the Windows Jet Database Engine improperly handles objects in memory, aka 'Jet Database Engine Remote Code Execution Vulnerability'. This CVE ID is u…	NVD-CWE-noinfo	CVE-2019-1240	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221738	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the Chakra scripting engine handles objects in memory in Microsoft Edge, aka 'Chakra Scripting Engine Memory Corruption Vulnerability'. Th…	CWE-787 Out-of-bounds Write	CVE-2019-1237	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221739	7.5	HIGH Network	microsoft	windows_10 windows_7 windows_8.1 windows_rt_8.1 windows_server_2008 windows_server_2012 windows_server_2016 windows_server_2019	A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka 'VBScript Remote Code Execution Vulnerability'. This CVE ID is unique from CVE-2019-120…	CWE-787 Out-of-bounds Write	CVE-2019-1236	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

221740	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists in Windows Text Service Framework (TSF) when the TSF server process does not validate the source of input or commands it receives, aka 'Windows Text Ser…	CWE-346 Origin Validation Error	CVE-2019-1235	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm