Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228841 7.5 危険 virtual design studios - Virtual Design Studio vlbook の include/global.inc.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2073 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
228842 4.3 警告 virtual design studios - Virtual Design Studio vlbook の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2072 2012-12-20 18:52 2008-05-5 Show GitHub Exploit DB Packet Storm
228843 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2068 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
228844 7.5 危険 YourFreeWorld.com - YourFreeWorld Jokes Site Script の jokes.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2065 2012-12-20 18:52 2008-05-2 Show GitHub Exploit DB Packet Storm
228845 10 危険 phpgedview - PhpGedView における脆弱性 CWE-noinfo
情報不足 		CVE-2008-2064 2012-12-20 18:52 2008-05-2 Show GitHub Exploit DB Packet Storm
228846 4.3 警告 softpedia - Softpedia SiteXS CMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2046 2012-12-20 18:52 2008-05-1 Show GitHub Exploit DB Packet Storm
228847 5 警告 SugarCRM - SugarCRM Sugar Community Edition における絶対パストラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2045 2012-12-20 18:52 2008-04-10 Show GitHub Exploit DB Packet Storm
228848 6.5 警告 turnkey solutions - Turnkey Web Tools SunShop Shopping Cart の admin/adminindex.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2038 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
228849 7.5 危険 Mike Jolley - WordPress 用の Download Monitor プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2034 2012-12-20 18:52 2008-04-30 Show GitHub Exploit DB Packet Storm
228850 7.5 危険 WordPress.org - WordPress 用の Spreadsheet プラグインの ss_load.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1982 2012-12-20 18:52 2008-04-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224651 6.4 MEDIUM
Physics 		opensc_project
debian
fedoraproject 		opensc
debian_linux
fedora 		OpenSC before 0.20.0-rc1 has an out-of-bounds access of an ASN.1 Bitstring in decode_bit_string in libopensc/asn1.c. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2019-15945 2024-11-21 13:29 2019-09-6 Show GitHub Exploit DB Packet Storm
224652 8.8 HIGH
Network 		ffmpeg ffmpeg FFmpeg through 4.2 has a "Conditional jump or move depends on uninitialised value" issue in h2645_parse because alloc_rbsp_buffer in libavcodec/h2645_parse.c mishandles rbsp_buffer. CWE-252
 Unchecked Return Value 		CVE-2019-15942 2024-11-21 13:29 2019-09-6 Show GitHub Exploit DB Packet Storm
224653 5.9 MEDIUM
Network 		opencv
opensuse
debian 		opencv
leap
debian_linux 		An issue was discovered in OpenCV 4.1.0. There is a divide-by-zero error in cv::HOGDescriptor::getDescriptorSize in modules/objdetect/src/hog.cpp. CWE-369
 Divide By Zero 		CVE-2019-15939 2024-11-21 13:29 2019-09-6 Show GitHub Exploit DB Packet Storm
224654 9.8 CRITICAL
Network 		pengutronix barebox Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_req in fs/nfs.c because a length field is directly used for a memcpy. CWE-787
 Out-of-bounds Write 		CVE-2019-15938 2024-11-21 13:29 2019-09-6 Show GitHub Exploit DB Packet Storm
224655 9.8 CRITICAL
Network 		pengutronix barebox Pengutronix barebox through 2019.08.1 has a remote buffer overflow in nfs_readlink_reply in net/nfs.c because a length field is directly used for a memcpy. CWE-787
 Out-of-bounds Write 		CVE-2019-15937 2024-11-21 13:29 2019-09-6 Show GitHub Exploit DB Packet Storm
224656 7.8 HIGH
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 4.20.2. An out-of-bounds access exists in the function build_audio_procunit in the file sound/usb/mixer.c. CWE-125
Out-of-bounds Read 		CVE-2019-15927 2024-11-21 13:29 2019-09-5 Show GitHub Exploit DB Packet Storm
224657 9.1 CRITICAL
Network 		linux
debian
canonical 		linux_kernel
debian_linux
ubuntu_linux 		An issue was discovered in the Linux kernel before 5.2.3. Out of bounds access exists in the functions ath6kl_wmi_pstream_timeout_event_rx and ath6kl_wmi_cac_event_rx in the file drivers/net/wireless… CWE-125
Out-of-bounds Read 		CVE-2019-15926 2024-11-21 13:29 2019-09-5 Show GitHub Exploit DB Packet Storm
224658 7.8 HIGH
Local 		linux
canonical 		linux_kernel
ubuntu_linux 		An issue was discovered in the Linux kernel before 5.2.3. An out of bounds access exists in the function hclge_tm_schd_mode_vnet_base_cfg in the file drivers/net/ethernet/hisilicon/hns3/hns3pf/hclge_… CWE-125
Out-of-bounds Read 		CVE-2019-15925 2024-11-21 13:29 2019-09-5 Show GitHub Exploit DB Packet Storm
224659 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.0.11. fm10k_init_module in drivers/net/ethernet/intel/fm10k/fm10k_main.c has a NULL pointer dereference because there is no -ENOMEM upon an alloc_… CWE-476
 NULL Pointer Dereference 		CVE-2019-15924 2024-11-21 13:29 2019-09-5 Show GitHub Exploit DB Packet Storm
224660 5.5 MEDIUM
Local 		linux linux_kernel An issue was discovered in the Linux kernel before 5.0.9. There is a NULL pointer dereference for a cd data structure if alloc_disk fails in drivers/block/paride/pf.c. CWE-476
 NULL Pointer Dereference 		CVE-2019-15923 2024-11-21 13:29 2019-09-5 Show GitHub Exploit DB Packet Storm