Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 19, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228851 4 警告 softalk mail server - Softalk Mail Server の IMAP サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4041 2012-12-20 18:52 2008-09-11 Show GitHub Exploit DB Packet Storm
228852 7.5 危険 spice classifieds - Spice Classifieds の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4039 2012-12-20 18:52 2008-09-11 Show GitHub Exploit DB Packet Storm
228853 4.3 警告 PunBB - PunBB の userlist.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3968 2012-12-20 18:52 2008-08-20 Show GitHub Exploit DB Packet Storm
228854 2.6 注意 ssmtp - ssmtp の ssmtp.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3962 2012-12-20 18:52 2008-08-10 Show GitHub Exploit DB Packet Storm
228855 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Shaadi Zone の keyword_search_action.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3953 2012-12-20 18:52 2008-09-10 Show GitHub Exploit DB Packet Storm
228856 7.5 危険 Vastal I-Tech & Co. - Vastal I-Tech Agent Zone の view_ann.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3951 2012-12-20 18:52 2008-09-10 Show GitHub Exploit DB Packet Storm
228857 7.2 危険 SUSE - Emacs の emacs/lisp/progmodes/python.el における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3949 2012-12-20 18:52 2008-09-19 Show GitHub Exploit DB Packet Storm
228858 7.5 危険 xrms - XRMS の admin/users/self-2.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3948 2012-12-20 18:52 2008-09-5 Show GitHub Exploit DB Packet Storm
228859 7.5 危険 source workshop - Words タグの index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3945 2012-12-20 18:52 2008-09-5 Show GitHub Exploit DB Packet Storm
228860 6.9 警告 r foundation - javareconf における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2008-3931 2012-12-20 18:52 2008-09-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221431 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the api/method/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20520 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221432 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the user/ URI, as demonstrated by a crafted e-mail address. CWE-79
Cross-site Scripting 		CVE-2019-20519 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221433 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the project/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20518 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221434 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the contact/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20517 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221435 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the blog/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20516 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221436 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the addresses/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20515 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221437 6.1 MEDIUM
Network 		frappe erpnext ERPNext 11.1.47 allows reflected XSS via the PATH_INFO to the address/ URI. CWE-79
Cross-site Scripting 		CVE-2019-20514 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221438 6.1 MEDIUM
Network 		edx open_edx Open edX Ironwood.1 allows support/certificates?user= reflected XSS. CWE-79
Cross-site Scripting 		CVE-2019-20513 2024-11-21 13:38 2020-03-20 Show GitHub Exploit DB Packet Storm
221439 6.1 MEDIUM
Network 		igniterealtime openfire Ignite Realtime Openfire 4.4.1 allows XSS via the setup/setup-datasource-standard.jsp serverURL parameter. CWE-79
Cross-site Scripting 		CVE-2019-20527 2024-11-21 13:38 2020-03-19 Show GitHub Exploit DB Packet Storm
221440 6.1 MEDIUM
Network 		ilch ilch_cms ilchCMS 2.1.23 allows XSS via the index.php/partner/index Banner parameter. CWE-79
Cross-site Scripting 		CVE-2019-20524 2024-11-21 13:38 2020-03-19 Show GitHub Exploit DB Packet Storm