Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228941 7.5 危険 TYPO3 Association - TYPO3 用の JobControl エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4658 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228942 7.5 危険 TYPO3 Association - TYPO3 用の Econda エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4657 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228943 7.5 危険 TYPO3 Association - TYPO3 用の Frontend Users View エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4656 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228944 7.5 危険 TYPO3 Association - TYPO3 用の Simple survey エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4655 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228945 9.3 危険 VideoLAN - VLC Media Player の Ty demux プラグインにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-4654 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228946 7.5 危険 XOOPS - XOOPS 用の Makale モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4653 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228947 7.5 危険 sweetcms - sweetCMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4647 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228948 2.1 注意 ウェブセンス - Websense Enterprise の Websense Reporter Module におけるデータベースへの権限を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-4646 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228949 9 危険 phpwebgallery - PhpWebGallery の plugins/event_tracer/event_list.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-4645 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
228950 10 危険 Matthias Wandel - Matthias Wandel jhead の jhead.c における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4641 2012-12-20 18:52 2008-10-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221511 9.8 CRITICAL
Network 		google openthread OpenThread before 2019-12-13 has a stack-based buffer overflow in MeshCoP::Commissioner::GeneratePskc. CWE-787
 Out-of-bounds Write 		CVE-2019-20791 2024-11-21 13:39 2020-04-29 Show GitHub Exploit DB Packet Storm
221512 9.8 CRITICAL
Network 		trusteddomain
pypolicyd-spf_project
fedoraproject 		opendmarc
pypolicyd-spf
fedora 		OpenDMARC through 1.3.2 and 1.4.x, when used with pypolicyd-spf 2.0.2, allows attacks that bypass SPF and DMARC authentication in situations where the HELO field is inconsistent with the MAIL FROM fi… CWE-290
 Authentication Bypass by Spoofing 		CVE-2019-20790 2024-11-21 13:39 2020-04-27 Show GitHub Exploit DB Packet Storm
221513 4.8 MEDIUM
Network 		croogo croogo Croogo before 3.0.7 allows XSS via the title to admin/menus/menus or admin/taxonomy/vocabularies. CWE-79
Cross-site Scripting 		CVE-2019-20789 2024-11-21 13:39 2020-04-27 Show GitHub Exploit DB Packet Storm
221514 9.8 CRITICAL
Network 		libvnc_project
canonical
debian
siemens 		libvncserver
ubuntu_linux
debian_linux
simatic_itc1500_firmware
simatic_itc1500_pro_firmware
simatic_itc1900_firmware
simatic_itc1900_pro_firmware
simatic_itc2200_firmware
sim… 		libvncclient/cursor.c in LibVNCServer through 0.9.12 has a HandleCursorShape integer overflow and heap-based buffer overflow via a large height or width value. NOTE: this may overlap CVE-2019-15690. CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-20788 2024-11-21 13:39 2020-04-24 Show GitHub Exploit DB Packet Storm
221515 9.8 CRITICAL
Network 		teeworlds
opensuse 		teeworlds
leap 		Teeworlds before 0.7.4 has an integer overflow when computing a tilemap size. CWE-190
 Integer Overflow or Wraparound 		CVE-2019-20787 2024-11-21 13:39 2020-04-23 Show GitHub Exploit DB Packet Storm
221516 9.8 CRITICAL
Network 		pion dtls handleIncomingPacket in conn.go in Pion DTLS before 1.5.2 lacks a check for application data with epoch 0, which allows remote attackers to inject arbitrary unencrypted data after handshake completio… CWE-287
Improper Authentication 		CVE-2019-20786 2024-11-21 13:39 2020-04-20 Show GitHub Exploit DB Packet Storm
221517 6.8 MEDIUM
Physics 		google android An issue was discovered on LG mobile devices with Android OS 8.0 and 8.1 software for the DTAG carrier. RILD in the radio layer uses an uninitialized variable. The LG ID is LVE-SMP-180013 (January 20… CWE-908
 Use of Uninitialized Resource 		CVE-2019-20785 2024-11-21 13:39 2020-04-17 Show GitHub Exploit DB Packet Storm
221518 5.5 MEDIUM
Local 		google android An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 (MTK chipsets) software. Interaction of GPS with 911 emergency calls is mishandled. The LG ID is LVE-SMP-18001… NVD-CWE-noinfo
CVE-2019-20784 2024-11-21 13:39 2020-04-17 Show GitHub Exploit DB Packet Storm
221519 9.1 CRITICAL
Network 		google android An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 (North America CDMA) software. The LTE protocol implementation allows a bypass of AKA (Authentication and Key … NVD-CWE-noinfo
CVE-2019-20783 2024-11-21 13:39 2020-04-17 Show GitHub Exploit DB Packet Storm
221520 9.8 CRITICAL
Network 		google android An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software. LG Advanced Flash (LAF) has a buffer overflow. The LG ID is LVE-SMP-190001 (March 2019). CWE-120
Classic Buffer Overflow 		CVE-2019-20782 2024-11-21 13:39 2020-04-17 Show GitHub Exploit DB Packet Storm