Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 19, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228961	6.4	警告	The phpMyAdmin Project	-	phpMyAdmin におけるなりすましされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-3456	2012-12-20 18:52	2008-07-28	Show	GitHub Exploit DB Packet Storm

228962	4	警告	phpwebgallery	-	PhpWebGallery における他のユーザの電子メールアドレスを取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3451	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

228963	7.5	危険	phpmyrealty	-	PMR の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3445	2012-12-20 18:52	2008-08-4	Show	GitHub Exploit DB Packet Storm

228964	7.5	危険	winzip	-	WinZip における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3442	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

228965	7.5	危険	サン・マイクロシステムズ	-	Sun Java における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3440	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

228966	7.5	危険	speedbit	-	SpeedBit Video Acceleration における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3439	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

228967	7.5	危険	speedbit	-	SpeedBit DAP における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-3433	2012-12-20 18:52	2008-08-1	Show	GitHub Exploit DB Packet Storm

228968	5	警告	Vtiger	-	Vtiger CRM におけるメールマージテンプレートを読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-3458	2012-12-20 18:52	2006-09-9	Show	GitHub Exploit DB Packet Storm

228969	7.2	危険	サン・マイクロシステムズ	-	IOCTL 用の METHOD_NEITHER 通信メソッドで使用されている Sun xVM VirtualBox における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3431	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

228970	6.5	警告	PhpFreeChat	-	phpFreeChat におけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2008-3428	2012-12-20 18:52	2008-07-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224881	7.5	HIGH Network	once_cell_project	once_cell	An issue was discovered in the once_cell crate before 1.0.1 for Rust. There is a panic during initialization of Lazy.	CWE-20 Improper Input Validation	CVE-2019-16141	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224882	9.8	CRITICAL Network	isahc_project	isahc	An issue was discovered in the chttp crate before 0.1.3 for Rust. There is a use-after-free during buffer conversion.	CWE-416 Use After Free	CVE-2019-16140	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224883	9.8	CRITICAL Network	compact_arena_project	compact_arena	An issue was discovered in the compact_arena crate before 0.4.0 for Rust. Generativity is mishandled, leading to an out-of-bounds write or read.	CWE-125 CWE-787 Out-of-bounds Read Out-of-bounds Write	CVE-2019-16139	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224884	9.8	CRITICAL Network	image-rs	image	An issue was discovered in the image crate before 0.21.3 for Rust, affecting the HDR image format decoder. Vec::set_len is called on an uninitialized vector, leading to a use-after-free and arbitrary…	CWE-416 Use After Free	CVE-2019-16138	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224885	7.5	HIGH Network	spin-rs_project	spin-rs	An issue was discovered in the spin crate before 0.5.2 for Rust, when RwLock is used. Because memory ordering is mishandled, two writers can acquire the lock at the same time, violating mutual exclus…	CWE-662 Improper Synchronization	CVE-2019-16137	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224886	6.5	MEDIUM Network	weaver	eteams_oa	An issue was discovered in eteams OA v4.0.34. Because the session is not strictly checked, the account names and passwords of all employees in the company can be obtained by an ordinary account. Spec…	CWE-613 Insufficient Session Expiration	CVE-2019-16133	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224887	6.5	MEDIUM Network	phpok	oklite	An issue was discovered in OKLite v1.2.25. framework/admin/tpl_control.php allows remote attackers to delete arbitrary files via a title directory-traversal pathname followed by a crafted substring.	CWE-22 Path Traversal	CVE-2019-16132	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224888	8.8	HIGH Network	phpok	oklite	framework/admin/modulec_control.php in OKLite v1.2.25 has an Arbitrary File Upload Vulnerability because a .php file from a ZIP archive can be written to /data/cache/.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2019-16131	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224889	6.1	MEDIUM Network	hgw168cc	yii-cms	YII2-CMS v1.0 has XSS in protected\core\modules\home\models\Contact.php via a name field to /contact.html.	CWE-79 Cross-site Scripting	CVE-2019-16130	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm

224890	6.1	MEDIUM Network	getgrav	grav_cms	Grav through 1.6.15 allows (Stored) Cross-Site Scripting due to JavaScript execution in SVG images.	CWE-79 Cross-site Scripting	CVE-2019-16126	2024-11-21 13:30	2019-09-9	Show	GitHub Exploit DB Packet Storm