Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229071	4.3	警告	Simple Machines	-	SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0775	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

229072	7.5	危険	site2nite	-	Site2Nite の default.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0771	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

229073	5	警告	SafeNet, Inc	-	SafeNet Sentinel Protection Server におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0760	2012-12-20 18:34	2008-02-13	Show	GitHub Exploit DB Packet Storm

229074	10	危険	サイベース	-	SQL Anywhere で使用されている Sybase MobiLink の mlsrv10.exe におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0912	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

229075	4.3	警告	schoolwires	-	Schoolwires Academic Portal の browse.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0909	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

229076	7.5	危険	schoolwires	-	browse.asp の Schoolwires Academic Portal における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0908	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

229077	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Inhalt モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0907	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

229078	7.5	危険	PHPNUKE	-	PHP-Nuke の Docum モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0906	2012-12-20 18:34	2008-02-22	Show	GitHub Exploit DB Packet Storm

229079	7.5	危険	レッドハット	-	Red Hat Directory Server で使用されている Red Hat Administration Server における管理者操作を実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0893	2012-12-20 18:34	2008-04-15	Show	GitHub Exploit DB Packet Storm

229080	4.6	警告	レッドハット	-	Red Hat Directory Server における JAR ファイルを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0890	2012-12-20 18:34	2008-03-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224631	9.8	CRITICAL Network	moddable	xs moddable	In XS 9.0.0 in Moddable SDK OS180329, there is a heap-based buffer overflow in fxBeginHost in xsAPI.c when called from fxRunDefine in xsRun.c, as demonstrated by crafted JavaScript code to xst.	CWE-787 Out-of-bounds Write	CVE-2019-16366	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224632	5.5	MEDIUM Local	beego	beego	The File Session Manager in Beego 1.10.0 allows local users to read session files because of weak permissions for individual files.	CWE-276 Incorrect Default Permissions	CVE-2019-16355	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224633	4.7	MEDIUM Local	beego	beego	The File Session Manager in Beego 1.10.0 allows local users to read session files because there is a race condition involving file creation within a directory with weak permissions.	CWE-362 CWE-732 Race Condition Incorrect Permission Assignment for Critical Resource	CVE-2019-16354	2024-11-21 13:30	2019-09-17	Show	GitHub Exploit DB Packet Storm

224634	7.5	HIGH Network	geautomation	proficy	Emerson GE Automation Proficy Machine Edition 8.0 allows an access violation and application crash via crafted traffic from a remote device, as demonstrated by an RX7i device.	NVD-CWE-noinfo	CVE-2019-16353	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224635	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-21 has a heap-based buffer overflow in jfif_load() at jfif.c.	CWE-787 Out-of-bounds Write	CVE-2019-16352	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224636	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-18 has a NULL pointer dereference in huffman_decode_step() at huffman.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16351	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224637	6.5	MEDIUM Network	rockcarry	ffjpeg	ffjpeg before 2019-08-18 has a NULL pointer dereference in idct2d8x8() at dct.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16350	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224638	5.5	MEDIUM Local	axiosys	bento4	Bento4 1.5.1-628 has a NULL pointer dereference in AP4_ByteStream::ReadUI32 in Core/Ap4ByteStream.cpp when called from the AP4_TrunAtom class.	CWE-476 NULL Pointer Dereference	CVE-2019-16349	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224639	6.5	MEDIUM Network	libwav_project	libwav	marc-q libwav through 2017-04-20 has a NULL pointer dereference in gain_file() at wav_gain.c.	CWE-476 NULL Pointer Dereference	CVE-2019-16348	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm

224640	8.8	HIGH Network	miniupnp_project	ngiflib	ngiflib 0.4 has a heap-based buffer overflow in WritePixels() in ngiflib.c when called from DecodeGifImg, because deinterlacing for small pictures is mishandled.	CWE-787 CWE-682 Out-of-bounds Write Incorrect Calculation	CVE-2019-16347	2024-11-21 13:30	2019-09-16	Show	GitHub Exploit DB Packet Storm