Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229081 2.1 注意 レッドハット - Red Hat Directory Server における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0889 2012-12-20 18:34 2008-03-19 Show GitHub Exploit DB Packet Storm
229082 7.5 危険 PHPNUKE - PHP-Nuke 用の Okul モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0881 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229083 7.5 危険 PHPNUKE - PHP-Nuke 用の EasyContent モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0880 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229084 7.5 危険 PHPNUKE - PHP-Nuke 用の Web_Links モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0879 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229085 7.5 危険 runcms - RunCMS 用の MyAnnonces モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0878 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229086 4.3 警告 SmarterTools Inc. - SmarterTools SmarterMail Enterprise におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0872 2012-12-20 18:34 2008-02-21 Show GitHub Exploit DB Packet Storm
229087 7.5 危険 woltlab - WoltLab Burning Board の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0857 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229088 7.5 危険 WordPress.org - WordPress 用の Dean Logan WP-People プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0845 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229089 6.4 警告 statcountex - StatCounteX における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0843 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
229090 4.4 警告 publicwarehouse - Public Warehouse LightBlog の view_member.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0840 2012-12-20 18:34 2008-02-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221941 5.5 MEDIUM
Local 		microsoft excel
office
office_365_proplus 		An information disclosure vulnerability exists when Microsoft Excel improperly discloses the contents of its memory, aka 'Microsoft Excel Information Disclosure Vulnerability'. CWE-200
Information Exposure 		CVE-2019-1464 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221942 5.5 MEDIUM
Local 		microsoft office
office_365_proplus 		An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. … CWE-200
Information Exposure 		CVE-2019-1463 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221943 7.8 HIGH
Local 		microsoft powerpoint
office
office_365_proplus 		A remote code execution vulnerability exists in Microsoft PowerPoint software when the software fails to properly handle objects in memory, aka 'Microsoft PowerPoint Remote Code Execution Vulnerabili… CWE-908
 Use of Uninitialized Resource 		CVE-2019-1462 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221944 6.5 MEDIUM
Network 		microsoft word
office
office_365_proplus 		A denial of service vulnerability exists in Microsoft Word software when the software fails to properly handle objects in memory, aka 'Microsoft Word Denial of Service Vulnerability'. NVD-CWE-noinfo
CVE-2019-1461 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221945 7.8 HIGH
Local 		microsoft windows_server_2012
windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1 		An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. NVD-CWE-noinfo
CVE-2019-1458 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221946 7.5 HIGH
Network 		microsoft windows_server_2012
windows_server_2008
windows_10
windows_8.1
windows_server_2016
windows_7
windows_rt_8.1
windows_server_2019 		A denial of service vulnerability exists in Remote Desktop Protocol (RDP) when an attacker connects to the target system using RDP and sends specially crafted requests, aka 'Windows Remote Desktop Pr… NVD-CWE-noinfo
CVE-2019-1453 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221947 5.5 MEDIUM
Local 		microsoft office
office_365_proplus 		An information disclosure vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory, aka 'Microsoft Access Information Disclosure Vulnerability'. … CWE-200
Information Exposure 		CVE-2019-1400 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221948 6.1 MEDIUM
Network 		microsoft power_bi_report_server
sql_server_2017_reporting_services
sql_server_2019_reporting_services 		A cross-site scripting (XSS) vulnerability exists when Microsoft SQL Server Reporting Services (SSRS) does not properly sanitize a specially-crafted web request to an affected SSRS server, aka 'Micro… CWE-79
Cross-site Scripting 		CVE-2019-1332 2024-11-21 13:36 2019-12-11 Show GitHub Exploit DB Packet Storm
221949 5.3 MEDIUM
Network 		openssl
opensuse
oracle
canonical
fedoraproject
debian
tenable 		openssl
leap
peoplesoft_enterprise_peopletools
mysql_enterprise_monitor
enterprise_manager_ops_center
ubuntu_linux
fedora
debian_linux
log_correlation_engine 		There is an overflow bug in the x64_64 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024,… CWE-190
 Integer Overflow or Wraparound 		CVE-2019-1551 2024-11-21 13:36 2019-12-7 Show GitHub Exploit DB Packet Storm
221950 7.8 HIGH
Local 		microsoft office A security feature bypass vulnerability exists in Microsoft Office software by not enforcing macro settings on an Excel document, aka 'Microsoft Office Excel Security Feature Bypass'. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-1457 2024-11-21 13:36 2019-11-13 Show GitHub Exploit DB Packet Storm