Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229171	6.4	警告	webwiz	-	Web Wiz Rich Text Editor の RTE_popup_save_file.asp における .html ファイルなどをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-0473	2012-12-20 18:34	2008-01-29	Show	GitHub Exploit DB Packet Storm

229172	4.3	警告	woltlab	-	wBB の modcp.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-0472	2012-12-20 18:34	2008-01-29	Show	GitHub Exploit DB Packet Storm

229173	4.3	警告	phpBB	-	phpBB の privmsg.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-0471	2012-12-20 18:34	2008-01-29	Show	GitHub Exploit DB Packet Storm

229174	7.5	危険	tiger php news system	-	TPNS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0469	2012-12-20 18:34	2008-01-29	Show	GitHub Exploit DB Packet Storm

229175	5	警告	webwiz	-	Web Wiz Rich Text Edito などで使用されている Web Wiz RTE_file_browser.asp におけるディレクトリトラバーサルの脆弱性	CWE-287 不適切な認証	CVE-2008-0466	2012-12-20 18:34	2008-01-28	Show	GitHub Exploit DB Packet Storm

229176	5	警告	seagullproject.org	-	Seagull の optimizer.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0465	2012-12-20 18:34	2008-01-25	Show	GitHub Exploit DB Packet Storm

229177	6.8	警告	slaed	-	SLAED CMS の function/sources.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0458	2012-12-20 18:34	2008-01-25	Show	GitHub Exploit DB Packet Storm

229178	10	危険	シマンテック	-	Symantec Backup Exec System Recovery Manager で使用される Symantec LiveState Apache Tomcat サーバで稼動している FileUpload クラスにおける任意の JSP ファイルをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-0457	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

229179	5	警告	siteman	-	Siteman の articles.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0452	2012-12-20 18:34	2008-01-24	Show	GitHub Exploit DB Packet Storm

229180	7.5	危険	rocksalt international	-	VP-ASP Shopping Cart の paypalresult.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0449	2012-12-20 18:34	2008-01-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
221981	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	A remote code execution vulnerability exists when Microsoft Windows OLE fails to properly validate user input, aka 'Windows OLE Remote Code Execution Vulnerability'.	CWE-20 Improper Input Validation	CVE-2019-1484	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221982	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on th…	CWE-59 Link Following	CVE-2019-1483	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221983	4.3	MEDIUM Network	microsoft	windows_7	An information disclosure vulnerability exists in Windows Media Player when it fails to properly handle objects in memory, aka 'Windows Media Player Information Disclosure Vulnerability'. This CVE ID…	CWE-125 Out-of-bounds Read	CVE-2019-1481	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221984	4.3	MEDIUM Network	microsoft	windows_7	An information disclosure vulnerability exists in Windows Media Player when it fails to properly handle objects in memory, aka 'Windows Media Player Information Disclosure Vulnerability'. This CVE ID…	CWE-125 Out-of-bounds Read	CVE-2019-1480	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221985	7.8	HIGH Local	microsoft	windows_server_2008 windows_7	An elevation of privilege vulnerability exists when Windows improperly handles COM object creation, aka 'Windows COM Server Elevation of Privilege Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1478	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221986	7.8	HIGH Local	microsoft	windows_server_2019 windows_10	An elevation of privilege vulnerability exists when the Windows Printer Service improperly validates file paths while loading printer drivers, aka 'Windows Printer Service Elevation of Privilege Vuln…	NVD-CWE-noinfo	CVE-2019-1477	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221987	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when Windows AppX Deployment Service (AppXSVC) improperly handles hard links, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique …	NVD-CWE-noinfo	CVE-2019-1476	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221988	5.5	MEDIUM Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-…	CWE-200 Information Exposure	CVE-2019-1474	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221989	5.5	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An information disclosure vulnerability exists when the Windows kernel improperly handles objects in memory, aka 'Windows Kernel Information Disclosure Vulnerability'. This CVE ID is unique from CVE-…	CWE-200 Information Exposure	CVE-2019-1472	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm

221990	8.2	HIGH Local	microsoft	windows_server_2016 windows_10 windows_server_2019	A remote code execution vulnerability exists when Windows Hyper-V on a host server fails to properly validate input from an authenticated user on a guest operating system, aka 'Windows Hyper-V Remote…	CWE-20 Improper Input Validation	CVE-2019-1471	2024-11-21 13:36	2019-12-11	Show	GitHub Exploit DB Packet Storm