Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229471	6.8	警告	turnkey web tools	-	Turnkey PHP Live Helper の libsecure.php における db config ファイルに関連する任意の変数を上書きされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-3763	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229472	7.5	危険	turnkey web tools	-	Turnkey PHP Live Helper の onlinestatus_html.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3762	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229473	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Forced Matrix Script の tr1.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3757	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229474	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Viral Marketing Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3756	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229475	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Classifieds Script の view.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3755	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229476	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Stylish Text Ads Script の trl.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3754	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229477	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Programs Rating Script の details.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3753	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229478	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Ad-Exchange Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3752	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229479	7.5	危険	YourFreeWorld.com	-	YourFreeWorld Short Url & Url Tracker Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3751	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

229480	7.5	危険	YourFreeWorld.com	-	YourFreeWorld URL Rotator Script の tr.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3750	2012-12-20 18:52	2008-08-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
209181	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/AP4IkmsAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 CWE-120 NULL Pointer Dereference Classic Buffer Overflow	CVE-2020-19720	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

209182	6.5	MEDIUM Network	axiosys	bento4	A buffer overflow vulnerability in Ap4ElstAtom.cpp of Bento 1.5.1-628 leads to a denial of service (DOS).	CWE-120 Classic Buffer Overflow	CVE-2020-19719	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

209183	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/Ap4Atom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 NULL Pointer Dereference	CVE-2020-19718	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

209184	6.5	MEDIUM Network	axiosys	bento4	An unhandled memory allocation failure in Core/Ap48bdlAtom.cpp of Bento 1.5.1-628 causes a NULL pointer dereference, leading to a denial of service (DOS).	CWE-476 NULL Pointer Dereference	CVE-2020-19717	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

209185	6.5	MEDIUM Network	exiv2 debian	exiv2 debian_linux	A buffer overflow vulnerability in the Databuf function in types.cpp of Exiv2 v0.27.1 leads to a denial of service (DOS).	CWE-120 Classic Buffer Overflow	CVE-2020-19716	2024-11-21 14:09	2021-07-14	Show	GitHub Exploit DB Packet Storm

209186	8.8	HIGH Network	mitre	caldera	A command injection vulnerability in the sandcat plugin of Caldera 2.3.1 and earlier allows authenticated attackers to execute any command or service.	CWE-78 OS Command	CVE-2020-19907	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

209187	5.4	MEDIUM Network	ipfire	ipfire	An authenticated Stored Cross-Site Scriptiong (XSS) vulnerability exists in Lightning Wire Labs IPFire 2.21 (x86_64) - Core Update 130 in the "routing.cgi" Routing Table Entries via the "Remark" text…	CWE-79 Cross-site Scripting	CVE-2020-19204	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

209188	5.4	MEDIUM Network	netgate	pfsense	An authenticated Cross-Site Scripting (XSS) vulnerability was found in widgets/widgets/wake_on_lan_widget.php, a component of the pfSense software WebGUI, on version 2.4.4-p2 and earlier. The widget …	CWE-79 Cross-site Scripting	CVE-2020-19203	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

209189	5.4	MEDIUM Network	netgate	pfsense	A Stored Cross-Site Scripting (XSS) vulnerability was found in status_filter_reload.php, a page in the pfSense software WebGUI, on Netgate pfSense version 2.4.4-p2 and earlier. The page did not encod…	CWE-79 Cross-site Scripting	CVE-2020-19201	2024-11-21 14:09	2021-07-13	Show	GitHub Exploit DB Packet Storm

209190	6.1	MEDIUM Network	typesettercms	typesetter	Cross Site Scriptiong vulnerability in Typesetter 5.1 via the !1) className and !2) Description fields in index.php/Admin/Classes,	CWE-79 Cross-site Scripting	CVE-2020-19511	2024-11-21 14:09	2021-06-22	Show	GitHub Exploit DB Packet Storm