Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229631	7.5	危険	tritoncms	-	Triton CMS Pro における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3153	2012-12-20 18:52	2008-07-11	Show	GitHub Exploit DB Packet Storm

229632	7.5	危険	warpspeed PHPNUKE	-	PHP-Nuke 用の 4ndvddb モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3151	2012-12-20 18:52	2008-07-11	Show	GitHub Exploit DB Packet Storm

229633	4.7	警告	wefi	-	WeFi における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-3147	2012-12-20 18:52	2008-07-11	Show	GitHub Exploit DB Packet Storm

229634	7.8	危険	secretwars	-	Soldner Secret Wars におけるサービス運用妨害 (DoS) の脆弱性	CWE-189 数値処理の問題	CVE-2008-3135	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

229635	6.8	警告	Powie	-	pSys の chatbox.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3131	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

229636	4.3	警告	Simple Machines	-	OpenCart の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3130	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

229637	5	警告	pivot	-	Pivot の search.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-3128	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

229638	6.5	警告	Xerox	-	Xerox CWW における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3122	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

229639	4.3	警告	Xerox	-	Xerox CWW におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3121	2012-12-20 18:52	2008-07-9	Show	GitHub Exploit DB Packet Storm

229640	7.5	危険	phpmotion	-	PHPmotion の play.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3118	2012-12-20 18:52	2008-07-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222131	7.5	HIGH Network	sync	oxygen_xml_editor oxygen_xml_author oxygen_xml_developer	Oxygen XML Editor 21.1.1 allows XXE to read any file.	CWE-611 XXE	CVE-2019-20191	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

222132	5.4	MEDIUM Network	cpanel	cpanel	cPanel before 82.0.18 allows attackers to leverage virtual mail accounts in order to bypass account suspensions (SEC-508).	NVD-CWE-noinfo	CVE-2019-20491	2024-11-21 13:38	2020-03-17	Show	GitHub Exploit DB Packet Storm

222133	9.8	CRITICAL Network	quest	kace_systems_management	service/krashrpt.php in Quest KACE K1000 Systems Management Appliance before 6.4 SP3 (6.4.120822) allows a remote attacker to execute code via shell metacharacters in the kuid parameter.	CWE-78 OS Command	CVE-2019-20504	2024-11-21 13:38	2020-03-9	Show	GitHub Exploit DB Packet Storm

222134	6.5	MEDIUM Network	usrsctp_project debian canonical	usrsctp debian_linux ubuntu_linux	usrsctp before 2019-12-20 has out-of-bounds reads in sctp_load_addresses_from_init.	CWE-125 Out-of-bounds Read	CVE-2019-20503	2024-11-21 13:38	2020-03-7	Show	GitHub Exploit DB Packet Storm

222135	7.5	HIGH Network	echatserver	easy_chat_server	An issue was discovered in EFS Easy Chat Server 3.1. There is a buffer overflow via a long body2.ghp message parameter.	CWE-120 Classic Buffer Overflow	CVE-2019-20502	2024-11-21 13:38	2020-03-6	Show	GitHub Exploit DB Packet Storm

222136	3.5	LOW Adjacent	qemu opensuse debian canonical	qemu leap debian_linux ubuntu_linux	QEMU 4.1.0 has a memory leak in zrle_compress_data in ui/vnc-enc-zrle.c during a VNC disconnect operation because libz is misused, resulting in a situation where memory allocated in deflateInit2 is n…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2019-20382	2024-11-21 13:38	2020-03-6	Show	GitHub Exploit DB Packet Storm

222137	7.8	HIGH Local	dlink	dwl-2600ap_firmware	D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Upgrade Firmware functionality in the Web interface, using shell metacharacters in the admin.…	CWE-78 OS Command	CVE-2019-20501	2024-11-21 13:38	2020-03-6	Show	GitHub Exploit DB Packet Storm

222138	7.8	HIGH Local	dlink	dwl-2600ap_firmware	D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Save Configuration functionality in the Web interface, using shell metacharacters in the admi…	CWE-78 OS Command	CVE-2019-20500	2024-11-21 13:38	2020-03-6	Show	GitHub Exploit DB Packet Storm

222139	7.8	HIGH Local	dlink	dwl-2600ap_firmware	D-Link DWL-2600AP 4.2.0.15 Rev A devices have an authenticated OS command injection vulnerability via the Restore Configuration functionality in the Web interface, using shell metacharacters in the a…	CWE-78 OS Command	CVE-2019-20499	2024-11-21 13:38	2020-03-6	Show	GitHub Exploit DB Packet Storm

222140	8.8	HIGH Network	testlink	testlink	Multiple SQL injection vulnerabilities in TestLink through 1.9.19 allows remote authenticated users to execute arbitrary SQL commands via the (1) tproject_id parameter to keywordsView.php; the (2) re…	CWE-89 SQL Injection	CVE-2019-20107	2024-11-21 13:38	2020-03-5	Show	GitHub Exploit DB Packet Storm