Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229651 7.5 危険 YourFreeWorld.com - YourFreeWorld Ad-Exchange Script の tr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3752 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
229652 7.5 危険 YourFreeWorld.com - YourFreeWorld Short Url & Url Tracker Script の tr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3751 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
229653 7.5 危険 YourFreeWorld.com - YourFreeWorld URL Rotator Script の tr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3750 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
229654 7.5 危険 YourFreeWorld.com - YourFreeWorld Banner Management Script の tr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3749 2012-12-20 18:52 2008-08-21 Show GitHub Exploit DB Packet Storm
229655 7.5 危険 WordPress.org - WordPress の wp-includes/link-template.php における管理アクセス権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-3747 2012-12-20 18:52 2008-08-27 Show GitHub Exploit DB Packet Storm
229656 4.3 警告 WebDAV - neon におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-3746 2012-12-20 18:52 2008-08-27 Show GitHub Exploit DB Packet Storm
229657 4.3 警告 phpizabi - PHPizabi の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3735 2012-12-20 18:52 2008-08-20 Show GitHub Exploit DB Packet Storm
229658 9.3 危険 VideoLAN - VLC Media Player の modules/demux/tta.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-3732 2012-12-20 18:52 2008-08-20 Show GitHub Exploit DB Packet Storm
229659 4 警告 Rhino Software - Serv-U File Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-3731 2012-12-20 18:52 2008-08-20 Show GitHub Exploit DB Packet Storm
229660 7.5 危険 YourFreeWorld.com - YourFreeWorld Ad Board Script の trr.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3725 2012-12-20 18:52 2008-08-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222121 6.5 MEDIUM
Network 		cpanel cpanel cPanel before 82.0.18 allows attackers to read an arbitrary database via MySQL dump streaming (SEC-531). NVD-CWE-noinfo
CVE-2019-20495 2024-11-21 13:38 2020-03-18 Show GitHub Exploit DB Packet Storm
222122 3.3 LOW
Local 		cpanel cpanel In cPanel before 82.0.18, Cpanel::Rand::Get can produce a predictable series of numbers (SEC-525). CWE-330
 Use of Insufficiently Random Values 		CVE-2019-20494 2024-11-21 13:38 2020-03-18 Show GitHub Exploit DB Packet Storm
222123 6.1 MEDIUM
Network 		cpanel cpanel cPanel before 82.0.18 allows self-XSS because JSON string escaping is mishandled (SEC-520). CWE-79
Cross-site Scripting 		CVE-2019-20493 2024-11-21 13:38 2020-03-18 Show GitHub Exploit DB Packet Storm
222124 8.8 HIGH
Network 		cpanel cpanel cPanel before 82.0.18 allows authentication bypass because of misparsing of the format of the password file (SEC-516). NVD-CWE-noinfo
CVE-2019-20492 2024-11-21 13:38 2020-03-18 Show GitHub Exploit DB Packet Storm
222125 8.8 HIGH
Network 		cpanel cpanel cPanel before 82.0.18 allows authentication bypass because webmail usernames are processed inconsistently (SEC-499). NVD-CWE-noinfo
CVE-2019-20490 2024-11-21 13:38 2020-03-18 Show GitHub Exploit DB Packet Storm
222126 8.8 HIGH
Network 		pydio pydio A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/uploader.http/HttpDownload.php. An authenticated user with basi… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-20453 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
222127 8.8 HIGH
Network 		pydio pydio A problem was found in Pydio Core before 8.2.4 and Pydio Enterprise before 8.2.4. A PHP object injection is present in the page plugins/core.access/src/RecycleBinManager.php. An authenticated user wi… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-20452 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
222128 4.3 MEDIUM
Network 		atlassian jira_server
jira_data_center 		The ConfigureBambooRelease resource in Jira Software and Jira Software Data Center before version 8.6.1 allows authenticated remote attackers to view release version information in projects that they… CWE-862
 Missing Authorization 		CVE-2019-20407 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
222129 4.9 MEDIUM
Network 		atlassian application_links The EditApplinkServlet resource in the Atlassian Application Links plugin before version 5.4.20, from version 6.0.0 before version 6.0.12, from version 6.1.0 before version 6.1.2, from version 7.0.0 … CWE-306
Missing Authentication for Critical Function 		CVE-2019-20105 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm
222130 7.8 HIGH
Local 		gnome
linuxmint
debian 		gthumb
pix
debian_linux 		A heap-based buffer overflow in _cairo_image_surface_create_from_jpeg() in extensions/cairo_io/cairo-image-surface-jpeg.c in GNOME gThumb before 3.8.3 and Linux Mint Pix before 2.4.5 allows attackers… CWE-787
 Out-of-bounds Write 		CVE-2019-20326 2024-11-21 13:38 2020-03-17 Show GitHub Exploit DB Packet Storm