Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229711 9 危険 yoxel - Yoxel の itpm_estimate.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5071 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229712 7.5 危険 Pro Chat Rooms - Pro Chat Rooms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5070 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
229713 5 警告 smolinari - mwcal の php/cal_pdf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5062 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
229714 4.3 警告 smolinari - mwcal の php/cal_default.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5061 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
229715 7.5 危険 PreProject.com - Pre Simple CMS の siteadmin/loginsucess.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5058 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
229716 7.5 危険 zeeways - Zeeways PhotoVideoTube における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5042 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
229717 7.5 危険 Sweex - Sweex RO002 Router におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5041 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
229718 4.3 警告 PHPNUKE - PHP-Nuke 用の League モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5039 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
229719 5 警告 University of Washington - University of Washington IMAP Toolkit の c-client ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5006 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
229720 7.5 危険 shahrood - Shahrood の ndetail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5003 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221711 8.8 HIGH
Network 		kakadusoftware kakadu_software An exploitable heap underflow vulnerability exists in the derive_taps_and_gains function in kdu_v7ar.dll of Kakadu Software SDK 7.10.2. A specially crafted jp2 file can cause a heap overflow, which c… CWE-787
 Out-of-bounds Write 		CVE-2019-5144 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221712 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the 802.11w security state handling for hostapd 2.6 connected clients with valid 802.11w sessions. By simulating an incomplete new association… CWE-346
 Origin Validation Error 		CVE-2019-5062 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221713 6.5 MEDIUM
Adjacent 		w1.fi hostapd An exploitable denial-of-service vulnerability exists in the hostapd 2.6, where an attacker could trigger AP to send IAPP location updates for stations, before the required authentication process has… CWE-287
Improper Authentication 		CVE-2019-5061 2024-11-21 13:44 2019-12-13 Show GitHub Exploit DB Packet Storm
221714 8.8 HIGH
Network 		leadtools leadtools An exploitable heap overflow vulnerability exists in the JPEG2000 parsing functionality of LEADTOOLS 20.0.2019.3.15. A specially crafted J2K image file can cause an out of bounds write of a null byte… CWE-787
 Out-of-bounds Write 		CVE-2019-5154 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221715 9.8 CRITICAL
Network 		leadtools leadtools An exploitable code execution vulnerability exists in the DICOM network response functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an integer overflo… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-5093 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221716 8.8 HIGH
Network 		leadtools leadtools An exploitable heap out of bounds write vulnerability exists in the UI tag parsing functionality of the DICOM image format of LEADTOOLS 20.0.2019.3.15. A specially crafted DICOM image can cause an of… CWE-787
 Out-of-bounds Write 		CVE-2019-5092 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221717 7.5 HIGH
Network 		leadtools leadtools An exploitable denial-of-service vulnerability exists in the Dicom-packet parsing functionality of LEADTOOLS libltdic.so version 20.0.2019.3.15. A specially crafted packet can cause an infinite loop,… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2019-5091 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221718 7.5 HIGH
Network 		leadtools leadtools An exploitable information disclosure vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an out-of-b… CWE-125
Out-of-bounds Read 		CVE-2019-5090 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221719 9.8 CRITICAL
Network 		leadtools leadtools An exploitable code execution vulnerability exists in the DICOM packet-parsing functionality of LEADTOOLS libltdic.so, version 20.0.2019.3.15. A specially crafted packet can cause an integer overflow… CWE-787
CWE-190
 Out-of-bounds Write
 Integer Overflow or Wraparound 		CVE-2019-5085 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm
221720 8.8 HIGH
Network 		ibm spectrum_scale IBM Spectrum Scale 4.2 and 5.0 could allow a remote authenticated attacker to execute arbitrary commands on the system. By sending a specially-crafted request, an attacker could exploit this vulnerab… CWE-78
OS Command  		CVE-2019-4715 2024-11-21 13:44 2019-12-12 Show GitHub Exploit DB Packet Storm