Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229761	4.3	警告	tru-zone	-	Nuke ET のプライベートメッセージ機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1873	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229762	6.5	警告	scriptsagent	-	Scriptsagent.com Links Directory の links.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1871	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229763	7.5	危険	site sift media	-	Site Sift Listings における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1869	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229764	7.5	危険	pixel motion	-	Blog Pixel Motion の admin/sauvBase.php における重要な情報を含む blogPM.sql ファイルの結果を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-1868	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229765	7.5	危険	pixel motion	-	Blog Pixel Motion における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1867	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229766	9	危険	pixel motion	-	Blog Pixel Motion の admin/modif_config.php における任意の PHP スクリプトをアップロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-1866	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229767	7.5	危険	prozilla	-	Prozilla Freelancers の project.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1864	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229768	7.5	危険	prozilla	-	Prozilla Cheat Script の view_reviews.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1863	2012-12-20 18:52	2008-04-17	Show	GitHub Exploit DB Packet Storm

229769	5	警告	SmarterTools Inc.	-	SmarterMail の SmarterMail Web Server におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2008-1854	2012-12-20 18:52	2008-04-16	Show	GitHub Exploit DB Packet Storm

229770	4.3	警告	SAP	-	SAP NetWeaver のデフォルト設定におけるクロスサイトスクリプティング攻撃を実行される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1846	2012-12-20 18:52	2008-04-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222591	6.8	MEDIUM Network	microsoft	windows_10 windows_server_2016 windows_server_2019	An information disclosure vulnerability exists when the Windows Hyper-V Network Switch on a host operating system fails to properly validate input from an authenticated user on a guest operating syst…	CWE-20 Improper Input Validation	CVE-2019-1230	2024-11-21 13:36	2019-10-10	Show	GitHub Exploit DB Packet Storm

222592	5.9	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_server_2019 windows_rt_8.1	A tampering vulnerability exists in Microsoft Windows when a man-in-the-middle attacker is able to successfully bypass the NTLM MIC (Message Integrity Check) protection, aka 'Windows NTLM Tampering V…	CWE-354 Improper Validation of Integrity Check Value	CVE-2019-1166	2024-11-21 13:36	2019-10-10	Show	GitHub Exploit DB Packet Storm

222593	9.8	CRITICAL Network	zingbox	inspector	A security vulnerability exists in Zingbox Inspector version 1.293 and earlier, that allows for remote code execution if the Inspector were sent a malicious command from the Zingbox cloud, or if the …	CWE-77 Command Injection	CVE-2019-1584	2024-11-21 13:36	2019-10-10	Show	GitHub Exploit DB Packet Storm

222594	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID i…	CWE-787 Out-of-bounds Write	CVE-2019-1367	2024-11-21 13:36	2019-09-24	Show	GitHub Exploit DB Packet Storm

222595	7.5	HIGH Network	microsoft	windows_defender forefront_endpoint_protection_2010 security_essentials system_center_endpoint_protection	A denial of service vulnerability exists when Microsoft Defender improperly handles files, aka 'Microsoft Defender Denial of Service Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1255	2024-11-21 13:36	2019-09-24	Show	GitHub Exploit DB Packet Storm

222596	9.8	CRITICAL Network	microsoft	team_foundation_server azure_devops_server	A remote code execution vulnerability exists when Azure DevOps Server (ADO) and Team Foundation Server (TFS) fail to validate input properly, aka 'Azure DevOps and Team Foundation Server Remote Code …	CWE-20 Improper Input Validation	CVE-2019-1306	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222597	5.4	MEDIUM Network	microsoft	team_foundation_server azure_devops_server	A Cross-site Scripting (XSS) vulnerability exists when Team Foundation Server does not properly sanitize user provided input, aka 'Team Foundation Server Cross-site Scripting Vulnerability'.	CWE-79 Cross-site Scripting	CVE-2019-1305	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222598	7.8	HIGH Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on th…	NVD-CWE-noinfo	CVE-2019-1303	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222599	8.8	HIGH Network	microsoft	asp.net_core	An elevation of privilege vulnerability exists when a ASP.NET Core web application, created using vulnerable project templates, fails to properly sanitize web requests, aka 'ASP.NET Core Elevation Of…	CWE-20 Improper Input Validation	CVE-2019-1302	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm

222600	7.5	HIGH Network	microsoft	powershell_core .net_core	A denial of service vulnerability exists when .NET Core improperly handles web requests, aka '.NET Core Denial of Service Vulnerability'.	NVD-CWE-noinfo	CVE-2019-1301	2024-11-21 13:36	2019-09-12	Show	GitHub Exploit DB Packet Storm