Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 25, 2026, 12:07 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229891	4.3	警告	traindepot	-	Traindepot の search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2839	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229892	5	警告	traindepot	-	Traindepot の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2838	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229893	7.5	危険	sidb	-	Scientific Image DataBase の projects.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2834	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229894	10	危険	worldlevel	-	le.cms の admin/upload.php における管理者の認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2008-2833	2012-12-20 18:52	2008-06-24	Show	GitHub Exploit DB Packet Storm

229895	10	危険	tmsnc	-	tmsnc におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2828	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

229896	4.3	警告	Xerox	-	Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2825	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229897	10	危険	Xerox	-	Xerox WorkCentre 7655 などの Web Services における変更を設定される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2824	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

229898	7.5	危険	phpeasynews	-	PHPeasyblog の newsarchive.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2823	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

229899	4.3	警告	shoutcastadmin	-	WallCity-Server Shoutcast Admin Panel におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2814	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

229900	6.8	警告	shoutcastadmin	-	WallCity-Server Shoutcast Admin Panel の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2813	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
223901	7.5	HIGH Network	sqlite canonical oracle siemens	sqlite ubuntu_linux mysql_workbench sinec_infrastructure_network_services	sqlite3Select in select.c in SQLite 3.30.1 allows a crash if a sub-select uses both DISTINCT and window functions, and also has certain ORDER BY usage.	NVD-CWE-noinfo	CVE-2019-19244	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223902	7.8	HIGH Local	linux	linux_kernel	vcs_write in drivers/tty/vt/vc_screen.c in the Linux kernel through 5.3.13 does not prevent write access to vcsu devices, aka CID-0c9acb1af77a.	CWE-125 Out-of-bounds Read	CVE-2019-19252	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223903	9.8	CRITICAL Network	opentrade_project	opentrade	OpenTrade before 2019-11-23 allows SQL injection, related to server/modules/api/v1.js and server/utils.js.	CWE-89 SQL Injection	CVE-2019-19250	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223904	9.8	CRITICAL Network	querytreeapp	querytree	Controllers/InvitationsController.cs in QueryTree before 3.0.99-beta mishandles invitations.	CWE-20 Improper Input Validation	CVE-2019-19249	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223905	7.5	HIGH Network	oniguruma_project php fedoraproject canonical debian	oniguruma php fedora ubuntu_linux debian_linux	Oniguruma through 6.9.3, as used in PHP 7.3.x and other products, has a heap-based buffer over-read in str_lower_case_match in regexec.c.	CWE-125 Out-of-bounds Read	CVE-2019-19246	2024-11-21 13:34	2019-11-26	Show	GitHub Exploit DB Packet Storm

223906	5.3	MEDIUM Network	embedthis	goahead	Embedthis GoAhead before 5.0.1 mishandles redirected HTTP requests with a large Host header. The GoAhead WebsRedirect uses a static host buffer that has a limited length and can overflow. This can ca…	CWE-787 CWE-908 Out-of-bounds Write Use of Uninitialized Resource	CVE-2019-19240	2024-11-21 13:34	2019-11-23	Show	GitHub Exploit DB Packet Storm

223907	5.5	MEDIUM Local	linux	linux_kernel	In the AppleTalk subsystem in the Linux kernel before 5.1, there is a potential NULL pointer dereference because register_snap_client may return NULL. This will lead to denial of service in net/apple…	CWE-476 NULL Pointer Dereference	CVE-2019-19227	2024-11-21 13:34	2019-11-22	Show	GitHub Exploit DB Packet Storm

223908	5.5	MEDIUM Local	libarchive debian fedoraproject canonical	libarchive debian_linux fedora ubuntu_linux	In Libarchive 3.4.0, archive_wstring_append_from_mbs in archive_string.c has an out-of-bounds read because of an incorrect mbrtowc or mbtowc call. For example, bsdtar crashes via a crafted archive.	CWE-125 Out-of-bounds Read	CVE-2019-19221	2024-11-21 13:34	2019-11-22	Show	GitHub Exploit DB Packet Storm

223909	8.8	HIGH Network	rconfig	rconfig	rConfig 3.9.2 allows devices.php?searchColumn= SQL injection.	CWE-89 SQL Injection	CVE-2019-19207	2024-11-21 13:34	2019-11-22	Show	GitHub Exploit DB Packet Storm

223910	7.5	HIGH Network	oniguruma_project debian fedoraproject	oniguruma debian_linux fedora	An issue was discovered in Oniguruma 6.x before 6.9.4_rc2. In the function fetch_interval_quantifier (formerly known as fetch_range_quantifier) in regparse.c, PFETCH is called without checking PEND. …	CWE-125 Out-of-bounds Read	CVE-2019-19204	2024-11-21 13:34	2019-11-22	Show	GitHub Exploit DB Packet Storm