Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229971	4.3	警告	quate	-	Quate CMS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2496	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229972	4.3	警告	TYPO3 Association	-	TYPO3 用の KJ Image Lightbox 2 エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2490	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229973	7.5	危険	TYPO3 Association	-	TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2489	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229974	6.8	警告	xomol	-	Xomol CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2484	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229975	6.8	警告	xomol	-	Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2483	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229976	10	危険	phpraider	-	phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2481	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229977	10	危険	plusphp	-	plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2480	2012-12-20 18:52	2008-05-28	Show	GitHub Exploit DB Packet Storm

229978	7.5	危険	vBulletin Solutions, Inc.	-	vBulletin Gold の faq.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2460	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229979	7.5	危険	phpclassifiedsscript	-	PHP Classifieds Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2453	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229980	4.3	警告	TYPO3 Association	-	TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2452	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
224111	5.5	MEDIUM Local	microsoft	windows_10 windows_server_2016 windows_server_2019	An information disclosure vulnerability exists when the win32k component improperly provides kernel information, aka 'Win32k Information Disclosure Vulnerability'. This CVE ID is unique from CVE-2019…	CWE-200 Information Exposure	CVE-2019-1436	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224112	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_7 windows_rt_8.1 windows_server_2019	An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CV…	NVD-CWE-noinfo	CVE-2019-1435	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224113	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_8.1 windows_7 windows_10 windows_rt_8.1	An elevation of privilege vulnerability exists in Windows when the Windows kernel-mode driver fails to properly handle objects in memory, aka 'Win32k Elevation of Privilege Vulnerability'. This CVE I…	NVD-CWE-noinfo	CVE-2019-1434	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224114	7.8	HIGH Local	microsoft	windows_server_2008 windows_server_2012 windows_10 windows_8.1 windows_server_2016 windows_server_2019 windows_rt_8.1 windows_7	An elevation of privilege vulnerability exists when the Windows Graphics Component improperly handles objects in memory, aka 'Windows Graphics Component Elevation of Privilege Vulnerability'. This CV…	NVD-CWE-noinfo	CVE-2019-1433	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224115	6.5	MEDIUM Network	microsoft	windows_server_2008 windows_server_2012 windows_8.1 windows_7 windows_rt_8.1	An information disclosure vulnerability exists when DirectWrite improperly discloses the contents of its memory, aka 'DirectWrite Information Disclosure Vulnerability'. This CVE ID is unique from CVE…	CWE-125 Out-of-bounds Read	CVE-2019-1432	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224116	7.8	HIGH Local	microsoft	windows_server_2016 windows_10	A remote code execution vulnerability exists when Windows Media Foundation improperly parses specially crafted QuickTime media files.An attacker who successfully exploited this vulnerability could ga…	NVD-CWE-noinfo	CVE-2019-1430	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224117	7.5	HIGH Network	microsoft	internet_explorer	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer, aka 'Scripting Engine Memory Corruption Vulnerability'. This CVE ID i…	CWE-787 CWE-416 Out-of-bounds Write Use After Free	CVE-2019-1429	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224118	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. Thi…	CWE-787 Out-of-bounds Write	CVE-2019-1428	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224119	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. Thi…	CWE-787 Out-of-bounds Write	CVE-2019-1427	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm

224120	7.5	HIGH Network	microsoft	edge chakracore	A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Microsoft Edge (HTML-based), aka 'Scripting Engine Memory Corruption Vulnerability'. Thi…	CWE-787 Out-of-bounds Write	CVE-2019-1426	2024-11-21 13:36	2019-11-13	Show	GitHub Exploit DB Packet Storm