Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 17, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226541 4.3 警告 Pligg - Pligg におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4786 2012-12-20 19:28 2009-11-30 Show GitHub Exploit DB Packet Storm
226542 4.3 警告 phpMyFAQ - phpMyFAQ の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4780 2012-12-20 19:28 2009-12-1 Show GitHub Exploit DB Packet Storm
226543 6.8 警告 Ubercart - Drupal 用の Ubercart モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-4773 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
226544 4.3 警告 Ubercart - Drupal 用の Ubercart モジュールにおける重要な情報を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2009-4772 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
226545 5 警告 Ubercart - Drupal 用の Ubercart モジュールにおける不特定の "複製操作" を誘発される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4771 2012-12-20 19:28 2009-11-18 Show GitHub Exploit DB Packet Storm
226546 9 危険 Codeorigin - Sysax Multi Server におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4790 2012-12-20 19:28 2010-04-22 Show GitHub Exploit DB Packet Storm
226547 7.2 危険 tukeva - TUKEVA Password Reminder における資格情報を発見される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2009-4781 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
226548 7.5 危険 robert garrigos - NukeHall における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2009-4779 2012-12-20 19:28 2010-04-21 Show GitHub Exploit DB Packet Storm
226549 4.3 警告 Plohni - Plohni Shoutbox の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4767 2012-12-20 19:28 2010-04-20 Show GitHub Exploit DB Packet Storm
226550 5 警告 yasirpro - YP Portal MS-Pro Surumu におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4766 2012-12-20 19:28 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 17, 2026, 4:15 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222921 5.4 MEDIUM
Network 		icewarp mail_server IceWarp WebMail Server 12.2.0 and 12.1.x before 12.2.1.1 (and probably earlier versions) allows XSS (issue 2 of 2) in notes for objects. CWE-79
Cross-site Scripting 		CVE-2019-19266 2024-11-21 13:34 2020-01-6 Show GitHub Exploit DB Packet Storm
222922 7.5 HIGH
Network 		gitlab gitlab GitLab EE 8.4 through 12.5, 12.4.3, and 12.3.6 stored several tokens in plaintext. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2019-19314 2024-11-21 13:34 2020-01-6 Show GitHub Exploit DB Packet Storm
222923 7.5 HIGH
Network 		gitlab gitlab GitLab EE 12.3 through 12.5, 12.4.3, and 12.3.6 allows Denial of Service. Certain characters were making it impossible to create, edit, or view issues and commits. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2019-19313 2024-11-21 13:34 2020-01-6 Show GitHub Exploit DB Packet Storm
222924 5.8 MEDIUM
Network 		gitlab gitlab GitLab EE 8.14 through 12.5, 12.4.3, and 12.3.6 has Incorrect Access Control. After a project changed to private, previously forked repositories were still able to get information about the private p… NVD-CWE-noinfo
CVE-2019-19312 2024-11-21 13:34 2020-01-6 Show GitHub Exploit DB Packet Storm
222925 4.9 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure. CWE-522
 Insufficiently Protected Credentials 		CVE-2019-19310 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
222926 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 8.90 and later through 12.5 has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-19309 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
222927 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 8.2 and later through 12.5 has Insecure Permissions. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-19263 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
222928 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 11.9 and later through 12.5 has Insecure Permissions. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-19262 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
222929 8.8 HIGH
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 6.7 and later through 12.5 allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-19261 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
222930 5.4 MEDIUM
Network 		gitlab gitlab GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2). NVD-CWE-noinfo
CVE-2019-19260 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm