Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 9, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226651	7.5	危険	webbdomian	-	WEBBDOMAIN Post Card の choosecard.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6622	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

226652	6.8	警告	sitexs cms	-	SiteXS CMS の adm/visual/upload.php における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-6617	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

226653	4.3	警告	Zen Cart	-	Zen Software Zen Cart の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6616	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

226654	7.5	危険	Zen Cart	-	Zen Software Zen Cart の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6615	2012-12-20 19:10	2009-04-6	Show	GitHub Exploit DB Packet Storm

226655	10	危険	picoflat	-	PicoFlat CMS の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6604	2012-12-20 19:10	2009-04-4	Show	GitHub Exploit DB Packet Storm

226656	10	危険	stadtaus	-	Download Center Lite における脆弱性	CWE-noinfo 情報不足	CVE-2008-6602	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

226657	4.3	警告	xmlportal	-	XMLPortal の検索機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6600	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

226658	10	危険	Sangoma	-	WANPIPE における脆弱性	CWE-362 競合状態	CVE-2008-6598	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

226659	4.3	警告	phpcredo	-	PHCDownload の upload/install/index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6597	2012-12-20 19:10	2009-04-3	Show	GitHub Exploit DB Packet Storm

226660	5.5	警告	Simple Machines	-	SMF の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6659	2012-12-20 19:10	2008-11-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 9, 2026, 5:07 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
210681	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab 10.7.0 and later through 12.9.2. A Workhorse bypass could lead to job artifact uploads and file disclosure (Exposure of Sensitive Information) via request smuggling.	CWE-444 HTTP Request Smuggling	CVE-2020-11506	2024-11-21 13:58	2020-04-23	Show	GitHub Exploit DB Packet Storm

210682	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) before 12.7.9, 12.8.x before 12.8.9, and 12.9.x before 12.9.3. A Workhorse bypass could lead to NuGet package and …	CWE-444 HTTP Request Smuggling	CVE-2020-11505	2024-11-21 13:58	2020-04-23	Show	GitHub Exploit DB Packet Storm

210683	4.9	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity 2018.2 through 2019.2.1, a project administrator was able to see scrambled password parameters used in a project. The issue was resolved in 2019.2.2.	NVD-CWE-noinfo	CVE-2020-11938	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210684	9.8	CRITICAL Network	jetbrains	space	In JetBrains Space through 2020-04-22, the password authentication implementation was insecure.	CWE-287 Improper Authentication	CVE-2020-11796	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210685	7.5	HIGH Network	jetbrains	space	In JetBrains Space through 2020-04-22, the session timeout period was configured improperly.	CWE-613 Insufficient Session Expiration	CVE-2020-11795	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210686	7.5	HIGH Network	jetbrains	youtrack	JetBrains YouTrack before 2020.1.659 was vulnerable to DoS that could be caused by attaching a malformed TIFF file to an issue.	NVD-CWE-noinfo	CVE-2020-11693	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210687	2.7	LOW Network	jetbrains	youtrack	In JetBrains YouTrack before 2020.1.659, DB export was accessible to read-only administrators.	CWE-276 Incorrect Default Permissions	CVE-2020-11692	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210688	7.5	HIGH Network	jetbrains	hub	In JetBrains Hub before 2020.1.12099, content spoofing in the Hub OAuth error message was possible.	NVD-CWE-noinfo	CVE-2020-11691	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210689	9.8	CRITICAL Network	jetbrains	intellij_idea	In JetBrains IntelliJ IDEA before 2020.1, the license server could be resolved to an untrusted host in some cases.	NVD-CWE-Other	CVE-2020-11690	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm

210690	6.5	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.2.1, a user without appropriate permissions was able to import settings from the settings.kts file.	CWE-276 Incorrect Default Permissions	CVE-2020-11689	2024-11-21 13:58	2020-04-22	Show	GitHub Exploit DB Packet Storm