Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 13, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
227021	9	危険	シマンテック	-	Symantec Brightmail Gateway Appliance の Control Center における権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2009-0064	2012-12-20 19:10	2009-04-23	Show	GitHub Exploit DB Packet Storm

227022	4.3	警告	シマンテック	-	Symantec Brightmail Gateway Appliance の Control Center におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-0063	2012-12-20 19:10	2009-04-23	Show	GitHub Exploit DB Packet Storm

227023	5	警告	zxid	-	ZXID における証明書チェーンの検証を回避される脆弱性	CWE-287 不適切な認証	CVE-2009-0051	2012-12-20 19:10	2009-01-7	Show	GitHub Exploit DB Packet Storm

227024	6.8	警告	PunBB	-	PunBB におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7241	2012-12-20 19:10	2009-09-17	Show	GitHub Exploit DB Packet Storm

227025	10	危険	ourproject.org	-	White_Dune White_Dune におけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2008-7228	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227026	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Recipes モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7226	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227027	4.3	警告	runcms	-	RunCMS の system/admin.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7222	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227028	6.8	警告	runcms	-	RunCMS におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7221	2012-12-20 19:10	2009-09-14	Show	GitHub Exploit DB Packet Storm

227029	7.5	危険	prototypejs	-	Prototype JavaScript フレームワークにおける "クロスサイト ajax リクエスト" を実行される脆弱性	CWE-Other その他	CVE-2008-7220	2012-12-20 19:10	2009-09-13	Show	GitHub Exploit DB Packet Storm

227030	4.3	警告	WordPress.org	-	WordPress 用の Peter's Math Anti-Spam Spinoff プラグインにおける CAPTCHA 保護を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7216	2012-12-20 19:10	2009-09-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 14, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
222431	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, a non-destructive operation could be performed by a user without the corresponding permissions.	CWE-276 Incorrect Default Permissions	CVE-2019-18367	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222432	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, secure values could be exposed to users with the "View build runtime parameters and data" permission.	CWE-276 Incorrect Default Permissions	CVE-2019-18366	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222433	4.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, reverse tabnabbing was possible on several pages.	NVD-CWE-noinfo CWE-269 Improper Privilege Management	CVE-2019-18365	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222434	9.8	CRITICAL Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.4, insecure Java Deserialization could potentially allow remote code execution.	CWE-502 Deserialization of Untrusted Data	CVE-2019-18364	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222435	5.3	MEDIUM Network	jetbrains	teamcity	In JetBrains TeamCity before 2019.1.2, access could be gained to the history of builds of a deleted build configuration under some circumstances.	NVD-CWE-noinfo	CVE-2019-18363	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222436	5.3	MEDIUM Network	jetbrains	mps	JetBrains MPS before 2019.2.2 exposed listening ports to the network.	NVD-CWE-noinfo	CVE-2019-18362	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222437	5.3	MEDIUM Local	jetbrains	intellij_idea	JetBrains IntelliJ IDEA before 2019.2 allows local user privilege escalation, potentially leading to arbitrary code execution.	NVD-CWE-noinfo	CVE-2019-18361	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222438	5.3	MEDIUM Network	jetbrains	hub	In JetBrains Hub versions earlier than 2019.1.11738, username enumeration was possible through password recovery.	NVD-CWE-noinfo	CVE-2019-18360	2024-11-21 13:33	2019-11-1	Show	GitHub Exploit DB Packet Storm

222439	9.8	CRITICAL Network	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing 32-bit PV guest OS users to gain guest OS privileges by installing and using descriptors. There is missing descriptor table limit checking in x8…	CWE-269 Improper Privilege Management	CVE-2019-18425	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm

222440	6.8	MEDIUM Physics	xen debian fedoraproject opensuse	xen debian_linux fedora leap	An issue was discovered in Xen through 4.12.x allowing attackers to gain host OS privileges via DMA in a situation where an untrusted domain has access to a physical device. This occurs because passe…	CWE-78 OS Command	CVE-2019-18424	2024-11-21 13:33	2019-10-31	Show	GitHub Exploit DB Packet Storm