Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 11, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227131 7.5 危険 PreProject.com - Pre ASP Job Board の Employee/login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6329 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227132 7.5 危険 simplecustomer - Simple Customer の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6326 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227133 4.3 警告 SoftbizScripts - Softbiz Classifieds Script におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6325 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227134 7.5 危険 phpmygallery - PHPmyGallery の _conf/_php-core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6318 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227135 6.8 警告 phpmygallery - PHPmyGallery の _conf/_php-core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6317 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227136 6.8 警告 phpmygallery - PHPmyGallery の _conf/core/common-tpl-vars.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6316 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227137 7.5 危険 phpmygallery - PHPmyGallery の _conf/core/common-tpl-vars.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6315 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227138 7.5 危険 phpBB - phpBB 用の Tag Board モジュールの tag_board.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6314 2012-12-20 19:10 2009-02-27 Show GitHub Exploit DB Packet Storm
227139 7.5 危険 w3matter - W3matter RevSense の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6310 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
227140 7.5 危険 w3matter - W3matter AskPert の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6309 2012-12-20 19:10 2009-02-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 11, 2026, 4:09 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223991 6.1 MEDIUM
Network 		atlassian jira_server The FilterPickerPopup.jspa resource in Jira before version 7.13.7, and from version 8.0.0 before version 8.3.3 allows remote attackers to inject arbitrary HTML or JavaScript via a cross site scriptin… CWE-79
Cross-site Scripting 		CVE-2019-14996 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223992 5.3 MEDIUM
Network 		atlassian jira_server The /rest/api/1.0/render resource in Jira before version 8.4.0 allows remote anonymous attackers to determine if an attachment with a specific name exists and if an issue key is valid via a missing p… CWE-862
 Missing Authorization 		CVE-2019-14995 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223993 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail usage value of a victim account via an attacker account. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-14725 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223994 7.5 HIGH
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to edit an e-mail forwarding destination of a victim's account via an attacker account. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-14724 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223995 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a domain from a victim's account via an attacker account. NVD-CWE-noinfo
CVE-2019-14730 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223996 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a sub-domain from a victim's account via an attacker account. NVD-CWE-noinfo
CVE-2019-14729 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223997 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to add an e-mail forwarding destination to a victim's account via an attacker account. NVD-CWE-noinfo
CVE-2019-14728 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223998 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to change the e-mail password of a victim account via an attacker account. NVD-CWE-noinfo
CVE-2019-14727 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
223999 5.4 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to access and delete DNS records of a victim's account via an attacker account. NVD-CWE-noinfo
CVE-2019-14726 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm
224000 4.3 MEDIUM
Network 		control-webpanel webpanel In CentOS-WebPanel.com (aka CWP) CentOS Web Panel 0.9.8.851, an insecure object reference allows an attacker to delete a victim's e-mail account via an attacker account. NVD-CWE-noinfo
CVE-2019-14723 2024-11-21 13:27 2019-09-11 Show GitHub Exploit DB Packet Storm