Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228001 7.5 危険 phpBB - phpBB Garage の garage.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-6223 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
228002 7.8 危険 tumusika evolution - TuMusika Evolution における設定ファイルを取得される脆弱性 CWE-200
情報漏えい 		CVE-2007-6221 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
228003 5 警告 typespeed - typespeed におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2007-6220 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
228004 5 警告 web-meetme - Web-MeetMe の play.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6215 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
228005 5 警告 webed - WebED の mod/chat/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2007-6213 2012-12-20 18:34 2007-12-4 Show GitHub Exploit DB Packet Storm
228006 7.2 危険 sing - Debian GNU/Linux 上で稼動している sing における任意のファイルを追加される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6211 2012-12-20 18:34 2007-12-3 Show GitHub Exploit DB Packet Storm
228007 2.1 注意 Zabbix - ZABBIX の zabbix_agentd における権限を取得される脆弱性 CWE-16
環境設定 		CVE-2007-6210 2012-12-20 18:34 2007-11-25 Show GitHub Exploit DB Packet Storm
228008 4.6 警告 zsh - zsh の Util/difflog.pl における任意のファイルを上書きされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2007-6209 2012-12-20 18:34 2007-12-3 Show GitHub Exploit DB Packet Storm
228009 4.3 警告 s9y - S9Y Serendipity のリモート RSS sidebar プラグイン におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-6205 2012-12-20 18:34 2007-12-8 Show GitHub Exploit DB Packet Storm
228010 7.5 危険 wesnoth - Wesnoth におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2007-6201 2012-12-20 18:34 2007-11-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224271 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.0 and through 12.0.2. Users with access to issues, but not the repository were able to view the number of related merge requests o… NVD-CWE-noinfo
CVE-2019-13006 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
224272 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted us… NVD-CWE-noinfo
CVE-2019-13005 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
224273 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It ha… NVD-CWE-Other
CVE-2019-13004 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
224274 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource C… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13003 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
224275 8.8 HIGH
Network 		mi mi_browser This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that … CWE-20
 Improper Input Validation  		CVE-2019-13322 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
224276 8.0 HIGH
Adjacent 		mi mi_browser This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13321 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
224277 7.8 HIGH
Local 		foxitsoftware phantompdf This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the … CWE-787
 Out-of-bounds Write 		CVE-2019-13334 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
224278 7.8 HIGH
Local 		foxitsoftware phantompdf This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the … CWE-787
 Out-of-bounds Write 		CVE-2019-13333 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
224279 5.9 MEDIUM
Network 		fujitsu gp7000f_firmware
primepower_firmware
gps_firmware
sparc_enterprise_m3000_firmware
sparc_enterprise_m4000_firmware
sparc_enterprise_m5000_firmware
sparc_enterprise_m8000_firmware
 The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, … CWE-326
Inadequate Encryption Strength 		CVE-2019-13163 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm
224280 8.6 HIGH
Network 		ros ros-comm An issue was discovered in the ROS communications-related packages (aka ros_comm or ros-melodic-ros-comm) through 1.14.3. ROS_ASSERT_MSG only works when ROS_ASSERT_ENABLED is defined. This leads to a… NVD-CWE-noinfo
CVE-2019-13465 2024-11-21 13:24 2019-12-31 Show GitHub Exploit DB Packet Storm