Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228061 5.1 警告 visualshapers - ezContents におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-7054 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
228062 6.5 警告 PreProject.com - Pre Projects Pre Real Estate Listings の profile.php における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-7052 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
228063 7.5 危険 yellowswordfish - Wordpress 用の Yellow Swordfish Simple Forum モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7040 2012-12-20 19:10 2009-08-24 Show GitHub Exploit DB Packet Storm
228064 9.3 危険 oovoo - ooVoo の oovoo.exe におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6953 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228065 7.5 危険 webhost-panel - Bankoi WebHosting Control Panel の login.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6950 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228066 6.5 警告 ScriptsFeed.com - ScriptsFeed Auto Classifieds における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6944 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228067 6.5 警告 ScriptsFeed.com - ScriptsFeed Recipes Listing Portal における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6943 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228068 6.5 警告 ScriptsFeed.com - ScriptsFeed Realtor Classifieds System における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6942 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228069 7.5 危険 turnkeyforms - TurnkeyForms Web Hosting Directory のログイン機能における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6941 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228070 7.5 危険 turnkeyforms - TurnkeyForms Web Hosting Directory におけるデータベースのバックアップを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6940 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 18, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221461 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 10.8 through 12.6.1. It has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-20144 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221462 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.6. It has Incorrect Access Control. CWE-306
Missing Authentication for Critical Function 		CVE-2019-20143 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221463 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 12.3 through 12.6.1. It allows Denial of Service. NVD-CWE-noinfo
CVE-2019-20142 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221464 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 8.13 through 12.6.1. It has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-20148 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221465 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 9.1 through 12.6.1. It has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-20147 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221466 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 11.0 through 12.6. It allows Uncontrolled Resource Consumption. CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-20146 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221467 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community Edition (CE) and Enterprise Edition (EE) 11.4 through 12.6.1. It has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-20145 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221468 6.1 MEDIUM
Network 		cththemes citybook
easybook
townhub 		The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via the chat widget/page message form. CWE-79
Cross-site Scripting 		CVE-2019-20212 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221469 6.1 MEDIUM
Network 		cththemes citybook
easybook
townhub 		The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Persistent XSS via Listing Address, Listing Latitude, Listing Longitude, Email Address,… CWE-79
Cross-site Scripting 		CVE-2019-20211 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm
221470 6.1 MEDIUM
Network 		cththemes citybook
easybook
townhub 		The CTHthemes CityBook before 2.3.4, TownHub before 1.0.6, and EasyBook before 1.2.2 themes for WordPress allow Reflected XSS via a search query. CWE-79
Cross-site Scripting 		CVE-2019-20210 2024-11-21 13:38 2020-01-14 Show GitHub Exploit DB Packet Storm