Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 7, 2026, 12:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228761 6.8 警告 simpcms - SimpCMS Light の filename.asp における PHP リモートファイルインクルージョンの脆弱性 - CVE-2007-2009 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
228762 7.5 危険 pl-php - pL-PHP の admin.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-2008 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
228763 10 危険 stephen craton - Stephen Craton Chatness の admin/options.php における classes/vars.php などの設定ファイルを読まれる脆弱性 - CVE-2007-2147 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
228764 7.5 危険 shoutpro - ShoutPro の shoutbox.php における shouts.php へ任意の PHP コードを挿入される脆弱性 - CVE-2007-2141 2012-12-20 18:19 2007-04-19 Show GitHub Exploit DB Packet Storm
228765 7.5 危険 rha7 downloads - XOOPS 用の rha7downloads モジュールにおける SQL インジェクションの脆弱性 - CVE-2007-2107 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
228766 6.8 警告 wabbit - Wabbit PHP Gallery の showpic.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2098 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
228767 7.5 危険 tsdisplay4xoops - TSD4XOOPS の blocks/tsdisplay4xoops_block2.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2007-2091 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
228768 6.8 警告 tumusika evolution - TuMusika Evolution の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-2090 2012-12-20 18:19 2007-04-18 Show GitHub Exploit DB Packet Storm
228769 7.5 危険 pl-php - pL-PHP の admin.php における認証を回避される脆弱性 - CVE-2007-2007 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
228770 7.5 危険 pl-php - pL-PHP の login.php における SQL インジェクションの脆弱性 - CVE-2007-2006 2012-12-20 18:19 2007-04-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 7, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223951 5.9 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 8.3 through 12.0.2. The color codes decoder was vulnerable to a resource depletion attack if specific formats were used. It allows Uncontrolled Re… NVD-CWE-noinfo
CVE-2019-13010 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223952 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.2 through 12.0.2. Uploaded files associated with unsaved personal snippets were accessible to unauthorized users due to improper p… CWE-400
CWE-732
 Uncontrolled Resource Consumption
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13009 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223953 4.9 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.11 through 12.0.2. When an admin enabled one of the service templates, it was triggering an action that leads to resource depleti… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13007 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223954 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.0 and through 12.0.2. Users with access to issues, but not the repository were able to view the number of related merge requests o… NVD-CWE-noinfo
CVE-2019-13006 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223955 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted us… NVD-CWE-noinfo
CVE-2019-13005 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223956 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It ha… NVD-CWE-Other
CVE-2019-13004 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223957 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource C… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13003 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223958 8.8 HIGH
Network 		mi mi_browser This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that … CWE-20
 Improper Input Validation  		CVE-2019-13322 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
223959 8.0 HIGH
Adjacent 		mi mi_browser This vulnerability allows network adjacent attackers to execute arbitrary code on affected installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability … CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13321 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm
223960 7.8 HIGH
Local 		foxitsoftware phantompdf This vulnerability allows remote attackers to execute arbitrary code on affected installations of Foxit PhantomPDF 9.5.0.20723. User interaction is required to exploit this vulnerability in that the … CWE-787
 Out-of-bounds Write 		CVE-2019-13334 2024-11-21 13:24 2020-02-8 Show GitHub Exploit DB Packet Storm