Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":April 29, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228871 7.5 危険 sponge news - Sponge News の news.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4647 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228872 7.5 危険 phpfullannu - phpFullAnnu の modules/home.module.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4644 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228873 7.5 危険 uni-vert - Uni-Vert PhpLeague の consult/joueurs.php における SQL インジェクションの脆弱性 - CVE-2006-4643 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228874 7.5 危険 szewo - SZEWO PhpCommander におけるディレクトリトラバーサルの脆弱性 - CVE-2006-4636 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228875 6.5 警告 Squiz - MySource Classic における任意の PHP コードを挿入される脆弱性 - CVE-2006-4635 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228876 4.3 警告 vbzoom - VBZooM の index.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2006-4634 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228877 5 警告 Softbb.net - SoftBB の index.php におけるインストールパスを取得される脆弱性 - CVE-2006-4633 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228878 7.5 危険 Softbb.net - SoftBB における SQL インジェクションの脆弱性 - CVE-2006-4632 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228879 6.5 警告 Softbb.net - SoftBB の admin/save_opt.php における任意の PHP コードを実行される脆弱性 - CVE-2006-4631 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
228880 7.5 危険 sky gunning - Sky GUNNING MySpeach の jscript.php における PHP リモートファイルインクルージョンの脆弱性 - CVE-2006-4630 2012-12-20 18:02 2006-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:April 29, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
211341 5.7 MEDIUM
Adjacent 		gemalto ezio_ds3_server Gemalto DS3 Authentication Server 2.6.1-SP01 has Broken Access Control. CWE-294
Authentication Bypass by Capture-replay  		CVE-2019-9158 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211342 5.7 MEDIUM
Adjacent 		gemalto ezio_ds3_server Gemalto DS3 Authentication Server 2.6.1-SP01 allows Local File Disclosure. CWE-22
Path Traversal 		CVE-2019-9157 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211343 8.0 HIGH
Adjacent 		gemalto ezio_ds3_server Gemalto DS3 Authentication Server 2.6.1-SP01 allows OS Command Injection. CWE-78
OS Command  		CVE-2019-9156 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211344 8.8 HIGH
Network 		primasystems flexair Prima Systems FlexAir, Versions 2.4.9api3 and prior. The application allows the upload of arbitrary Python scripts when configuring the main central controller. These scripts can be immediately execu… CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2019-9189 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211345 7.5 HIGH
Network 		ikiwiki ikiwiki ikiwiki before 3.20170111.1 and 3.2018x and 3.2019x before 3.20190228 allows SSRF via the aggregate plugin. The impact also includes reading local files via file: URIs. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-9187 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211346 10.0 CRITICAL
Network 		citrix application_delivery_management Citrix Application Delivery Management (ADM) 12.1.x before 12.1.50.33 has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-9548 2024-11-21 13:51 2019-06-6 Show GitHub Exploit DB Packet Storm
211347 9.8 CRITICAL
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Insecure Permissions. NVD-CWE-noinfo
CVE-2019-9485 2024-11-21 13:51 2019-05-30 Show GitHub Exploit DB Packet Storm
211348 5.5 MEDIUM
Local 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 3 of 5). CWE-20
 Improper Input Validation  		CVE-2019-9221 2024-11-21 13:51 2019-05-30 Show GitHub Exploit DB Packet Storm
211349 9.8 CRITICAL
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.6.10, 11.7.x before 11.7.6, and 11.8.x before 11.8.1. It has Incorrect Access Control (issue 1 of 5). NVD-CWE-noinfo
CVE-2019-9218 2024-11-21 13:51 2019-05-30 Show GitHub Exploit DB Packet Storm
211350 7.5 HIGH
Network 		aware knomi The Face authentication component in Aware mobile liveness 2.2.1 sdk 2.2.0 for Knomi allows a Biometrical Liveness authentication bypass via parameter tampering of the /knomi/analyze security_level f… NVD-CWE-noinfo
CVE-2019-9196 2024-11-21 13:51 2019-05-16 Show GitHub Exploit DB Packet Storm