Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 21, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228911 5.1 警告 tinycms - TinyCMS 内の ZZ_Templater モジュール内におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4740 2012-12-20 18:52 2008-10-27 Show GitHub Exploit DB Packet Storm
228912 6.8 警告 plugspace - PlugSpace の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4739 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228913 7.5 危険 tufat - MyCard の gallery.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4738 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228914 7.5 危険 pressography - WordPress 用の WP Comment Remix プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-4734 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228915 4.3 警告 pressography - WordPress 用の WP Comment Remix プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4733 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228916 7.5 危険 pressography - WordPress 用の WP Comment Remix プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4732 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228917 4.3 警告 CJ Niemira - phpMyID の MyID.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4730 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
228918 4.3 警告 sungard - SunGard Banner Student のコンタクトアップデートページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4727 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
228919 7.5 危険 X7 Group - X7 Chat の help/mini.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4718 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
228920 7.5 危険 zeeways - ZEELYRICS の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4717 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
221451 7.5 HIGH
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information (e.g., server addresses or message content). CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-20852 2024-11-21 13:39 2020-06-20 Show GitHub Exploit DB Packet Storm
221452 9.1 CRITICAL
Network 		mattermost mattermost An issue was discovered in Mattermost Mobile Apps before 1.26.0. An attacker can use directory traversal with the Video Preview feature to overwrite arbitrary files on a device. CWE-22
Path Traversal 		CVE-2019-20851 2024-11-21 13:39 2020-06-20 Show GitHub Exploit DB Packet Storm
221453 5.3 MEDIUM
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. A view cache can persist on a device after a logout. CWE-459
 Incomplete Cleanup 		CVE-2019-20850 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221454 5.3 MEDIUM
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. Cookie data can persist on a device after a logout. CWE-459
 Incomplete Cleanup 		CVE-2019-20849 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221455 7.5 HIGH
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. The Quick Reply feature mishandles crafted replies. CWE-20
 Improper Input Validation  		CVE-2019-20848 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221456 5.3 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. An attacker can send a user_typing WebSocket event to any channel. NVD-CWE-noinfo
CVE-2019-20847 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221457 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. It has weak permissions for server-local file storage. CWE-281
 Improper Preservation of Permissions 		CVE-2019-20846 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221458 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. It allows attackers to cause a denial of service (memory consumption) via a large Slack import. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-20845 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221459 6.5 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. An attacker can spoof a direct-message channel by changing the type of a channel. CWE-924
 Improper Enforcement of Message Integrity During Transmission in a Communication Channel 		CVE-2019-20844 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
221460 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There are weak permissions for configuration files. CWE-281
 Improper Preservation of Permissions 		CVE-2019-20843 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm