Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 5, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228971 7.2 危険 rPath, Inc - rPath Linux 用の rMake における権限を取得される脆弱性 - CVE-2007-0536 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228972 7.5 危険 vote pro - Vote! Pro における任意の PHP コードを実行される脆弱性 - CVE-2007-0535 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228973 5 警告 tuan do - Tuan Do Uploader における管理者パスワードハッシュを取得される脆弱性 - CVE-2007-0532 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228974 6.8 警告 WebsiteBaker Org - Website Baker の class.login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0527 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228975 3.3 注意 sony ericsson - Sony Ericsson K700i および W810i 電話機におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2007-0521 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228976 7.5 危険 unique ads - UDS の banner.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-0520 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228977 3.5 注意 xmb software - XMB U2U Instant Messenger の memcp.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2007-0519 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228978 7.5 危険 Scriptsez.net - Scriptsez Smart PHP Subscriber におけるエンコードされたパスワードを取得される脆弱性 - CVE-2007-0518 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228979 7.5 危険 Scriptsez.net - Scriptsez Random PHP Quote におけるパスワード情報を取得される脆弱性 - CVE-2007-0517 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
228980 4.9 警告 yana framework - Yana Framework における任意のゲストブックプロファイルを変更される脆弱性 CWE-noinfo
情報不足 		CVE-2007-0516 2012-12-20 18:19 2007-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 5, 2026, 4:51 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223411 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 10.6 through 12.0.2. The GitHub project integration was vulnerable to an SSRF vulnerability which allowed an attacker to make requests to local ne… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-13121 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223412 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 8.11.0 through 12.0.2. By using brute-force a user with access to a project, but not it's repository could create a list of merge requests templat… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13011 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223413 5.9 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition 8.3 through 12.0.2. The color codes decoder was vulnerable to a resource depletion attack if specific formats were used. It allows Uncontrolled Re… NVD-CWE-noinfo
CVE-2019-13010 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223414 6.5 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.2 through 12.0.2. Uploaded files associated with unsaved personal snippets were accessible to unauthorized users due to improper p… CWE-400
CWE-732
 Uncontrolled Resource Consumption
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13009 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223415 4.9 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.11 through 12.0.2. When an admin enabled one of the service templates, it was triggering an action that leads to resource depleti… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13007 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223416 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 9.0 and through 12.0.2. Users with access to issues, but not the repository were able to view the number of related merge requests o… NVD-CWE-noinfo
CVE-2019-13006 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223417 4.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Enterprise Edition and Community Edition 1.10 through 12.0.2. The GitLab graphql service was vulnerable to multiple authorization issues that disclosed restricted us… NVD-CWE-noinfo
CVE-2019-13005 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223418 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 11.10 through 12.0.2. When specific encoded characters were added to comments, the comments section would become inaccessible. It ha… NVD-CWE-Other
CVE-2019-13004 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223419 7.5 HIGH
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition before 12.0.3. One of the parsers used by Gilab CI was vulnerable to a resource exhaustion attack. It allows Uncontrolled Resource C… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13003 2024-11-21 13:24 2020-03-11 Show GitHub Exploit DB Packet Storm
223420 8.8 HIGH
Network 		mi mi_browser This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Xiaomi Browser Prior to 10.4.0. User interaction is required to exploit this vulnerability in that … CWE-20
 Improper Input Validation  		CVE-2019-13322 2024-11-21 13:24 2020-02-11 Show GitHub Exploit DB Packet Storm