Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 15, 2026, 2:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229061 7.5 危険 porar - PORAR WEBBOARD の question.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1039 2012-12-20 18:34 2008-02-27 Show GitHub Exploit DB Packet Storm
229062 5.8 警告 spyce - Spyce - PSP における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0982 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229063 6.4 警告 spyce - Spyce - PSP の spyce/examples/redirect.spy におけるオープンリダイレクトの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0981 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229064 4.3 警告 spyce - Spyce - PSP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0980 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229065 4.3 警告 webgui - Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0940 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229066 7.5 危険 WordPress.org - WordPress 用の WPPA プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0939 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229067 7.5 危険 the sword project - The SWORD Project Diatheke の diatheke.pl における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0932 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
229068 6.3 警告 xwine - Debian GNU/Linux 上で稼動する XWine の w_export.c における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0931 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
229069 7.5 危険 PHPNUKE - PHP-Nuke 用の Manuales モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0922 2012-12-20 18:34 2008-02-22 Show GitHub Exploit DB Packet Storm
229070 4.3 警告 tendenci - Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0793 2012-12-20 18:34 2008-02-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 15, 2026, 4:28 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224451 4.9 MEDIUM
Network 		nextcloud nextcloud Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when search e.g. for federated users or registering for push notific… NVD-CWE-Other
CVE-2019-15611 2024-11-21 13:29 2020-02-5 Show GitHub Exploit DB Packet Storm
224452 4.3 MEDIUM
Network 		nextcloud circles Improper authorization in the Circles app 0.17.7 causes retaining access when an email address was removed from a circle. NVD-CWE-Other
CVE-2019-15610 2024-11-21 13:29 2020-02-5 Show GitHub Exploit DB Packet Storm
224453 5.4 MEDIUM
Network 		nodered node-red A stored XSS vulnerability is present within node-red (version: <= 0.20.7) npm package, which is a visual tool for wiring the Internet of Things. This issue will allow the attacker to steal session c… CWE-79
Cross-site Scripting 		CVE-2019-15607 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224454 7.5 HIGH
Network 		gitlab gitlab An access control issue exists in < 12.3.5, < 12.2.8, and < 12.1.14 for GitLab Community Edition (CE) and Enterprise Edition (EE) where private merge requests and issues would be disclosed with the G… NVD-CWE-Other
CVE-2019-15590 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224455 6.1 MEDIUM
Network 		gitlab gitlab A XSS exists in Gitlab CE/EE < 12.1.10 in the Mermaid plugin. CWE-79
Cross-site Scripting 		CVE-2019-15586 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224456 9.8 CRITICAL
Network 		gitlab gitlab Improper authentication exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) in the GitLab SAML integration had a validation issue that permitted … CWE-287
Improper Authentication 		CVE-2019-15585 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224457 7.5 HIGH
Network 		gitlab gitlab An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE). When an issue was moved to a public project from a private one, th… CWE-200
Information Exposure 		CVE-2019-15583 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224458 5.3 MEDIUM
Network 		gitlab gitlab An IDOR was discovered in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) that allowed a maintainer to add any private group to a protected environment. CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-15582 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224459 5.3 MEDIUM
Network 		gitlab gitlab An IDOR exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) that allowed a project owner or maintainer to see the members of any private group vi… CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-15581 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm
224460 5.3 MEDIUM
Network 		gitlab gitlab An information disclosure exists in < 12.3.2, < 12.2.6, and < 12.1.12 for GitLab Community Edition (CE) and Enterprise Edition (EE) where the assignee(s) of a confidential issue in a private project … NVD-CWE-noinfo
CVE-2019-15579 2024-11-21 13:29 2020-01-28 Show GitHub Exploit DB Packet Storm