Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229471 5 警告 Edgewall Software - Trac の HTML サニタイズフィルタにおけるフィッシング攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-5647 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229472 7.5 危険 Edgewall Software - Trac におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5646 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229473 4.3 警告 TYPO3 Association - TYPO3 用の file backend モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5644 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229474 4.3 警告 txtblogcms - TxtBlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5639 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229475 6.8 警告 qualityunit - Post Affiliate Pro の merchants/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5630 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229476 7.5 危険 turnkeyarcade - Turnkey Arcade Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5629 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229477 7.8 危険 Roundcube.net - roundcubemail におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5620 2012-12-20 18:52 2008-12-16 Show GitHub Exploit DB Packet Storm
229478 10 危険 Roundcube.net - roundcubemail で使用されている Chuggnutt HTML to Text Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5619 2012-12-20 18:52 2008-12-8 Show GitHub Exploit DB Packet Storm
229479 5 警告 Adiscon - rsyslog の imudp におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-5618 2012-12-20 18:52 2008-12-16 Show GitHub Exploit DB Packet Storm
229480 8.5 危険 Adiscon - rsyslog の ACL ハンドリングにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5617 2012-12-20 18:52 2008-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
225071 5.8 MEDIUM
Network 		gitlab gitlab GitLab EE 8.14 through 12.5, 12.4.3, and 12.3.6 has Incorrect Access Control. After a project changed to private, previously forked repositories were still able to get information about the private p… NVD-CWE-noinfo
CVE-2019-19312 2024-11-21 13:34 2020-01-6 Show GitHub Exploit DB Packet Storm
225072 4.9 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 9.0 and later through 12.5 allows Information Disclosure. CWE-522
 Insufficiently Protected Credentials 		CVE-2019-19310 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225073 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 8.90 and later through 12.5 has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-19309 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225074 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 8.2 and later through 12.5 has Insecure Permissions. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-19263 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225075 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 11.9 and later through 12.5 has Insecure Permissions. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-19262 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225076 8.8 HIGH
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 6.7 and later through 12.5 allows SSRF. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2019-19261 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225077 5.4 MEDIUM
Network 		gitlab gitlab GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 2 of 2). NVD-CWE-noinfo
CVE-2019-19260 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225078 4.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 11.3 and later through 12.5 allows an Insecure Direct Object Reference (IDOR). CWE-639
 Authorization Bypass Through User-Controlled Key 		CVE-2019-19259 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225079 5.3 MEDIUM
Network 		gitlab gitlab GitLab Enterprise Edition (EE) 10.8 and later through 12.5 has Incorrect Access Control. NVD-CWE-noinfo
CVE-2019-19258 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm
225080 5.3 MEDIUM
Network 		gitlab gitlab GitLab Community Edition (CE) and Enterprise Edition (EE) through 12.5 has Incorrect Access Control (issue 1 of 2). NVD-CWE-noinfo
CVE-2019-19257 2024-11-21 13:34 2020-01-4 Show GitHub Exploit DB Packet Storm