Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229581 5 警告 Edgewall Software - Trac の HTML サニタイズフィルタにおけるフィッシング攻撃を実行される脆弱性 CWE-noinfo
情報不足 		CVE-2008-5647 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229582 7.5 危険 Edgewall Software - Trac におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-5646 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229583 4.3 警告 TYPO3 Association - TYPO3 用の file backend モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5644 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229584 4.3 警告 txtblogcms - TxtBlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5639 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229585 6.8 警告 qualityunit - Post Affiliate Pro の merchants/index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5630 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229586 7.5 危険 turnkeyarcade - Turnkey Arcade Script の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5629 2012-12-20 18:52 2008-12-17 Show GitHub Exploit DB Packet Storm
229587 7.8 危険 Roundcube.net - roundcubemail におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5620 2012-12-20 18:52 2008-12-16 Show GitHub Exploit DB Packet Storm
229588 10 危険 Roundcube.net - roundcubemail で使用されている Chuggnutt HTML to Text Converter における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5619 2012-12-20 18:52 2008-12-8 Show GitHub Exploit DB Packet Storm
229589 5 警告 Adiscon - rsyslog の imudp におけるサービス運用妨害 (DoS) の脆弱性 CWE-DesignError
CVE-2008-5618 2012-12-20 18:52 2008-12-16 Show GitHub Exploit DB Packet Storm
229590 8.5 危険 Adiscon - rsyslog の ACL ハンドリングにおけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5617 2012-12-20 18:52 2008-12-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
214951 5.8 MEDIUM
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Conan package upload functionality was not properly validating the supplied parameters, which resulted in the limi… NVD-CWE-noinfo
CVE-2020-13298 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214952 5.4 MEDIUM
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. When 2 factor authentication was enabled for groups, a malicious user could bypass that restriction by sending a s… NVD-CWE-noinfo
CVE-2020-13297 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214953 10.0 CRITICAL
Network 		gitlab gitlab GitLab CE/EE version 13.3 prior to 13.3.4 was vulnerable to an OAuth authorization scope change without user consent in the middle of the authorization flow. CWE-863
 Incorrect Authorization 		CVE-2020-13300 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214954 8.1 HIGH
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. The revocation feature was not revoking all session tokens and one could re-use it to obtain a valid session. CWE-613
 Insufficient Session Expiration 		CVE-2020-13299 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214955 5.4 MEDIUM
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. In certain cases an invalid username could be accepted when 2FA is activated. CWE-306
Missing Authentication for Critical Function 		CVE-2020-13289 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214956 4.3 MEDIUM
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. Project reporters and above could see confidential EPIC attached to confidential issues NVD-CWE-noinfo
CVE-2020-13287 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214957 6.5 MEDIUM
Network 		gitlab gitlab A vulnerability was discovered in GitLab versions before 13.1.10, 13.2.8 and 13.3.4. API Authorization Using Outdated CI Job Token CWE-863
 Incorrect Authorization 		CVE-2020-13284 2024-11-21 14:00 2020-09-15 Show GitHub Exploit DB Packet Storm
214958 7.5 HIGH
Network 		microchip atsama5d21c-cu_firmware
atsama5d21c-cur_firmware
atsama5d22c-cn_firmware
atsama5d22c-cnr_firmware
atsama5d22c-cu_firmware
atsama5d22c-cur_firmware
atsama5d23c-cn_firmware
atsama5… 		The Secure Monitor in Microchip Atmel ATSAMA5 products use a hardcoded key to encrypt and authenticate secure applets. CWE-798
 Use of Hard-coded Credentials 		CVE-2020-12789 2024-11-21 14:00 2020-09-14 Show GitHub Exploit DB Packet Storm
214959 7.5 HIGH
Network 		microchip atsama5d21c-cu_firmware
atsama5d21c-cur_firmware
atsama5d22c-cn_firmware
atsama5d22c-cnr_firmware
atsama5d22c-cu_firmware
atsama5d22c-cur_firmware
atsama5d23c-cn_firmware
atsama5… 		CMAC verification functionality in Microchip Atmel ATSAMA5 products is vulnerable to vulnerable to timing and power analysis attacks. CWE-203
 Information Exposure Through Discrepancy 		CVE-2020-12788 2024-11-21 14:00 2020-09-14 Show GitHub Exploit DB Packet Storm
214960 7.5 HIGH
Network 		microchip atsama5d21c-cu_firmware
atsama5d21c-cur_firmware
atsama5d22c-cn_firmware
atsama5d22c-cnr_firmware
atsama5d22c-cu_firmware
atsama5d22c-cur_firmware
atsama5d23c-cn_firmware
atsama5… 		Microchip Atmel ATSAMA5 products in Secure Mode allow an attacker to bypass existing security mechanisms related to applet handling. NVD-CWE-noinfo
CVE-2020-12787 2024-11-21 14:00 2020-09-14 Show GitHub Exploit DB Packet Storm