Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230201 7.5 危険 vangogh web cms - VanGogh Web CMS の get_article.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3027 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
230202 7.5 危険 plx web studio - plx Ad Trader の ad.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3025 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
230203 6.9 警告 QNX Software Systems - QNX Momentics の phgrafx におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3024 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
230204 7.5 危険 phpbbportal - PHPortal の sablonlar/gunaysoft/gunaysoft.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-3022 2012-12-20 18:52 2008-07-7 Show GitHub Exploit DB Packet Storm
230205 7.5 危険 phpeasydata - PHPEasyData における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2995 2012-12-20 18:52 2008-07-3 Show GitHub Exploit DB Packet Storm
230206 4.3 警告 phpeasydata - PHPEasyData におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2994 2012-12-20 18:52 2008-07-3 Show GitHub Exploit DB Packet Storm
230207 7.5 危険 phpdmca - phpDMCA における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2986 2012-12-20 18:52 2008-07-2 Show GitHub Exploit DB Packet Storm
230208 6.8 警告 tinx cms - TinX/cms におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2976 2012-12-20 18:52 2008-07-2 Show GitHub Exploit DB Packet Storm
230209 4.3 警告 tinx cms - TinX/cms の admin/objects/obj_image.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2975 2012-12-20 18:52 2008-07-2 Show GitHub Exploit DB Packet Storm
230210 7.5 危険 yektaweb - AWT YEKTA におけるセッションをハイジャックされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2970 2012-12-20 18:52 2008-07-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
222391 5.4 MEDIUM
Network 		gitlab gitlab An input validation and output encoding issue was discovered in the GitLab CE/EE wiki pages feature which could result in a persistent XSS. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.… CWE-79
Cross-site Scripting 		CVE-2019-5467 2024-11-21 13:44 2019-09-10 Show GitHub Exploit DB Packet Storm
222392 5.3 MEDIUM
Network 		gitlab gitlab An authorization issue was discovered in the GitLab CE/EE CI badge images endpoint which could result in disclosure of the build status. This vulnerability was addressed in 12.1.2, 12.0.4, and 11.11.… CWE-200
CWE-862
Information Exposure
 Missing Authorization 		CVE-2019-5463 2024-11-21 13:44 2019-09-10 Show GitHub Exploit DB Packet Storm
222393 3.5 LOW
Adjacent 		gitlab gitlab An input validation problem was discovered in the GitHub service integration which could result in an attacker being able to make arbitrary POST requests in a GitLab instance's internal network. This… CWE-20
 Improper Input Validation  		CVE-2019-5461 2024-11-21 13:44 2019-09-10 Show GitHub Exploit DB Packet Storm
222394 6.5 MEDIUM
Network 		epignosishq efront_lms An exploitable SQL injection vulnerability exists in the unauthenticated portion of eFront LMS, versions v5.2.12 and earlier. Specially crafted web request to login page can cause SQL injections, res… CWE-89
SQL Injection 		CVE-2019-5070 2024-11-21 13:44 2019-09-6 Show GitHub Exploit DB Packet Storm
222395 8.8 HIGH
Network 		epignosishq efront_lms A code execution vulnerability exists in Epignosis eFront LMS v5.2.12. A specially crafted web request can cause unsafe deserialization potentially resulting in PHP code being executed. An attacker c… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-5069 2024-11-21 13:44 2019-09-6 Show GitHub Exploit DB Packet Storm
222396 5.3 MEDIUM
Network 		blynk blynk-library An exploitable information disclosure vulnerability exists in the packet-parsing functionality of Blynk-Library v0.6.1. A specially crafted packet can cause an unterminated strncpy, resulting in info… CWE-125
Out-of-bounds Read 		CVE-2019-5065 2024-11-21 13:44 2019-09-6 Show GitHub Exploit DB Packet Storm
222397 8.8 HIGH
Network 		aspose aspose.words An exploitable Stack Based Buffer Overflow vulnerability exists in the EnumMetaInfo function of Aspose Aspose.Words library, version 18.11.0.0. A specially crafted doc file can cause a stack-based bu… CWE-787
 Out-of-bounds Write 		CVE-2019-5041 2024-11-21 13:44 2019-08-22 Show GitHub Exploit DB Packet Storm
222398 8.8 HIGH
Network 		aspose aspose.cells An exploitable out-of-bounds read vulnerability exists in the Number record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in re… CWE-125
Out-of-bounds Read 		CVE-2019-5033 2024-11-21 13:44 2019-08-22 Show GitHub Exploit DB Packet Storm
222399 8.8 HIGH
Network 		aspose aspose.cells An exploitable out-of-bounds read vulnerability exists in the LabelSst record parser of Aspose Aspose.Cells 19.1.0 library. A specially crafted XLS file can cause an out-of-bounds read, resulting in … CWE-125
Out-of-bounds Read 		CVE-2019-5032 2024-11-21 13:44 2019-08-22 Show GitHub Exploit DB Packet Storm
222400 7.5 HIGH
Network 		google nest_cam_iq_indoor_firmware An exploitable denial-of-service vulnerability exists in the Weave error reporting functionality of the Nest Cam IQ Indoor, version 4620002. A specially crafted weave packets can cause an arbitrary W… CWE-346
 Origin Validation Error 		CVE-2019-5036 2024-11-21 13:44 2019-08-21 Show GitHub Exploit DB Packet Storm