Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 4:09 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230201 6.8 警告 xomol - Xomol CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2484 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
230202 6.8 警告 xomol - Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2483 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
230203 10 危険 phpraider - phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2481 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
230204 10 危険 plusphp - plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2480 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
230205 7.5 危険 vBulletin Solutions, Inc. - vBulletin Gold の faq.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2460 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
230206 7.5 危険 phpclassifiedsscript - PHP Classifieds Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2453 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
230207 4.3 警告 TYPO3 Association - TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2452 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
230208 7.5 危険 TYPO3 Association - TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2451 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
230209 4.3 警告 TYPO3 Association - TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2450 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
230210 7.5 危険 wgcc - WGCC における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2446 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223081 7.5 HIGH
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. Local logging is not blocked for sensitive information (e.g., server addresses or message content). CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2019-20852 2024-11-21 13:39 2020-06-20 Show GitHub Exploit DB Packet Storm
223082 9.1 CRITICAL
Network 		mattermost mattermost An issue was discovered in Mattermost Mobile Apps before 1.26.0. An attacker can use directory traversal with the Video Preview feature to overwrite arbitrary files on a device. CWE-22
Path Traversal 		CVE-2019-20851 2024-11-21 13:39 2020-06-20 Show GitHub Exploit DB Packet Storm
223083 5.3 MEDIUM
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. A view cache can persist on a device after a logout. CWE-459
 Incomplete Cleanup 		CVE-2019-20850 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223084 5.3 MEDIUM
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. Cookie data can persist on a device after a logout. CWE-459
 Incomplete Cleanup 		CVE-2019-20849 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223085 7.5 HIGH
Network 		mattermost mattermost_mobile An issue was discovered in Mattermost Mobile Apps before 1.26.0. The Quick Reply feature mishandles crafted replies. CWE-20
 Improper Input Validation  		CVE-2019-20848 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223086 5.3 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. An attacker can send a user_typing WebSocket event to any channel. NVD-CWE-noinfo
CVE-2019-20847 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223087 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. It has weak permissions for server-local file storage. CWE-281
 Improper Preservation of Permissions 		CVE-2019-20846 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223088 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0. It allows attackers to cause a denial of service (memory consumption) via a large Slack import. CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2019-20845 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223089 6.5 MEDIUM
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. An attacker can spoof a direct-message channel by changing the type of a channel. CWE-924
 Improper Enforcement of Message Integrity During Transmission in a Communication Channel 		CVE-2019-20844 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm
223090 7.5 HIGH
Network 		mattermost mattermost_server An issue was discovered in Mattermost Server before 5.18.0, 5.17.2, 5.16.4, 5.15.4, and 5.9.7. There are weak permissions for configuration files. CWE-281
 Improper Preservation of Permissions 		CVE-2019-20843 2024-11-21 13:39 2020-06-19 Show GitHub Exploit DB Packet Storm