Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
245361	10	危険	BrowserCRM	-	BrowserCRM の pub/clients.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2689	2012-06-26 16:02	2008-06-13	Show	GitHub Exploit DB Packet Storm

245362	7.5	危険	flux cms	-	Flux CMS の webinc/bxe/scripts/loadsave.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2686	2012-06-26 16:02	2008-06-13	Show	GitHub Exploit DB Packet Storm

245363	7.5	危険	battleblog	-	Battle Blog の article.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2685	2012-06-26 16:02	2008-06-12	Show	GitHub Exploit DB Packet Storm

245364	9.3	危険	black ice	-	Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-2684	2012-06-26 16:02	2008-06-12	Show	GitHub Exploit DB Packet Storm

245365	9.3	危険	black ice	-	Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のファイルのダウンロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-2683	2012-06-26 16:02	2008-06-12	Show	GitHub Exploit DB Packet Storm

245366	7.5	危険	erfurtwiki	-	ErfurtWiki におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2672	2012-06-26 16:02	2008-06-11	Show	GitHub Exploit DB Packet Storm

245367	7.5	危険	dcfm blog	-	DCFM Blog の comments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2671	2012-06-26 16:02	2008-06-11	Show	GitHub Exploit DB Packet Storm

245368	5.1	警告	SUSE	-	SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2667	2012-06-26 16:02	2008-07-7	Show	GitHub Exploit DB Packet Storm

245369	6.8	警告	Preben Bjorn Biermann Madsen	-	CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2650	2012-06-26 16:02	2008-06-10	Show	GitHub Exploit DB Packet Storm

245370	7.5	危険	don3	-	DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2649	2012-06-26 16:02	2008-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
220361	4.3	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure (issue 4 of 6). In some cases, users…	CWE-269 Improper Privilege Management	CVE-2019-6789	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220362	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure (issue 3 of 6). For installations us…	NVD-CWE-noinfo	CVE-2019-6788	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220363	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It has Incorrect Access Control (issue 1 of 3). The contents of an LF…	NVD-CWE-noinfo	CVE-2019-6786	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220364	6.5	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Denial of Service. Inputting an overly long string into a M…	NVD-CWE-noinfo	CVE-2019-6785	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220365	6.1	MEDIUM Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows XSS (issue 1 of 2). Markdown fields contain a lack of input…	CWE-79 Cross-site Scripting	CVE-2019-6784	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220366	8.8	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. GitLab Pages contains a directory traversal vulnerability that could …	CWE-22 Path Traversal	CVE-2019-6783	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220367	7.5	HIGH Network	gitlab	gitlab	An issue was discovered in GitLab Community and Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. It allows Information Disclosure (issue 1 of 6). An authorization iss…	NVD-CWE-noinfo	CVE-2019-6782	2024-11-21 13:47	2019-09-10	Show	GitHub Exploit DB Packet Storm

220368	7.0	HIGH Local	apport_project	apport	Apport before versions 2.14.1-0ubuntu3.29+esm1, 2.20.1-0ubuntu2.19, 2.20.9-0ubuntu7.7, 2.20.10-0ubuntu27.1, 2.20.11-0ubuntu5 contained a TOCTTOU vulnerability when reading the users ~/.apport-ignore.…	CWE-367 Time-of-check Time-of-use (TOCTOU) Race Condition	CVE-2019-7307	2024-11-21 13:47	2019-08-30	Show	GitHub Exploit DB Packet Storm

220369	9.8	CRITICAL Network	tcl	alcatel_linkzone_firmware	The web interface of Alcatel LINKZONE MW40-V-V1.0 MW40_LU_02.00_02 devices is vulnerable to an authentication bypass that allows an unauthenticated user to have access to the web interface without kn…	CWE-287 Improper Authentication	CVE-2019-7163	2024-11-21 13:47	2019-08-3	Show	GitHub Exploit DB Packet Storm

220370	7.5	HIGH Network	dlink	dva-5592_firmware	The web interface of the D-Link DVA-5592 20180823 is vulnerable to an authentication bypass that allows an unauthenticated user to have access to sensitive information such as the Wi-Fi password and …	CWE-79 Cross-site Scripting	CVE-2019-6969	2024-11-21 13:47	2019-08-3	Show	GitHub Exploit DB Packet Storm