Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 23, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251691 7.5 危険 Curtiss Grymala - CAG CMS の click.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4857 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
251692 7.5 危険 ASP indir - xWeblog の arsiv.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4856 2012-02-9 11:03 2011-10-5 Show GitHub Exploit DB Packet Storm
251693 7.5 危険 ASP indir - xWeblog の oku.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4855 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
251694 6.8 警告 Zuitu - Zuitu の ajax/coupon.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4854 2012-02-9 11:02 2011-10-5 Show GitHub Exploit DB Packet Storm
251695 7.5 危険 Chill Creations - Joomla! 用 ccInvoices コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4853 2012-02-9 11:01 2011-10-5 Show GitHub Exploit DB Packet Storm
251696 7.5 危険 Netshine Software - Joomla! 用 nBill コンポーネントの netinvoice.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7302 2012-02-9 11:01 2008-06-27 Show GitHub Exploit DB Packet Storm
251697 7.5 危険 Sclek - jSite の admin/login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7301 2012-02-9 11:00 2011-10-5 Show GitHub Exploit DB Packet Storm
251698 8.5 危険 サン・マイクロシステムズ - Sun Solaris および OpenSolaris における MAC のポリシーを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7300 2012-02-9 10:59 2011-10-5 Show GitHub Exploit DB Packet Storm
251699 2.1 注意 Apache Software Foundation - Apache JServ における JDBC パスワードまたはその他の重要な情報を見つけられる脆弱性 CWE-16
環境設定 		CVE-2000-1247 2012-02-9 10:58 2011-10-5 Show GitHub Exploit DB Packet Storm
251700 4.3 警告 Apache Software Foundation - Apache Struts におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1007 2012-02-8 16:35 2012-02-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224141 7.8 HIGH
Local 		titanhq webtitan An issue was discovered in TitanHQ WebTitan before 5.18. It has a sudoers file that enables low-privilege users to execute a vast number of commands as root, including mv, chown, and chmod. This can … CWE-269
 Improper Privilege Management 		CVE-2019-19014 2024-11-21 13:33 2019-12-3 Show GitHub Exploit DB Packet Storm
224142 9.8 CRITICAL
Network 		rabbitmq-c_project
fedoraproject
canonical
debian 		rabbitmq-c
fedora
ubuntu_linux
debian_linux 		An issue was discovered in amqp_handle_input in amqp_connection.c in rabbitmq-c 0.9.0. There is an integer overflow that leads to heap memory corruption in the handling of CONNECTION_STATE_HEADER. A … CWE-787
 Out-of-bounds Write 		CVE-2019-18609 2024-11-21 13:33 2019-12-2 Show GitHub Exploit DB Packet Storm
224143 7.5 HIGH
Network 		alliedtelesis at-gs950\/8_firmware A Directory Traversal in the Web interface of the Allied Telesis AT-GS950/8 until Firmware AT-S107 V.1.1.3 [1.00.047] allows unauthenticated attackers to read arbitrary system files via a GET request… CWE-22
Path Traversal 		CVE-2019-18922 2024-11-21 13:33 2019-11-30 Show GitHub Exploit DB Packet Storm
224144 4.7 MEDIUM
Local 		linux
redhat
canonical
fedoraproject
opensuse 		linux_kernel
enterprise_linux
ubuntu_linux
fedora
leap 		The Linux kernel before 5.4.1 on powerpc allows Information Exposure because the Spectre-RSB mitigation is not in place for all applicable CPUs, aka CID-39e72bf96f58. This is related to arch/powerpc/… CWE-200
Information Exposure 		CVE-2019-18660 2024-11-21 13:33 2019-11-28 Show GitHub Exploit DB Packet Storm
224145 7.5 HIGH
Network 		squid-cache
canonical
debian
fedoraproject 		squid
ubuntu_linux
debian_linux
fedora 		An issue was discovered in Squid 2.x, 3.x, and 4.x through 4.8. Due to incorrect data management, it is vulnerable to information disclosure when processing HTTP Digest Authentication. Nonce tokens c… CWE-200
Information Exposure 		CVE-2019-18679 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm
224146 5.3 MEDIUM
Network 		squid-cache
canonical
debian
fedoraproject 		squid
ubuntu_linux
debian_linux
fedora 		An issue was discovered in Squid 3.x and 4.x through 4.8. It allows attackers to smuggle HTTP requests through frontend software to a Squid instance that splits the HTTP Request pipeline differently.… CWE-444
HTTP Request Smuggling 		CVE-2019-18678 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm
224147 6.1 MEDIUM
Network 		squid-cache
canonical
fedoraproject 		squid
ubuntu_linux
fedora 		An issue was discovered in Squid 3.x and 4.x through 4.8 when the append_domain setting is used (because the appended characters do not properly interact with hostname length restrictions). Due to in… CWE-352
 Origin Validation Error 		CVE-2019-18677 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm
224148 7.5 HIGH
Network 		squid-cache
canonical
fedoraproject
debian 		squid
ubuntu_linux
fedora
debian_linux 		An issue was discovered in Squid 3.x and 4.x through 4.8. Due to incorrect input validation, there is a heap-based buffer overflow that can result in Denial of Service to all clients using the proxy.… CWE-787
 Out-of-bounds Write 		CVE-2019-18676 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm
224149 10.0 CRITICAL
Network 		dell emc_storage_monitoring_and_reporting Dell EMC Storage Monitoring and Reporting version 4.3.1 contains a Java RMI Deserialization of Untrusted Data vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerabili… CWE-502
 Deserialization of Untrusted Data 		CVE-2019-18580 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm
224150 5.3 MEDIUM
Network 		gitlab gitlab An issue was discovered in GitLab Community and Enterprise Edition 8.17 through 12.4 in the Search feature provided by Elasticsearch integration.. It has Insecure Permissions (issue 1 of 4). CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-18456 2024-11-21 13:33 2019-11-27 Show GitHub Exploit DB Packet Storm