Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
131631	7.8	重要 Local	Quarkus Gradle Inc.	Quarkus Gradle	Unix 系システム上で稼動する Gradle におけるアクセスパーミションでの一時ファイル作成に関する脆弱性	CWE-378 CWE-379	CVE-2021-29428	2021-12-20 18:15	2021-03-10	Show	GitHub Exploit DB Packet Storm

131632	7.5	重要 Network	HCC Embedded	NicheStack	HCC Embedded InterNiche NicheStack における削除された特権に対する不適切なチェックに関する脆弱性	CWE-273 削除された特権に対する不適切なチェック	CVE-2021-36762	2021-12-20 18:11	2021-08-10	Show	GitHub Exploit DB Packet Storm

131633	7.5	重要 Network	HCC Embedded シーメンス	SENTRON 3WA COM190 ファームウェア NicheStack SENTRON 3WL COM35 ファームウェア	HCC embedded InterNiche における入力確認に関する脆弱性	CWE-20 不適切な入力確認	CVE-2021-31401	2021-12-20 18:11	2021-08-4	Show	GitHub Exploit DB Packet Storm

131634	9.3	緊急 Local	Xylem Inc.	AquaView	Xylem 社製 AquaView においてハードコードされた認証情報の使用の脆弱性	-	CVE-2021-42833	2021-12-20 17:46	2021-12-17	Show	GitHub Exploit DB Packet Storm

131635	7.1	重要 Local	Wibu-Systems AG	CodeMeter Runtime	Wibu-Systems 製 CodeMeter Runtime における不適切な権限管理の脆弱性	CWE-269 不適切な権限管理	CVE-2021-41057	2021-12-20 17:31	2021-12-17	Show	GitHub Exploit DB Packet Storm

131636	6.1	警告 Local	Delta Electronics	CNCSoft	Delta Electronics 製 CNCSoft に境域外読み取りの脆弱性	CWE-125 境界外読み取り	CVE-2021-44768	2021-12-20 17:24	2021-12-17	Show	GitHub Exploit DB Packet Storm

131637	6.1	警告 Network	ADTRAN	Personal Phone Manager	AdTran Personal Phone Manager ソフトウェアにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-25680	2021-12-20 15:42	2021-04-18	Show	GitHub Exploit DB Packet Storm

131638	7.5	重要 Network	ADTRAN	Personal Phone Manager	AdTran Personal Phone Manager における脆弱性	CWE-noinfo 情報不足	CVE-2021-25681	2021-12-20 14:58	2021-04-18	Show	GitHub Exploit DB Packet Storm

131639	5.7	警告 Network	Telegram	Telegram	iOS 用 Telegram app における脆弱性	CWE-noinfo 情報不足	CVE-2021-30496	2021-12-20 14:56	2021-04-9	Show	GitHub Exploit DB Packet Storm

131640	5.5	警告 Local	Linux Fedora Project	Fedora Linux Kernel	Linux Kernel における境界外読み取りに関する脆弱性	CWE-125 境界外読み取り	CVE-2021-29155	2021-12-20 14:56	2021-04-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
360171	-	interactivephp	fusionbb	Multiple SQL injection vulnerabilities in InteractivePHP FusionBB .11 Beta and earlier allow remote attackers to execute arbitrary SQL commands via (1) the username, which is not properly handled by …	NVD-CWE-Other	CVE-2005-1972	2008-09-6 05:50	2005-06-13	Show	GitHub Exploit DB Packet Storm

360172	-	annuaire	1two	Multiple cross-site scripting (XSS) vulnerabilities in Annuaire 1Two 1.1 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the id parameter to index.php, or the (2) si…	NVD-CWE-Other	CVE-2005-1975	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

360173	-	novell	netmail	Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cau…	NVD-CWE-Other	CVE-2005-1976	2008-09-6 05:50	2005-12-31	Show	GitHub Exploit DB Packet Storm

360174	-	edgewall_software	trac	Directory traversal vulnerability in Edgewall Trac 0.8.3 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the id parameter to the (1) upload or (2) attachmen…	NVD-CWE-Other	CVE-2005-2007	2008-09-6 05:50	2005-06-19	Show	GitHub Exploit DB Packet Storm

360175	-	symantec	norton_antivirus	Symantec AntiVirus 9 Corporate Edition allows local users to gain privileges via the "Scan for viruses" option, which launches a help window with raised privileges, a re-introduction of a vulnerabili…	NVD-CWE-Other	CVE-2005-2017	2008-09-6 05:50	2005-08-30	Show	GitHub Exploit DB Packet Storm

360176	-	freebsd	freebsd	ipfw in FreeBSD 5.4, when running on Symmetric Multi-Processor (SMP) or Uni Processor (UP) systems with the PREEMPTION kernel option enabled, does not sufficiently lock certain resources while perfor…	NVD-CWE-Other	CVE-2005-2019	2008-09-6 05:50	2005-07-5	Show	GitHub Exploit DB Packet Storm

360177	-	cpanel	cpanel	Cross-site scripting (XSS) vulnerability in cPanel 9.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the user parameter in the login page.	NVD-CWE-Other	CVE-2005-2021	2008-09-6 05:50	2005-06-20	Show	GitHub Exploit DB Packet Storm

360178	-	vipul	razor-agents	Vipul Razor Agents (razor-agents) before 2.70 allows remote attackers to cause a denial of service via (1) certain "unusual HTML messages" or (2) "certain malformed headers" such as Content-Type.	NVD-CWE-Other	CVE-2005-2024	2008-09-6 05:50	2005-06-17	Show	GitHub Exploit DB Packet Storm

360179	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 has a hard-coded account and password for debugging, which allows remote attackers to gain privileges.	NVD-CWE-Other	CVE-2005-2026	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm

360180	-	enterasys	vertical_horizon-2402s	Enterasys Vertical Horizon VH-2402S before firmware 2.05.05.09 does not properly restrict certain debugging commands to the ADMIN account, which could allow attackers to obtain sensitive information …	NVD-CWE-Other	CVE-2005-2027	2008-09-6 05:50	2005-06-16	Show	GitHub Exploit DB Packet Storm