Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 22, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132301 7.2 重要
Network 		CleanTalk Spam protection
 AntiSpam
 FireWall 		WordPress 用 Clean Talk Anti-Spam プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-24131 2021-11-29 11:55 2021-03-18 Show GitHub Exploit DB Packet Storm
132302 7.2 重要
Network 		Flipper Code WP Google Map Plugin WordPress 用 WP Google Map Plugin プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-24130 2021-11-29 11:55 2021-03-18 Show GitHub Exploit DB Packet Storm
132303 5.4 警告
Network 		Themify Themify Portfolio Post WordPress 用 Themify Portfolio Post プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24129 2021-11-29 11:55 2021-03-18 Show GitHub Exploit DB Packet Storm
132304 5.4 警告
Network 		Envira Gallery, LLC. Envira Gallery WordPress 用 Envira Gallery Lite プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-24126 2021-11-29 11:55 2021-03-18 Show GitHub Exploit DB Packet Storm
132305 7.2 重要
Network 		Contact Form Submissions project Contact Form Submissions WordPress 用 Contact Form Submissions プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2021-24125 2021-11-29 11:55 2021-01-3 Show GitHub Exploit DB Packet Storm
132306 7.5 重要
Network 		Debian
Xstream		 Xstream
Debian GNU/Linux 		XStream におけるリソースの枯渇に関する脆弱性 CWE-400
CWE-502
CVE-2021-21341 2021-11-29 11:55 2021-03-13 Show GitHub Exploit DB Packet Storm
132307 9.1 緊急
Network 		Debian
Xstream		 Xstream
Debian GNU/Linux 		XStream におけるサーバサイドのリクエストフォージェリの脆弱性 CWE-502
CWE-918
CVE-2021-21342 2021-11-29 11:38 2021-03-13 Show GitHub Exploit DB Packet Storm
132308 7.5 重要
Network 		Debian
Xstream		 Xstream
Debian GNU/Linux 		XStream におけるファイル名やパス名の外部制御に関する脆弱性 CWE-502
CWE-73
CVE-2021-21343 2021-11-29 11:30 2021-03-13 Show GitHub Exploit DB Packet Storm
132309 9.8 緊急
Network 		Debian
Xstream		 Xstream
Debian GNU/Linux 		XStream における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
CWE-502
CVE-2021-21344 2021-11-29 10:24 2021-03-13 Show GitHub Exploit DB Packet Storm
132310 9.9 緊急
Network 		Debian
Xstream
オラクル		 Xstream
Oracle Endeca Information Discovery Studio
Debian GNU/Linux
Oracle Business Activity Monitoring 		XStream におけるコードインジェクションの脆弱性 CWE-502
CWE-94
CVE-2021-21345 2021-11-29 10:04 2021-03-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 22, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
359091 - npds npds Cross-site scripting (XSS) vulnerability in NPDS 4.8 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-1804 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359092 - dacode dacode Cross-site scripting (XSS) vulnerability in DaCode 1.2.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-1805 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359093 - drupal drupal Cross-site scripting (XSS) vulnerability in Drupal 4.0.0 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-1806 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359094 - phpwebsite phpwebsite Cross-site scripting (XSS) vulnerability in phpWebSite 0.8.3 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag. NVD-CWE-Other
CVE-2002-1807 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359095 - zack_coburn meunity_community_system Cross-site scripting (XSS) vulnerability in Meunity Community System 1.1 allows remote attackers to inject arbitrary web script or HTML via Javascript in an IMG tag when creating a topic. NVD-CWE-Other
CVE-2002-1808 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359096 - belkin f5d6130_wnap Belkin F5D6130 Wireless Network Access Point running firmware AP14G8 allows remote attackers to cause a denial of service (connection loss) by sending several SNMP GetNextRequest requests. NVD-CWE-Other
CVE-2002-1811 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359097 - gdam gdam Buffer overflow in gdam123 0.933 and 0.942 allows local users to execute arbitrary code via a long filename parameter. NVD-CWE-Other
CVE-2002-1812 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359098 - aol instant_messenger Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary programs by specifying the program in the href attribute of a link. NVD-CWE-Other
CVE-2002-1813 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359099 - gnome
mandrakesoft
redhat
slackware 		bonobo
mandrake_linux
linux
slackware_linux 		Buffer overflow in efstools in Bonobo, when installed setuid, allows local users to execute arbitrary code via long command line arguments. NVD-CWE-Other
CVE-2002-1814 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm
359100 - aquonics_scripting aquonics_file_manager Directory traversal vulnerability in source.php and source.cgi in Aquonics File Manager 1.5 allows remote attackers to read arbitrary files via a .. (dot dot) in the URL. NVD-CWE-Other
CVE-2002-1815 2008-09-6 05:31 2002-12-31 Show GitHub Exploit DB Packet Storm