Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
132371 7.5 重要
Network 		Schema-Inspector project Schema-Inspector Schema-Inspector におけるリソースの枯渇に関する脆弱性 CWE-20
CWE-400
CVE-2021-21267 2021-12-2 18:08 2021-03-14 Show GitHub Exploit DB Packet Storm
132372 9.8 緊急
Network 		http-proxy-agent project
Fedora Project
レッドハット		 Red Hat Enterprise Linux
http-proxy-agent
Red Hat Software Collections
Fedora 		http-proxy-agent における初期化に関する脆弱性 CWE-665
不適切な初期化 		CVE-2019-10196 2021-12-2 18:08 2019-06-12 Show GitHub Exploit DB Packet Storm
132373 8.6 重要
Network 		Debian
Squid-cache.org		 Debian GNU/Linux
Squid 		Squid における HTTP リクエストスマグリングに関する脆弱性 CWE-20
CWE-444
CVE-2020-25097 2021-12-2 18:08 2020-09-4 Show GitHub Exploit DB Packet Storm
132374 6.1 警告
Network 		AlgolPlus Advanced Order Export For WooCommerce WooCommerce 用 Advanced Order Export におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2021-27349 2021-12-2 18:05 2021-02-22 Show GitHub Exploit DB Packet Storm
132375 8.8 重要
Network 		PortProcesses project PortProcesses portprocesses パッケージにおけるコマンドインジェクションの脆弱性 CWE-77
コマンドインジェクション 		CVE-2021-23348 2021-12-2 18:05 2021-03-31 Show GitHub Exploit DB Packet Storm
132376 8.8 重要
Network 		accusoft imagegear Accusoft ImageGear における境界外書き込みに関する脆弱性 CWE-787
境界外書き込み 		CVE-2021-21782 2021-12-2 18:05 2021-03-30 Show GitHub Exploit DB Packet Storm
132377 7.2 重要
Network 		Simple College Website project Simple College Website Simple College Website における危険なタイプのファイルの無制限アップロードに関する脆弱性 CWE-434
危険なタイプのファイルの無制限アップロード 		CVE-2020-28173 2021-12-2 18:05 2020-10-30 Show GitHub Exploit DB Packet Storm
132378 9.8 緊急
Network 		Simple College Website project Simple College Website Simple College Website における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2020-28172 2021-12-2 18:05 2020-10-30 Show GitHub Exploit DB Packet Storm
132379 5.4 警告
Network 		C97net mblog mblog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-19616 2021-12-2 18:05 2020-08-13 Show GitHub Exploit DB Packet Storm
132380 5.4 警告
Network 		C97net mblog mblog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2020-19617 2021-12-2 18:05 2020-08-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
357831 - dada_mail dada_mail Cross-site scripting (XSS) vulnerability in Dada Mail before 2.10 Alpha 1 allows remote attackers to execute arbitrary Javascript via archived messages. NVD-CWE-Other
CVE-2005-2595 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357832 - gallery_project gallery User.php in Gallery, as used in Postnuke, allows users with any Admin privileges to gain access to all galleries. NVD-CWE-Other
CVE-2005-2596 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357833 - dokeos dokeos Multiple directory traversal vulnerabilities in Dokeos 1.6 and earlier, and possibly Claroline, allow remote attackers to (1) delete arbitrary files or directories via the delete parameter to claroli… NVD-CWE-Other
CVE-2005-2598 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357834 - ilia_alshanetsky fudforum FUDForum 2.6.15 with "Tree View" enabled, as used in other products such as phpgroupware and egroupware, allows remote attackers to read private posts via a modified mid parameter. NVD-CWE-Other
CVE-2005-2600 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357835 - midicart_software midicart_php_shopping_cart SQL injection vulnerability in MidiCart allows remote attackers to execute arbitrary SQL commands via the code_no parameter to (1) Item_Show.asp or (2) search_list.asp. NVD-CWE-Other
CVE-2005-2601 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357836 - mozilla firefox
thunderbird 		Mozilla Thunderbird 1.0 and Firefox 1.0.6 allows remote attackers to obfuscate URIs via a long URI, which causes the address bar to go blank and could facilitate phishing attacks. NVD-CWE-Other
CVE-2005-2602 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357837 - omnipilot_software lasso_professional_server Unknown vulnerability in Lasso Professional Server8.0.4 and 8.0.5 allows attackers to bypass authentication, related to [Auth] tags. NVD-CWE-Other
CVE-2005-2605 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357838 - phpsimplicity simplicity_of_upload PHP file include vulnerability in download.php in PHPSimplicity Simplicity oF Upload before 1.3.1 allows remote attackers to include arbitrary local and remote files via the language parameter and a … NVD-CWE-Other
CVE-2005-2607 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357839 - phpsimplicity simplicity_of_upload Download new version of program at http://www.phpsimplicity.com/scripts.php?id=3. NVD-CWE-Other
CVE-2005-2607 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm
357840 - safehtml safehtml SafeHTML before 1.3.5 does not properly filter script in UTF-7 and CSS comments, which allows remote attackers to conduct cross-site scripting (XSS) attacks in vulnerable applications that use SafeHT… NVD-CWE-Other
CVE-2005-2608 2008-09-6 05:52 2005-08-17 Show GitHub Exploit DB Packet Storm