Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228471 7.5 危険 phpkf - phpKF の forum_duzen.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6443 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
228472 5.8 警告 sina - Sina Inc. DLoader Class ActiveX コントロールにおける任意のファイルを上書きされる脆弱性 CWE-Other
その他 		CVE-2008-6442 2012-12-20 19:10 2009-03-9 Show GitHub Exploit DB Packet Storm
228473 4.3 警告 phpsqlitecms - phpSQLiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6435 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228474 7.5 危険 psychostats - PsychoStats における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6422 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228475 7.5 危険 socialsitegenerator - Social Site Generator の social_game_play.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-6421 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228476 5 警告 socialsitegenerator - Social Site Generator における任意のファイルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-6420 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228477 7.5 危険 socialsitegenerator - Social Site Generator における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6419 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228478 7.5 危険 torrenttrader - TorrentTrader の scrape.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6418 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228479 10 危険 Youngzsoft - YoungZSoft CCProxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6415 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228480 7.5 危険 vignette - Vignette Content Management における管理者権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2008-6412 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195401 4.8 MEDIUM
Network 		racom m\!dge_firmware Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the regionalSettings.php dialogs. CWE-79
Cross-site Scripting 		CVE-2021-20069 2024-11-21 14:45 2021-02-17 Show GitHub Exploit DB Packet Storm
195402 4.8 MEDIUM
Network 		racom m\!dge_firmware Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages. CWE-79
Cross-site Scripting 		CVE-2021-20068 2024-11-21 14:45 2021-02-17 Show GitHub Exploit DB Packet Storm
195403 5.3 MEDIUM
Network 		racom m\!dge_firmware Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication. CWE-306
Missing Authentication for Critical Function 		CVE-2021-20067 2024-11-21 14:45 2021-02-17 Show GitHub Exploit DB Packet Storm
195404 5.6 MEDIUM
Network 		jsdom_project jsdom JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled. NVD-CWE-noinfo
CVE-2021-20066 2024-11-21 14:45 2021-02-17 Show GitHub Exploit DB Packet Storm
195405 9.8 CRITICAL
Network 		sonicwall sma_100_firmware
sma_200_firmware
sma_210_firmware
sma_400_firmware
sma_410_firmware
sma_500v 		A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. T… CWE-89
SQL Injection 		CVE-2021-20016 2024-11-21 14:45 2021-02-4 Show GitHub Exploit DB Packet Storm
195406 5.0 MEDIUM
Local 		oracle zfs_storage_appliance
hyperion_infrastructure_technology
enterprise_manager_ops_center 		Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: RAS subsystems). The supported version that is affected is 8.8. Difficult to exploit vulnerability allows h… NVD-CWE-noinfo
CVE-2021-1999 2024-11-21 14:45 2021-01-21 Show GitHub Exploit DB Packet Storm
195407 3.8 LOW
Network 		oracle
fedoraproject
netapp 		mysql
fedora
snapcenter
oncommand_workflow_automation
oncommand_insight
active_iq_unified_manager 		Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privi… NVD-CWE-noinfo
CVE-2021-1998 2024-11-21 14:45 2021-01-21 Show GitHub Exploit DB Packet Storm
195408 8.1 HIGH
Network 		oracle hospitality_reporting_and_analytics Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Report). The supported version that is affected is 9.1.0. Easily exploitab… NVD-CWE-noinfo
CVE-2021-1997 2024-11-21 14:45 2021-01-21 Show GitHub Exploit DB Packet Storm
195409 2.4 LOW
Network 		oracle weblogic_server
hyperion_infrastructure_technology
agile_engineering_data_management
siebel_ui_framework 		Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne… NVD-CWE-noinfo
CVE-2021-1996 2024-11-21 14:45 2021-01-21 Show GitHub Exploit DB Packet Storm
195410 6.5 MEDIUM
Network 		oracle weblogic_server Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne… NVD-CWE-noinfo
CVE-2021-1995 2024-11-21 14:45 2021-01-21 Show GitHub Exploit DB Packet Storm