Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 22, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228571	6.8	警告	PHPKIT	-	PHPKIT におけるクロスサイトリクエストフォージェリ攻撃を実行される脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7193	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

228572	6.8	警告	woltlab	-	wBB の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-7192	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

228573	5	警告	pps.jussieu	-	Polipo におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2008-7191	2012-12-20 19:10	2009-09-9	Show	GitHub Exploit DB Packet Storm

228574	5	警告	rittwick banerjee	-	Telephone Directory 2008 の del_query1.php における任意の連絡先を削除される脆弱性	CWE-20 不適切な入力確認	CVE-2008-7180	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228575	7.5	危険	XOOPS	-	XOOPS 用の Uploader モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-7178	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228576	7.5	危険	yanick bourbeau	-	LNP における管理者権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7172	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228577	4.3	警告	yanick bourbeau	-	LNP におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7171	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228578	9.3	危険	uusee	-	UUSee UUUpgrade ActiveX コントロールにおける任意のファイルを強制的にダウンロードされる脆弱性	CWE-Other その他	CVE-2008-7168	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228579	7.5	危険	sami ekblad	-	Page Manager の upload.php における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7167	2012-12-20 19:10	2009-09-8	Show	GitHub Exploit DB Packet Storm

228580	10	危険	ryo-oh-ki	-	Shareaza における脆弱性	CWE-noinfo 情報不足	CVE-2008-7164	2012-12-20 19:10	2009-09-4	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 22, 2026, 4:08 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195341	7.5	HIGH Network	draytek	vigorconnect	A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vu…	CWE-22 Path Traversal	CVE-2021-20123	2024-11-21 14:45	2021-10-14	Show	GitHub Exploit DB Packet Storm

195342	6.1	MEDIUM Network	sonicwall	sonicos	A Host Header Redirection vulnerability in SonicOS potentially allows a remote attacker to redirect firewall management users to arbitrary web domains.	CWE-601 Open Redirect	CVE-2021-20031	2024-11-21 14:45	2021-10-13	Show	GitHub Exploit DB Packet Storm

195343	7.2	HIGH Network	telus	prv65b444a-s-ts_firmware	The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is affected by an authenticated command injection vulnerability in multiple parameters passed to tr69_cmd.cgi. A remote attacker co…	CWE-78 OS Command	CVE-2021-20122	2024-11-21 14:45	2021-10-12	Show	GitHub Exploit DB Packet Storm

195344	4.0	MEDIUM Physics	telus	prv65b444a-s-ts_firmware	The Telus Wi-Fi Hub (PRV65B444A-S-TS) with firmware version 3.00.20 is vulnerable to an authenticated arbitrary file read. An authenticated user with physical access to the device can read arbitrary …	NVD-CWE-noinfo	CVE-2021-20121	2024-11-21 14:45	2021-10-12	Show	GitHub Exploit DB Packet Storm

195345	6.5	MEDIUM Network	sonicwall	sma_200_firmware sma_210_firmware sma_400_firmware sma_410_firmware sma_500v	Improper neutralization of special elements in the SMA100 management interface allows a remote authenticated attacker to inject arbitrary commands as a 'nobody' user which potentially leads to DoS.	CWE-78 OS Command	CVE-2021-20035	2024-11-21 14:45	2021-09-28	Show	GitHub Exploit DB Packet Storm

195346	9.1	CRITICAL Network	sonicwall	sma_200_firmware sma_210_firmware sma_400_firmware sma_410_firmware sma_500v	An improper access control vulnerability in SMA100 allows a remote unauthenticated attacker to bypass the path traversal checks and delete an arbitrary file potentially resulting in a reboot to facto…	CWE-22 Path Traversal	CVE-2021-20034	2024-11-21 14:45	2021-09-28	Show	GitHub Exploit DB Packet Storm

195347	7.8	HIGH Local	sonicwall	global_vpn_client	SonicWall Global VPN Client 4.10.5 installer (32-bit and 64-bit) incorrect default file permission vulnerability leads to privilege escalation which potentially allows command execution in the host o…	CWE-276 Incorrect Default Permissions	CVE-2021-20037	2024-11-21 14:45	2021-09-21	Show	GitHub Exploit DB Packet Storm

195348	7.8	HIGH Local	qualcomm	apq8009w_firmware apq8053_firmware ar9380_firmware ipq8064_firmware ipq8065_firmware ipq8068_firmware ipq8069_firmware msm8909w_firmware msm8953_firmware qca6320_firmware	Use-after-free vulnerability in kernel graphics driver because of storing an invalid pointer in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon W…	CWE-416 Use After Free	CVE-2021-1947	2024-11-21 14:45	2021-09-17	Show	GitHub Exploit DB Packet Storm

195349	5.5	MEDIUM Local	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware aqt1000_firmware msm8909w_firmware msm8917_firmware msm8953_firmware qca4020_firmware qca6174a_firmware…	Null pointer dereference occurs due to improper validation when the preemption feature enablement is toggled in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, …	CWE-476 NULL Pointer Dereference	CVE-2021-1939	2024-11-21 14:45	2021-09-17	Show	GitHub Exploit DB Packet Storm

195350	9.8	CRITICAL Network	qualcomm	apq8009_firmware apq8009w_firmware apq8017_firmware apq8053_firmware apq8064au_firmware apq8096au_firmware aqt1000_firmware ar7420_firmware ar8031_firmware ar8035_firmware<…	A use after free can occur due to improper validation of P2P device address in PD Request frame in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon In…	CWE-416 Use After Free	CVE-2021-1976	2024-11-21 14:45	2021-09-17	Show	GitHub Exploit DB Packet Storm