Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228631 7.5 危険 X7 Group - X7 Chat のログインページにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6964 2012-12-20 19:10 2009-08-13 Show GitHub Exploit DB Packet Storm
228632 7.5 危険 turnkeyforms - TurnkeyForms Text Link Sales の admin.php における認証を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6963 2012-12-20 19:10 2009-08-13 Show GitHub Exploit DB Packet Storm
228633 5 警告 x10media - X10media x10 Automatic Mp3 Search Engine Script の download.php における任意のファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6960 2012-12-20 19:10 2009-08-12 Show GitHub Exploit DB Packet Storm
228634 7.5 危険 wowraidmanager - WoW Raid Manager の auth/auth_phpbb3.php における認証を回避される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-7050 2012-12-20 19:10 2008-10-13 Show GitHub Exploit DB Packet Storm
228635 7.5 危険 Simple Machines - SMF のパスワードリセット機能における他のユーザのパスワードを変更される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2008-6971 2012-12-20 19:10 2008-09-7 Show GitHub Exploit DB Packet Storm
228636 7.5 危険 UBB Systems - UBB.threads の dosearch.inc.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6970 2012-12-20 19:10 2008-09-2 Show GitHub Exploit DB Packet Storm
228637 10 危険 raidsonic - RaidSonic ICY BOX NAS の userHandler.cgi における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-7081 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
228638 5 警告 phpclassifiedsscript - Team PHP PHP Classifieds Script におけるデータベース資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-7080 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
228639 7.5 危険 relative - SailPlanner における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-7077 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
228640 7.8 危険 シーメンス - Siemens C450 IP など VoIP デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-7065 2012-12-20 19:10 2009-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 24, 2026, 4:05 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195181 8.2 HIGH
Network 		ibm i IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could e… NVD-CWE-noinfo
CVE-2021-20501 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
195182 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to e… CWE-611
XXE 		CVE-2021-20454 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
195183 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose… CWE-611
XXE 		CVE-2021-20453 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm
195184 6.1 MEDIUM
Local 		samba
redhat
fedoraproject 		cifs-utils
enterprise_linux
fedora 		A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vul… CWE-269
 Improper Privilege Management 		CVE-2021-20208 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm
195185 7.2 HIGH
Network 		ibm resilient IBM Resilient SOAR V38.0 could allow a privileged user to create create malicious scripts that could be executed as another user. IBM X-Force ID: 198759. CWE-77
Command Injection 		CVE-2021-20527 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm
195186 4.4 MEDIUM
Local 		ibm spectrum_protect IBM Spectrum Protect Server 7.1 and 8.1 is subject to a stack-based buffer overflow caused by improper bounds checking during the parsing of commands. By issuing such a command with an improper param… CWE-787
 Out-of-bounds Write 		CVE-2021-20491 2024-11-21 14:46 2021-04-17 Show GitHub Exploit DB Packet Storm
195187 7.5 HIGH
Network 		mitsubishielectric got2000_gt27_firmware
got2000_gt25_firmware
gt2107-wtbd_firmware
gt2107-wtsd_firmware
gs2110-wtbd-n_firmware
gs2107-wtbd-n_firmware 		Improper authentication vulnerability in GOT2000 series GT27 model VNC server versions 01.39.010 and prior, GOT2000 series GT25 model VNC server versions 01.39.010 and prior, GOT2000 series GT21 mode… CWE-287
Improper Authentication 		CVE-2021-20590 2024-11-21 14:46 2021-04-23 Show GitHub Exploit DB Packet Storm
195188 7.2 HIGH
Network 		linuxfoundation
redhat
fedoraproject
debian 		ceph
ceph_storage
fedora
debian_linux 		An authentication flaw was found in ceph in versions before 14.2.20. When the monitor handles CEPHX_GET_AUTH_SESSION_KEY requests, it doesn't sanitize other_keys, allowing key reuse. An attacker who … CWE-287
Improper Authentication 		CVE-2021-20288 2024-11-21 14:46 2021-04-16 Show GitHub Exploit DB Packet Storm
195189 5.4 MEDIUM
Network 		ibm rational_quality_manager
rational_team_concert
rational_engineering_lifecycle_manager
rhapsody_model_manager
collaborative_lifecycle_management
engineering_test_management
engineeri… 		IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… CWE-79
Cross-site Scripting 		CVE-2021-20519 2024-11-21 14:46 2021-04-13 Show GitHub Exploit DB Packet Storm
195190 6.5 MEDIUM
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, and 8.5 is vulnerable to server-side request forgery (SSRF). By sending a specially crafted request, a remote authenticated attacker could exploit this vuln… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-20480 2024-11-21 14:46 2021-04-8 Show GitHub Exploit DB Packet Storm