Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228741 7.5 危険 uochm - U&M Software Event Lister における脆弱性 CWE-287
不適切な認証 		CVE-2008-6719 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
228742 7.5 危険 uochm - U&M Software JustBookIt における脆弱性 CWE-287
不適切な認証 		CVE-2008-6718 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
228743 7.5 危険 uochm - U&M Software Signup における脆弱性 CWE-287
不適切な認証 		CVE-2008-6717 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
228744 7.5 危険 PreProject.com - Pre ADS Portal の homeadmin/adminhome.php における脆弱性 CWE-287
不適切な認証 		CVE-2008-6716 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
228745 4.3 警告 PreProject.com - Pre ADS Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6715 2012-12-20 19:10 2009-04-13 Show GitHub Exploit DB Packet Storm
228746 7.5 危険 xecms - xeCMS の admin.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6714 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
228747 5 警告 stalker-game - S.T.A.L.K.E.R.: Shadow of Chernobyl の MultipacketReciever::RecievePacket 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2008-6705 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
228748 5 警告 stalker-game - S.T.A.L.K.E.R.: Shadow of Chernobyl の NET_Compressor::Decompress 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-6704 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
228749 10 危険 stalker-game - S.T.A.L.K.E.R.: Shadow of Chernobyl の IPureServer::_Recieve 関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-6703 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
228750 5 警告 stalker-game - S.T.A.L.K.E.R.: Shadow of Chernobyl におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6702 2012-12-20 19:10 2009-04-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 25, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195171 7.8 HIGH
Local 		gnu binutils A flaw was found in binutils readelf 2.35 program. An attacker who is able to convince a victim using readelf to read a crafted file could trigger a stack buffer overflow, out-of-bounds write of arbi… CWE-787
 Out-of-bounds Write 		CVE-2021-20294 2024-11-21 14:46 2021-04-30 Show GitHub Exploit DB Packet Storm
195172 7.5 HIGH
Network 		redhat
debian 		ansible_engine
ansible_tower
ansible_automation_platform
debian_linux 		A flaw was found in the Ansible Engine 2.9.18, where sensitive info is not masked by default and is not protected by the no_log feature when using the sub-option feature of the basic.py module. This … CWE-200
Information Exposure 		CVE-2021-20228 2024-11-21 14:46 2021-04-30 Show GitHub Exploit DB Packet Storm
195173 5.4 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2021-20550 2024-11-21 14:46 2021-04-28 Show GitHub Exploit DB Packet Storm
195174 5.4 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2021-20549 2024-11-21 14:46 2021-04-28 Show GitHub Exploit DB Packet Storm
195175 5.4 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2021-20448 2024-11-21 14:46 2021-04-28 Show GitHub Exploit DB Packet Storm
195176 5.5 MEDIUM
Local 		ibm spectrum_protect_client
spectrum_protect_for_space_management 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the applica… CWE-787
 Out-of-bounds Write 		CVE-2021-20546 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
195177 6.2 MEDIUM
Local 		ibm spectrum_protect_plus IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 198836. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-20536 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
195178 7.8 HIGH
Local 		ibm spectrum_protect_backup-archive_client
spectrum_protect_for_virtual_environments 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 19… CWE-276
Incorrect Default Permissions  		CVE-2021-20532 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
195179 6.5 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domai… NVD-CWE-Other
CVE-2021-20432 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
195180 6.1 MEDIUM
Network 		nec aterm_wg1900hp2_firmware
aterm_wg1900hp_firmware
aterm_wg1800hp4_firmware
aterm_wg1800hp3_firmware
aterm_wg1200hs3_firmware
aterm_wg1200hs2_firmware
aterm_wg1200hp3_firmware
ater… 		Cross-site scripting vulnerability in NEC Aterm devices (Aterm WG1900HP2 firmware Ver.1.3.1 and earlier, Aterm WG1900HP firmware Ver.2.5.1 and earlier, Aterm WG1800HP4 firmware Ver.1.3.1 and earlier,… CWE-79
Cross-site Scripting 		CVE-2021-20680 2024-11-21 14:46 2021-04-26 Show GitHub Exploit DB Packet Storm