Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228941 4.3 警告 加藤和良 - WRM におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6161 2012-12-20 19:10 2008-10-6 Show GitHub Exploit DB Packet Storm
228942 5 警告 South River Technologies - Titan FTP Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-6082 2012-12-20 19:10 2009-02-6 Show GitHub Exploit DB Packet Storm
228943 7.5 危険 simplecustomer - Simple Customer の contact.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6081 2012-12-20 19:10 2009-02-6 Show GitHub Exploit DB Packet Storm
228944 7.5 危険 rasihbahar - Bahar Download Script の aspkat.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6075 2012-12-20 19:10 2009-02-6 Show GitHub Exploit DB Packet Storm
228945 5.1 警告 phpcrs - phpcrs の frame.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6074 2012-12-20 19:10 2009-02-6 Show GitHub Exploit DB Packet Storm
228946 7.5 危険 web design hero - Joomla! 用の JoomlaDate コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6068 2012-12-20 19:10 2009-02-10 Show GitHub Exploit DB Packet Storm
228947 4.3 警告 テックスミス株式会社 - Techsmith Camtasia Studio が作成した任意の SWF コントローラーファイルにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6061 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
228948 5 警告 syslserve - Syslserve におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6058 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
228949 5 警告 PreProject.com - PreProjects Pre Classified Listings におけるパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6055 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
228950 5 警告 PreProject.com - PreProjects Pre Courier and Cargo Business におけるパスワードを取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6054 2012-12-20 19:10 2009-02-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195531 7.5 HIGH
Network 		qualcomm apq8009_firmware
apq8009w_firmware
apq8017_firmware
apq8037_firmware
apq8053_firmware
apq8096au_firmware
aqt1000_firmware
csr6030_firmware
csrb31024_firmware
mdm8207_firmwa… 		Loop with unreachable exit condition may occur due to improper handling of unsupported input in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Indus… CWE-835
 Loop with Unreachable Exit Condition ('Infinite Loop') 		CVE-2021-1914 2024-11-21 14:45 2021-09-8 Show GitHub Exploit DB Packet Storm
195532 5.5 MEDIUM
Local 		qualcomm apq8009_firmware
apq8009w_firmware
apq8017_firmware
apq8053_firmware
apq8064au_firmware
apq8076_firmware
apq8096au_firmware
aqt1000_firmware
ar8031_firmware
ar8035_firmware… 		Child process can leak information from parent process due to numeric pids are getting compared and these pid can be reused in Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon… CWE-697
 Incorrect Comparison 		CVE-2021-1904 2024-11-21 14:45 2021-09-8 Show GitHub Exploit DB Packet Storm
195533 9.8 CRITICAL
Network 		sonicwall analytics SonicWall Analytics 2.5 On-Prem is vulnerable to Java Debug Wire Protocol (JDWP) interface security misconfiguration vulnerability which potentially leads to Remote Code Execution. This vulnerability… NVD-CWE-noinfo
CVE-2021-20032 2024-11-21 14:45 2021-08-11 Show GitHub Exploit DB Packet Storm
195534 6.1 MEDIUM
Network 		tecnick tcexam A reflected cross-site scripting vulnerability exists in TCExam <= 14.8.4. The paths provided in the f, d, and dir parameters in tce_select_mediafile.php were not properly validated and could cause r… CWE-79
Cross-site Scripting 		CVE-2021-20116 2024-11-21 14:45 2021-08-6 Show GitHub Exploit DB Packet Storm
195535 6.1 MEDIUM
Network 		tecnick tcexam A reflected cross-site scripting vulnerability exists in TCExam <= 14.8.3. The paths provided in the f, d, and dir parameters in tce_filemanager.php were not properly validated and could cause reflec… CWE-79
Cross-site Scripting 		CVE-2021-20115 2024-11-21 14:45 2021-08-6 Show GitHub Exploit DB Packet Storm
195536 9.8 CRITICAL
Network 		sonicwall sma_210_firmware
sma_410_firmware
sma_500v_firmware
sra_4600_firmware
sra_1600_firmware
sra_va_firmware 		Improper neutralization of a SQL Command leading to SQL Injection vulnerability impacting end-of-life Secure Remote Access (SRA) products, specifically the SRA appliances running all 8.x firmware and… CWE-89
SQL Injection 		CVE-2021-20028 2024-11-21 14:45 2021-08-5 Show GitHub Exploit DB Packet Storm
195537 7.5 HIGH
Network 		tecnick tcexam When installed following the default/recommended settings, TCExam <= 14.8.1 allowed unauthenticated users to access the /cache/backup/ directory, which included sensitive database backup files. CWE-425
 Direct Request ('Forced Browsing') 		CVE-2021-20114 2024-11-21 14:45 2021-07-30 Show GitHub Exploit DB Packet Storm
195538 5.3 MEDIUM
Network 		tecnick tcexam An exposure of sensitive information vulnerability exists in TCExam <= 14.8.1. If a password reset request was made for an email address that was not registered with a user then we would be presented… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-20113 2024-11-21 14:45 2021-07-30 Show GitHub Exploit DB Packet Storm
195539 5.4 MEDIUM
Network 		tecnick tcexam A stored cross-site scripting vulnerability exists in TCExam <= 14.8.1. Valid files uploaded via tce_select_mediafile.php with a filename beggining with a period will be rendered as text/html. An att… CWE-79
Cross-site Scripting 		CVE-2021-20112 2024-11-21 14:45 2021-07-30 Show GitHub Exploit DB Packet Storm
195540 5.4 MEDIUM
Network 		tecnick tcexam A stored cross-site scripting vulnerability exists in TCExam <= 14.8.1. Valid files uploaded via tce_filemanager.php with a filename beggining with a period will be rendered as text/html. An attacker… CWE-79
Cross-site Scripting 		CVE-2021-20111 2024-11-21 14:45 2021-07-30 Show GitHub Exploit DB Packet Storm