Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229161 7.5 危険 Tribal Ltd. - Tribiq CMS Community の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5960 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
229162 5 警告 phpstreet - Wbstreet におけるデータベースの資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5956 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
229163 7.5 危険 phpstreet - Wbstreet の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5955 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
229164 7.5 危険 tiddlywiki - ccTiddly における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5949 2012-12-20 19:10 2009-01-23 Show GitHub Exploit DB Packet Storm
229165 6.8 警告 yapbb - YapBB の include/class_yapbbcooker.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-5947 2012-12-20 19:10 2009-01-22 Show GitHub Exploit DB Packet Storm
229166 7.5 危険 PHP-Fusion - PHP-Fusion の readmore.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5946 2012-12-20 19:10 2009-01-22 Show GitHub Exploit DB Packet Storm
229167 7.8 危険 zkesoft - AyeView におけるサービス運用妨害 (メモリ消費またはアプリケーションクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-5937 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
229168 5 警告 the net guys - The Net Guys ASPired2Blog におけるユーザ名などを含むデータベースファイルをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5931 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
229169 7.5 危険 the net guys - The Net Guys ASPired2Blog の admin/blog_comments.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5930 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
229170 5 警告 vpasp - VP-ASP Shopping Cart におけるパスワードを含むデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5929 2012-12-20 19:10 2009-01-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195671 4.6 MEDIUM
Network 		jenkins active_choices Jenkins Active Choices Plugin 2.5.2 and earlier does not escape reference parameter values, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure … CWE-79
Cross-site Scripting 		CVE-2021-21616 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195672 5.3 MEDIUM
Network 		brave brave Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests t… - CVE-2021-21323 2024-11-21 14:48 2021-02-24 Show GitHub Exploit DB Packet Storm
195673 6.0 MEDIUM
Local 		dell emc_powerprotect_cyber_recovery Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. A locally authenticated high privileged Cyber Recovery user may potentially exploit this vuln… CWE-200
Information Exposure 		CVE-2021-21512 2024-11-21 14:48 2021-02-20 Show GitHub Exploit DB Packet Storm
195674 5.4 MEDIUM
Network 		apereo opencast Opencast is a free, open-source platform to support the management of educational audio and video content. In Opencast before version 9.2 there is a vulnerability in which publishing an episode with … - CVE-2021-21318 2024-11-21 14:48 2021-02-19 Show GitHub Exploit DB Packet Storm
195675 5.3 MEDIUM
Network 		uap-core_project uap-core uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. In uap-core before version 0.11.0, some regexes are vulnerable to regular expressio… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-21317 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
195676 7.8 HIGH
Local 		less-openui5_project less-openui5 less-openui5 is an npm package which enables building OpenUI5 themes with Less.js. In less-openui5 before version 0.10., when processing theming resources (i.e. `*.less` files) with less-openui5 that… - CVE-2021-21316 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
195677 7.8 HIGH
Local 		systeminformation
apache 		systeminformation
cordova 		The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation b… CWE-78
OS Command  		CVE-2021-21315 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
195678 8.1 HIGH
Network 		dell emc_avamar_server
emc_integrated_data_protection_appliance 		Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain un… NVD-CWE-Other
CVE-2021-21511 2024-11-21 14:48 2021-02-16 Show GitHub Exploit DB Packet Storm
195679 7.5 HIGH
Network 		php
debian
netapp
oracle 		php
debian_linux
clustered_data_ontap
communications_diameter_signaling_router 		In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a respo… CWE-476
 NULL Pointer Dereference 		CVE-2021-21702 2024-11-21 14:48 2021-02-15 Show GitHub Exploit DB Packet Storm
195680 9.8 CRITICAL
Network 		dell emc_powerscale_onefs Dell PowerScale OneFS versions 8.1.0 – 9.1.0 contain a "use of SSH key past account expiration" vulnerability. A user on the network with the ISI_PRIV_AUTH_SSH RBAC privilege that has an expired acco… CWE-287
Improper Authentication 		CVE-2021-21502 2024-11-21 14:48 2021-02-10 Show GitHub Exploit DB Packet Storm