Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229221 6.8 警告 trixbox - Fonality trixbox CE の user/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6825 2012-12-20 19:10 2009-06-5 Show GitHub Exploit DB Packet Storm
229222 4.3 警告 XOOPS - XOOPS の pmlite.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6885 2012-12-20 19:10 2008-12-7 Show GitHub Exploit DB Packet Storm
229223 6.8 警告 XOOPS - XOOPS におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6884 2012-12-20 19:10 2008-12-7 Show GitHub Exploit DB Packet Storm
229224 4.3 警告 シマンテック - Symantec Altiris Deployment Solution における権限を取得される脆弱性 CWE-310
暗号の問題 		CVE-2008-6828 2012-12-20 19:10 2008-10-20 Show GitHub Exploit DB Packet Storm
229225 6.8 警告 シマンテック - Symantec Altiris Deployment Solution の ListView コントロールにおけるシステム権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6827 2012-12-20 19:10 2008-10-20 Show GitHub Exploit DB Packet Storm
229226 7.5 危険 surat kabar - phpWebNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6813 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
229227 7.5 危険 surat kabar - phpWebNews の bukutamu.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6812 2012-12-20 19:10 2009-05-22 Show GitHub Exploit DB Packet Storm
229228 7.5 危険 scripts-for-sites - SFS EZ Link Directory の links.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6808 2012-12-20 19:10 2009-05-12 Show GitHub Exploit DB Packet Storm
229229 7.5 危険 yigit aybuga - Yigit Aybuga Dizi Portali の diziler.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6803 2012-12-20 19:10 2009-05-11 Show GitHub Exploit DB Packet Storm
229230 7.5 危険 phpexplorer - phPhotoGallery の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6802 2012-12-20 19:10 2009-05-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195321 7.8 HIGH
Local 		microsoft high_efficiency_video_coding HEVC Video Extensions Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2021-24089 2024-11-21 14:52 2021-03-12 Show GitHub Exploit DB Packet Storm
195322 9.8 CRITICAL
Network 		facebook gameroom The fbgames protocol handler registered as part of Facebook Gameroom does not properly quote arguments passed to the executable. That allows a malicious URL to cause code execution. This issue affect… CWE-88
Argument Injection 		CVE-2021-24030 2024-11-21 14:52 2021-03-11 Show GitHub Exploit DB Packet Storm
195323 9.8 CRITICAL
Network 		facebook hhvm Due to incorrect string size calculations inside the preg_quote function, a large input string passed to the function can trigger an integer overflow leading to a heap overflow. This issue affects HH… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-24025 2024-11-21 14:52 2021-03-11 Show GitHub Exploit DB Packet Storm
195324 5.6 MEDIUM
Network 		facebook react-dev-utils react-dev-utils prior to v11.0.4 exposes a function, getProcessForPort, where an input argument is concatenated into a command string to be executed. This function is typically used from react-script… CWE-78
OS Command  		CVE-2021-24033 2024-11-21 14:52 2021-03-9 Show GitHub Exploit DB Packet Storm
195325 4.7 MEDIUM
Local 		facebook zstandard Beginning in v1.4.1 and prior to v1.4.9, due to an incomplete fix for CVE-2021-24031, the Zstandard command-line utility created output files with default permissions and restricted those permissions… CWE-276
Incorrect Default Permissions  		CVE-2021-24032 2024-11-21 14:52 2021-03-5 Show GitHub Exploit DB Packet Storm
195326 5.5 MEDIUM
Local 		facebook zstandard In the Zstandard command-line utility prior to v1.4.1, output files were created with default permissions. Correct file permissions (matching the input) would only be set at completion time. Output f… CWE-276
Incorrect Default Permissions  		CVE-2021-24031 2024-11-21 14:52 2021-03-5 Show GitHub Exploit DB Packet Storm
195327 8.8 HIGH
Network 		mozilla firefox Mozilla developers reported memory safety bugs present in Firefox 85. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl… CWE-787
 Out-of-bounds Write 		CVE-2021-23979 2024-11-21 14:52 2021-02-27 Show GitHub Exploit DB Packet Storm
195328 8.8 HIGH
Network 		mozilla
debian 		firefox
firefox_esr
thunderbird
debian_linux 		Mozilla developers reported memory safety bugs present in Firefox 85 and Firefox ESR 78.7. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2021-23978 2024-11-21 14:52 2021-02-27 Show GitHub Exploit DB Packet Storm
195329 8.8 HIGH
Network 		mozilla firefox Mozilla developers reported memory safety bugs present in Firefox 84. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these could have been expl… CWE-787
 Out-of-bounds Write 		CVE-2021-23965 2024-11-21 14:52 2021-02-27 Show GitHub Exploit DB Packet Storm
195330 8.8 HIGH
Network 		mozilla firefox
firefox_esr
thunderbird 		Mozilla developers reported memory safety bugs present in Firefox 84 and Firefox ESR 78.6. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of these… CWE-787
 Out-of-bounds Write 		CVE-2021-23964 2024-11-21 14:52 2021-02-27 Show GitHub Exploit DB Packet Storm