Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
229251 6.8 警告 viart - ViArt Shop の cart_save.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-6758 2012-12-20 19:10 2009-04-28 Show GitHub Exploit DB Packet Storm
229252 4.3 警告 viart - ViArt Shop の manuals_search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-6757 2012-12-20 19:10 2009-04-28 Show GitHub Exploit DB Packet Storm
229253 5 警告 Canonical - Ubuntu の system-tools-backends におけるパスワードの総当たり攻撃を実行される脆弱性 CWE-310
暗号の問題 		CVE-2008-6792 2012-12-20 19:10 2008-11-5 Show GitHub Exploit DB Packet Storm
229254 5 警告 ZoneMinder - Fedora 上で稼動する ZoneMinder における /etc/zm.conf を変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-6755 2012-12-20 19:10 2009-01-7 Show GitHub Exploit DB Packet Storm
229255 7.5 危険 revou - ReVou Micro Blogging 用の TClone プラグインにおける管理者のパスワードを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6752 2012-12-20 19:10 2009-04-24 Show GitHub Exploit DB Packet Storm
229256 6.8 警告 revou - ReVou Micro Blogging 用の TClone プラグインにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-6751 2012-12-20 19:10 2009-04-24 Show GitHub Exploit DB Packet Storm
229257 7.5 危険 shock-therapy - RSMScript における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-6743 2012-12-20 19:10 2009-04-22 Show GitHub Exploit DB Packet Storm
229258 7.5 危険 Simple Machines - SMF の Load.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-6741 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
229259 7.5 危険 toddwoolums - Todd Woolums ASP Download 管理スクリプトにおける管理者権限を取得される脆弱性 CWE-287
不適切な認証 		CVE-2008-6739 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
229260 5.8 警告 thaiquickcart - ThaiQuickCart の qc/index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-6735 2012-12-20 19:10 2009-04-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195411 7.5 HIGH
Network 		odoo odoo Improper access control in reporting engine of Odoo Community 14.0 through 15.0, and Odoo Enterprise 14.0 through 15.0, allows remote attackers to download PDF reports for arbitrary documents, via cr… NVD-CWE-Other
CVE-2021-23203 2024-11-21 14:51 2023-04-26 Show GitHub Exploit DB Packet Storm
195412 8.7 HIGH
Network 		odoo odoo A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to access and modify database contents of other tenants, in a multi-tena… NVD-CWE-noinfo
CVE-2021-23186 2024-11-21 14:51 2023-04-26 Show GitHub Exploit DB Packet Storm
195413 7.5 HIGH
Network 		odoo odoo Improper access control in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows attackers to validate online payments with a tokenized payment method that belongs to another us… NVD-CWE-noinfo
CVE-2021-23178 2024-11-21 14:51 2023-04-26 Show GitHub Exploit DB Packet Storm
195414 6.5 MEDIUM
Network 		odoo odoo Improper access control in reporting engine of l10n_fr_fec module in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows remote authenticated users to extract accounting infor… NVD-CWE-noinfo
CVE-2021-23176 2024-11-21 14:51 2023-04-26 Show GitHub Exploit DB Packet Storm
195415 8.7 HIGH
Network 		odoo odoo A sandboxing issue in Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier allows authenticated administrators to read and write local files on the server. NVD-CWE-noinfo
CVE-2021-23166 2024-11-21 14:51 2023-04-26 Show GitHub Exploit DB Packet Storm
195416 5.5 MEDIUM
Local 		sox_project sox A floating point exception (divide-by-zero) issue was discovered in SoX in functon read_samples() of voc.c file. An attacker with a crafted file, could cause an application to crash. - CVE-2021-23210 2024-11-21 14:51 2022-08-26 Show GitHub Exploit DB Packet Storm
195417 5.5 MEDIUM
Local 		sox_project sox A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function startread() in hcom.c file. The vulnerability is exploitable with a crafted hcomn file, that could cause an applicati… - CVE-2021-23172 2024-11-21 14:51 2022-08-26 Show GitHub Exploit DB Packet Storm
195418 5.5 MEDIUM
Local 		sox_project sox A vulnerability was found in SoX, where a heap-buffer-overflow occurs in function lsx_read_w_buf() in formats_i.c file. The vulnerability is exploitable with a crafted file, that could cause an appli… - CVE-2021-23159 2024-11-21 14:51 2022-08-26 Show GitHub Exploit DB Packet Storm
195419 7.8 HIGH
Local 		libarchive
fedoraproject
redhat
debian 		libarchive
fedora
enterprise_linux
enterprise_linux_for_power_little_endian
enterprise_linux_for_ibm_z_systems
enterprise_linux_server_for_power_little_endian_update_services_for_sap_s… 		An improper link resolution flaw while extracting an archive can lead to changing the access control list (ACL) of the target of the link. An attacker may provide a malicious archive to a victim user… - CVE-2021-23177 2024-11-21 14:51 2022-08-24 Show GitHub Exploit DB Packet Storm
195420 7.8 HIGH
Local 		intel killer_wi-fi_6e_ax1690_firmware
killer_wi-fi_6e_ax1675_firmware
proset_wi-fi_6e_ax210_firmware
wi-fi_6e_ax211_firmware
wi-fi_6e_ax411_firmware 		Improper initialization for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable escalation of privilege via local access. CWE-665
 Improper Initialization 		CVE-2021-23223 2024-11-21 14:51 2022-08-19 Show GitHub Exploit DB Packet Storm