Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
229981	4.3	警告	TYPO3 Association	-	TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2450	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229982	7.5	危険	wgcc	-	WGCC における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2446	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229983	4.3	警告	wgcc	-	WGCC の profile.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2445	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229984	7.5	危険	therealestatescript	-	The Real Estate Script の dpage.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2443	2012-12-20 18:52	2008-05-27	Show	GitHub Exploit DB Packet Storm

229985	5	警告	トレンドマイクロ	-	Trend Micro OfficeScan および Worry-Free Business Security クライアントの OfficeScanNT Listener サービスにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2439	2012-12-20 18:52	2008-09-26	Show	GitHub Exploit DB Packet Storm

229986	10	危険	トレンドマイクロ	-	Trend Micro OfficeScan および Client Server Messaging Security の cgiRecvFile.exe におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2437	2012-12-20 18:52	2008-09-12	Show	GitHub Exploit DB Packet Storm

229987	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2008-2435	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

229988	9.3	危険	トレンドマイクロ	-	Housecall_ActiveX.dll の Trend Micro HouseCall ActiveX コントロールにおけるクライアントシステム上へ任意のライブラリファイルをダウンロードされる脆弱性	CWE-94 コード・インジェクション	CVE-2008-2434	2012-12-20 18:52	2008-12-23	Show	GitHub Exploit DB Packet Storm

229989	7.5	危険	トレンドマイクロ	-	Trend Micro OfficeScan などの Web 管理コンソールにおけるセッションをハイジャックされる脆弱性	CWE-287 不適切な認証	CVE-2008-2433	2012-12-20 18:52	2008-08-20	Show	GitHub Exploit DB Packet Storm

229990	9.3	危険	VideoLAN	-	Windows 上で稼動する VLC Media Player の modules/demux/wav.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-2430	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196291	4.8	MEDIUM Network	racom	m\!dge_firmware	Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to conduct cross-site scripting attacks via the error handling functionality of web pages.	CWE-79 Cross-site Scripting	CVE-2021-20068	2024-11-21 14:45	2021-02-17	Show	GitHub Exploit DB Packet Storm

196292	5.3	MEDIUM Network	racom	m\!dge_firmware	Racom's MIDGE Firmware 4.4.40.105 contains an issue that allows attackers to view sensitive syslog events without authentication.	CWE-306 Missing Authentication for Critical Function	CVE-2021-20067	2024-11-21 14:45	2021-02-17	Show	GitHub Exploit DB Packet Storm

196293	5.6	MEDIUM Network	jsdom_project	jsdom	JSDom improperly allows the loading of local resources, which allows for local files to be manipulated by a malicious web page when script execution is enabled.	NVD-CWE-noinfo	CVE-2021-20066	2024-11-21 14:45	2021-02-17	Show	GitHub Exploit DB Packet Storm

196294	9.8	CRITICAL Network	sonicwall	sma_100_firmware sma_200_firmware sma_210_firmware sma_400_firmware sma_410_firmware sma_500v	A SQL-Injection vulnerability in the SonicWall SSLVPN SMA100 product allows a remote unauthenticated attacker to perform SQL query to access username password and other session related information. T…	CWE-89 SQL Injection	CVE-2021-20016	2024-11-21 14:45	2021-02-4	Show	GitHub Exploit DB Packet Storm

196295	5.0	MEDIUM Local	oracle	zfs_storage_appliance hyperion_infrastructure_technology enterprise_manager_ops_center	Vulnerability in the Oracle ZFS Storage Appliance Kit product of Oracle Systems (component: RAS subsystems). The supported version that is affected is 8.8. Difficult to exploit vulnerability allows h…	NVD-CWE-noinfo	CVE-2021-1999	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm

196296	3.8	LOW Network	oracle fedoraproject netapp	mysql fedora snapcenter oncommand_workflow_automation oncommand_insight active_iq_unified_manager	Vulnerability in the MySQL Server product of Oracle MySQL (component: Server: Optimizer). Supported versions that are affected are 8.0.20 and prior. Easily exploitable vulnerability allows high privi…	NVD-CWE-noinfo	CVE-2021-1998	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm

196297	8.1	HIGH Network	oracle	hospitality_reporting_and_analytics	Vulnerability in the Oracle Hospitality Reporting and Analytics product of Oracle Food and Beverage Applications (component: Report). The supported version that is affected is 9.1.0. Easily exploitab…	NVD-CWE-noinfo	CVE-2021-1997	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm

196298	2.4	LOW Network	oracle	weblogic_server hyperion_infrastructure_technology agile_engineering_data_management siebel_ui_framework	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…	NVD-CWE-noinfo	CVE-2021-1996	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm

196299	6.5	MEDIUM Network	oracle	weblogic_server	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…	NVD-CWE-noinfo	CVE-2021-1995	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm

196300	9.8	CRITICAL Network	oracle	weblogic_server enterprise_repository	Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulne…	NVD-CWE-noinfo	CVE-2021-1994	2024-11-21 14:45	2021-01-21	Show	GitHub Exploit DB Packet Storm