Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230031 4.3 警告 TYPO3 Association - TYPO3 用の sr_feuser_register エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2274 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
230032 7.5 危険 phpway - PHPWAY Kostenloses Linkmanagementscript における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2270 2012-12-20 18:52 2008-05-16 Show GitHub Exploit DB Packet Storm
230033 7.5 危険 slashcode.com - Slash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2231 2012-12-20 18:52 2008-06-5 Show GitHub Exploit DB Packet Storm
230034 4.6 警告 reportbug-ng - reportbug および reportbug-ng における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2230 2012-12-20 18:52 2008-06-4 Show GitHub Exploit DB Packet Storm
230035 6.8 警告 PHP-Fusion - PHP-Fusion Forum Rank System におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2227 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230036 6.8 警告 sazcart - SazCart における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2224 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230037 7.5 危険 scorpnews - Thomas Gossmann ScorpNews の example.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2193 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230038 6.8 警告 postnuke software foundation - PostNuke 用の pnEncyclopedia モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2191 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230039 6.8 警告 romedchim international srl - Online Rent の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2190 2012-12-20 18:52 2008-05-14 Show GitHub Exploit DB Packet Storm
230040 4.3 警告 Toocharger - SMartBlog の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2185 2012-12-20 18:52 2008-05-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196341 4.3 MEDIUM
Network 		ibm sterling_b2b_integrator IBM Sterling File Gateway 2.2.0.0 through 6.1.1.0 could allow a remote authenticated user to cause a denial of another user's service due to insufficient permission checking. IBM X-Force ID: 195518. NVD-CWE-Other
CVE-2021-20372 2024-11-21 14:46 2021-10-8 Show GitHub Exploit DB Packet Storm
196342 7.8 HIGH
Local 		oracle openjdk An insecure modification flaw in the /etc/passwd file was found in the openjdk-1.8 and openjdk-11 containers. This flaw allows an attacker with access to the container to modify the /etc/passwd and e… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20264 2024-11-21 14:46 2021-10-7 Show GitHub Exploit DB Packet Storm
196343 9.8 CRITICAL
Network 		ibm cloud_pak_for_security IBM Cloud Pak for Security (CP4S) 1.7.0.0, 1.7.1.0, 1.7.2.0, and 1.8.0.0 could allow an attacker to perform unauthorized actions due to improper or missing authentication controls. IBM X-Force ID: 19… CWE-287
Improper Authentication 		CVE-2021-20578 2024-11-21 14:46 2021-10-1 Show GitHub Exploit DB Packet Storm
196344 6.1 MEDIUM
Network 		ibm sterling_order_management IBM Sterling Order Management 9.4, 9.5, and 10.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fun… CWE-79
Cross-site Scripting 		CVE-2021-20554 2024-11-21 14:46 2021-10-1 Show GitHub Exploit DB Packet Storm
196345 4.4 MEDIUM
Local 		linux
debian 		linux_kernel
debian_linux 		A flaw was found in the Linux kernel. A corrupted timer tree caused the task wakeup to be missing in the timerqueue_add function in lib/timerqueue.c. This flaw allows a local attacker with special us… - CVE-2021-20317 2024-11-21 14:46 2021-09-27 Show GitHub Exploit DB Packet Storm
196346 4.3 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote authenciated user to obtain sensitive information. By sending a specially crafted request, the user could disclose a valid filep… NVD-CWE-noinfo
CVE-2021-20563 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
196347 4.3 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 could allow a remote attacker to obtain sensitive information when a detailed technical error message is returned in the browser. This information co… CWE-209
Information Exposure Through an Error Message 		CVE-2021-20485 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
196348 5.4 MEDIUM
Network 		ibm sterling_file_gateway IBM Sterling File Gateway 2.2.0.0 through 6.1.0.3 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… CWE-79
Cross-site Scripting 		CVE-2021-20484 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
196349 5.5 MEDIUM
Local 		ibm security_verify_bridge IBM Security Verify Bridge 1.0.5.0 does not properly validate a certificate which could allow a local attacker to obtain sensitive information that could aid in further attacks against the system. IB… CWE-295
Improper Certificate Validation  		CVE-2021-20435 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm
196350 4.4 MEDIUM
Local 		ibm security_verify_bridge IBM Security Verify Bridge 1.0.5.0 stores user credentials in plain clear text which can be read by a local user. IBM X-Force ID: 196346. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20434 2024-11-21 14:46 2021-09-24 Show GitHub Exploit DB Packet Storm