Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230151 5 警告 ソフォス - Linux および Unix 上で稼動している Sophos ウィルス検出エンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2008-3177 2012-12-20 18:52 2008-07-15 Show GitHub Exploit DB Packet Storm
230152 6.8 警告 regretless - DodosMail の dodosmail.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3163 2012-12-20 18:52 2008-07-14 Show GitHub Exploit DB Packet Storm
230153 7.5 危険 webblizzard - WebBlizzard CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3154 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230154 7.5 危険 tritoncms - Triton CMS Pro における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3153 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230155 7.5 危険 warpspeed
PHPNUKE		 - PHP-Nuke 用の 4ndvddb モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3151 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230156 4.7 警告 wefi - WeFi における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3147 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230157 7.8 危険 secretwars - Soldner Secret Wars におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-3135 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230158 6.8 警告 Powie - pSys の chatbox.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3131 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230159 4.3 警告 Simple Machines - OpenCart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3130 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230160 5 警告 pivot - Pivot の search.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3128 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196131 6.5 MEDIUM
Network 		vmware vcenter_server
cloud_foundation 		The vCenter Server contains a denial-of-service vulnerability due to improper XML entity parsing. A malicious actor with non-administrative user access to the vCenter Server vSphere Client (HTML5) or… NVD-CWE-noinfo
CVE-2021-21992 2024-11-21 14:49 2021-09-23 Show GitHub Exploit DB Packet Storm
196132 7.8 HIGH
Local 		vmware vcenter_server
cloud_foundation 		The vCenter Server contains a local privilege escalation vulnerability due to the way it handles session tokens. A malicious actor with non-administrative user access on vCenter Server host may explo… NVD-CWE-noinfo
CVE-2021-21991 2024-11-21 14:49 2021-09-23 Show GitHub Exploit DB Packet Storm
196133 8.8 HIGH
Network 		elastic enterprise_search Elastic Enterprise Search App Search versions before 7.14.0 are vulnerable to an issue where API keys were missing authorization via an alternate route. Using this vulnerability, an authenticated att… CWE-862
 Missing Authorization 		CVE-2021-22149 2024-11-21 14:49 2021-09-15 Show GitHub Exploit DB Packet Storm
196134 8.8 HIGH
Network 		elastic enterprise_search Elastic Enterprise Search App Search versions before 7.14.0 was vulnerable to an issue where API keys were not bound to the same engines as their creator. This could lead to a less privileged user ga… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-22148 2024-11-21 14:49 2021-09-15 Show GitHub Exploit DB Packet Storm
196135 6.5 MEDIUM
Network 		elastic elasticsearch Elasticsearch before 7.14.0 did not apply document and field level security to searchable snapshots. This could lead to an authenticated user gaining access to information that they are unauthorized … CWE-862
 Missing Authorization 		CVE-2021-22147 2024-11-21 14:49 2021-09-15 Show GitHub Exploit DB Packet Storm
196136 4.3 MEDIUM
Network 		gitlab gitlab An unauthorized user was able to insert metadata when creating new issue on GitLab CE/EE 14.0 and later. CWE-863
 Incorrect Authorization 		CVE-2021-22239 2024-11-21 14:49 2021-09-10 Show GitHub Exploit DB Packet Storm
196137 8.8 HIGH
Network 		ribbonsoft
fedoraproject
debian 		dxflib
extra_packages_for_enterprise_linux
fedora
debian_linux 		A code execution vulnerability exists in the DL_Dxf::handleLWPolylineData functionality of Ribbonsoft dxflib 3.17.0. A specially-crafted .dxf file can lead to a heap buffer overflow. An attacker can … - CVE-2021-21897 2024-11-21 14:49 2021-09-9 Show GitHub Exploit DB Packet Storm
196138 6.4 MEDIUM
Local 		saltstack
fedoraproject 		salt
fedora 		An issue was discovered in SaltStack Salt before 3003.3. The salt minion installer will accept and use a minion config file at C:\salt\conf if that file is in place before the installer is run. This … CWE-362
Race Condition 		CVE-2021-22004 2024-11-21 14:49 2021-09-9 Show GitHub Exploit DB Packet Storm
196139 7.5 HIGH
Network 		saltstack
fedoraproject
debian 		salt
fedora
debian_linux 		An issue was discovered in SaltStack Salt before 3003.3. A user who has control of the source, and source_hash URLs can gain full file system access as root on a salt minion. NVD-CWE-noinfo
CVE-2021-21996 2024-11-21 14:49 2021-09-9 Show GitHub Exploit DB Packet Storm
196140 7.5 HIGH
Network 		vmware identity_manager
workspace_one_access
cloud_foundation
vrealize_suite_lifecycle_manager 		VMware Workspace ONE Access and Identity Manager, unintentionally provide a login interface on port 7443. A malicious actor with network access to port 7443 may attempt user enumeration or brute forc… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-22003 2024-11-21 14:49 2021-09-1 Show GitHub Exploit DB Packet Storm