Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230151 5 警告 ソフォス - Linux および Unix 上で稼動している Sophos ウィルス検出エンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-16
環境設定 		CVE-2008-3177 2012-12-20 18:52 2008-07-15 Show GitHub Exploit DB Packet Storm
230152 6.8 警告 regretless - DodosMail の dodosmail.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3163 2012-12-20 18:52 2008-07-14 Show GitHub Exploit DB Packet Storm
230153 7.5 危険 webblizzard - WebBlizzard CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3154 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230154 7.5 危険 tritoncms - Triton CMS Pro における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3153 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230155 7.5 危険 warpspeed
PHPNUKE		 - PHP-Nuke 用の 4ndvddb モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3151 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230156 4.7 警告 wefi - WeFi における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-3147 2012-12-20 18:52 2008-07-11 Show GitHub Exploit DB Packet Storm
230157 7.8 危険 secretwars - Soldner Secret Wars におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-3135 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230158 6.8 警告 Powie - pSys の chatbox.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-3131 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230159 4.3 警告 Simple Machines - OpenCart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3130 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
230160 5 警告 pivot - Pivot の search.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-3128 2012-12-20 18:52 2008-07-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196181 7.8 HIGH
Local 		criticalmanufacturing cncsoft-b CNCSoft-B Versions 1.0.0.3 and prior is vulnerable to an out-of-bounds write, which may allow an attacker to execute arbitrary code. CWE-787
 Out-of-bounds Write 		CVE-2021-22664 2024-11-21 14:50 2021-04-27 Show GitHub Exploit DB Packet Storm
196182 7.8 HIGH
Local 		criticalmanufacturing cncsoft-b CNCSoft-B Versions 1.0.0.3 and prior is vulnerable to an out-of-bounds read, which may allow an attacker to execute arbitrary code. - CVE-2021-22660 2024-11-21 14:50 2021-04-27 Show GitHub Exploit DB Packet Storm
196183 8.8 HIGH
Network 		advantech webaccess\/scada Incorrect permissions are set to default on the ‘Project Management’ page of WebAccess/SCADA portal of WebAccess/SCADA Versions 9.0.1 and prior, which may allow a low-privileged user to update an adm… - CVE-2021-22669 2024-11-21 14:50 2021-04-27 Show GitHub Exploit DB Packet Storm
196184 7.8 HIGH
Local 		hornerautomation cscape Cscape (All versions prior to 9.90 SP4) is configured by default to be installed for all users, which allows full permissions, including read/write access. This may allow unprivileged users to modify… NVD-CWE-Other
CVE-2021-22682 2024-11-21 14:50 2021-04-24 Show GitHub Exploit DB Packet Storm
196185 7.8 HIGH
Local 		hornerautomation cscape Cscape (All versions prior to 9.90 SP4) lacks proper validation of user-supplied data when parsing project files. This could lead to memory corruption. An attacker could leverage this vulnerability t… CWE-787
 Out-of-bounds Write 		CVE-2021-22678 2024-11-21 14:50 2021-04-24 Show GitHub Exploit DB Packet Storm
196186 10.0 CRITICAL
Network 		ivanti connect_secure Pulse Connect Secure 9.0R3/9.1R1 and higher is vulnerable to an authentication bypass vulnerability exposed by the Windows File Share Browser and Pulse Secure Collaboration features of Pulse Connect … CWE-416
 Use After Free 		CVE-2021-22893 2024-11-21 14:50 2021-04-24 Show GitHub Exploit DB Packet Storm
196187 6.1 MEDIUM
Network 		dart dart_software_development_kit Bad validation logic in the Dart SDK versions prior to 2.12.3 allow an attacker to use an XSS attack via DOM clobbering. The validation logic in dart:html for creating DOM nodes from text did not san… CWE-79
Cross-site Scripting 		CVE-2021-22540 2024-11-21 14:50 2021-04-23 Show GitHub Exploit DB Packet Storm
196188 7.8 HIGH
Local 		google bazel An attacker can place a crafted JSON config file into the project folder pointing to a custom executable. VScode-bazel allows the workspace path to lint *.bzl files to be set via this config file. As… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-22539 2024-11-21 14:50 2021-04-16 Show GitHub Exploit DB Packet Storm
196189 8.8 HIGH
Network 		nextcloud
fedoraproject 		desktop
fedora 		Nextcloud Desktop Client prior to 3.1.3 is vulnerable to resource injection by way of missing validation of URLs, allowing a malicious server to execute remote commands. User interaction is needed fo… CWE-74
Injection 		CVE-2021-22879 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm
196190 7.2 HIGH
Network 		schneider-electric c-bus_toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restor… - CVE-2021-22720 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm