Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230211	7.5	危険	researchguide	-	ResearchGuide の guide.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2964	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

230212	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2960	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

230213	5.8	警告	Edgewall Software	-	Trac の検索スクリプトにおけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2008-2951	2012-12-20 18:52	2008-07-27	Show	GitHub Exploit DB Packet Storm

230214	7.5	危険	freedesktop.org	-	Poppler の libpoppler における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-2950	2012-12-20 18:52	2008-07-7	Show	GitHub Exploit DB Packet Storm

230215	7.5	危険	サン・マイクロシステムズ	-	Sun Java System Access Manager および Sun Java System Identity Server における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2945	2012-12-20 18:52	2008-06-26	Show	GitHub Exploit DB Packet Storm

230216	4.9	警告	レッドハット	-	RHEL などの Linux kernel の utrace サポートにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2008-2944	2012-12-20 18:52	2008-06-2	Show	GitHub Exploit DB Packet Storm

230217	7.5	危険	レッドハット	-	Red Hat adminutil におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2932	2012-12-20 18:52	2008-09-10	Show	GitHub Exploit DB Packet Storm

230218	7.5	危険	Wafer	-	Webmatic における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2925	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

230219	4.3	警告	Wafer	-	Webmatic におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2924	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

230220	7.5	危険	t0pp8uzz	-	artegic Dana IRC クライアントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2922	2012-12-20 18:52	2008-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196291	7.2	HIGH Network	prisma	prisma	Prisma is an open source ORM for Node.js & TypeScript. As of today, we are not aware of any Prisma users or external consumers of the `@prisma/sdk` package who are affected by this security vulnerabi…	-	CVE-2021-21414	2024-11-21 14:48	2021-04-29	Show	GitHub Exploit DB Packet Storm

196292	6.5	MEDIUM Network	ckeditor	ckeditor5-widget ckeditor5-paste-from-office ckeditor5-media-embed ckeditor5-markdown-gfm ckeditor5-list ckeditor5-image ckeditor5-font ckeditor5-engine	CKEditor 5 provides a WYSIWYG editing solution. This CVE affects the following npm packages: ckeditor5-engine, ckeditor5-font, ckeditor5-image, ckeditor5-list, ckeditor5-markdown-gfm, ckeditor5-media…	-	CVE-2021-21391	2024-11-21 14:48	2021-04-29	Show	GitHub Exploit DB Packet Storm

196293	3.3	LOW Local	openapi-generator	openapi_generator	OpenAPI Generator allows generation of API client libraries, server stubs, documentation and configuration automatically given an OpenAPI Spec. Using `File.createTempFile` in JDK will result in creat…	-	CVE-2021-21429	2024-11-21 14:48	2021-04-28	Show	GitHub Exploit DB Packet Storm

196294	5.4	MEDIUM Network	typo3	typo3	Bootstrap Package is a theme for TYPO3. It has been discovered that rendering content in the website frontend is vulnerable to cross-site scripting. A valid backend user account is needed to exploit …	-	CVE-2021-21365	2024-11-21 14:48	2021-04-28	Show	GitHub Exploit DB Packet Storm

196295	7.2	HIGH Network	openmage	magento	Magento-lts is a long-term support alternative to Magento Community Edition (CE). A vulnerability in magento-lts versions before 19.4.13 and 20.0.9 potentially allows an administrator unauthorized ac…	-	CVE-2021-21427	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm

196296	9.8	CRITICAL Network	openmage	magento	Magento-lts is a long-term support alternative to Magento Community Edition (CE). In magento-lts versions 19.4.12 and prior and 20.0.8 and prior, there is a vulnerability caused by the unsecured dese…	-	CVE-2021-21426	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm

196297	4.3	MEDIUM Network	jenkins	cloudbees_cd	Jenkins CloudBees CD Plugin 1.1.21 and earlier does not perform a permission check in an HTTP endpoint, allowing attackers with Item/Read permission to schedule builds of projects without having Item…	-	CVE-2021-21647	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm

196298	8.8	HIGH Network	jenkins	templating_engine	Jenkins Templating Engine Plugin 2.1 and earlier does not protect its pipeline configurations using Script Security Plugin, allowing attackers with Job/Configure permission to execute arbitrary code …	-	CVE-2021-21646	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm

196299	4.3	MEDIUM Network	jenkins	config_file_provider	Jenkins Config File Provider Plugin 3.7.0 and earlier does not perform permission checks in several HTTP endpoints, attackers with Overall/Read permission to enumerate configuration file IDs.	-	CVE-2021-21645	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm

196300	5.4	MEDIUM Network	jenkins	config_file_provider	A cross-site request forgery (CSRF) vulnerability in Jenkins Config File Provider Plugin 3.7.0 and earlier allows attackers to delete configuration files corresponding to an attacker-specified ID.	CWE-352 Origin Validation Error	CVE-2021-21644	2024-11-21 14:48	2021-04-22	Show	GitHub Exploit DB Packet Storm