Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230281 4.3 警告 realm project - Realm CMS の _db/compact.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2680 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230282 7.5 危険 realm project - Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2679 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230283 7.5 危険 telephone - Telephone Directory 2008 における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2678 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230284 4.3 警告 telephone - Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2677 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230285 4.3 警告 softcomplex - PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2675 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230286 7.5 危険 Powie - Powie pNews の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2673 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230287 7.5 危険 y-blog - yBlog における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2669 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
230288 4.3 警告 y-blog - yBlog におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2668 2012-12-20 18:52 2008-06-11 Show GitHub Exploit DB Packet Storm
230289 7.5 危険 smeweb - SMEWeb の catalog.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2652 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
230290 4.3 警告 smeweb - SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2644 2012-12-20 18:52 2008-06-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196191 8.8 HIGH
Network 		schneider-electric c-bus_toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when a file… - CVE-2021-22719 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm
196192 7.8 HIGH
Local 		schneider-electric c-bus_toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when restor… - CVE-2021-22718 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm
196193 8.8 HIGH
Network 		schneider-electric c-bus_toolkit A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists in C-Bus Toolkit (V1.15.7 and prior) that could allow a remote code execution when proces… - CVE-2021-22717 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm
196194 7.8 HIGH
Local 		schneider-electric c-bus_toolkit A CWE-732: Incorrect Permission Assignment for Critical Resource vulnerability exists that could allow remote code execution when an unprivileged user modifies a file. Affected Product: C-Bus Toolkit… - CVE-2021-22716 2024-11-21 14:50 2021-04-14 Show GitHub Exploit DB Packet Storm
196195 9.8 CRITICAL
Network 		microfocus operations_agent Escalation of privileges vulnerability in Micro Focus Operations Agent, affects versions 12.0x, 12.10, 12.11, 12.12, 12.14 and 12.15. The vulnerability could be exploited to escalate privileges and e… NVD-CWE-noinfo
CVE-2021-22505 2024-11-21 14:50 2021-04-13 Show GitHub Exploit DB Packet Storm
196196 7.2 HIGH
Network 		microfocus netiq_advanced_authentication Advanced Authentication versions prior to 6.3 SP4 have a potential broken authentication due to improper session management issue. CWE-287
Improper Authentication 		CVE-2021-22497 2024-11-21 14:50 2021-04-13 Show GitHub Exploit DB Packet Storm
196197 6.5 MEDIUM
Network 		microfocus application_automation_tools Missing Authorization vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could allow acce… CWE-862
 Missing Authorization 		CVE-2021-22513 2024-11-21 14:50 2021-04-9 Show GitHub Exploit DB Packet Storm
196198 6.5 MEDIUM
Network 		microfocus application_automation_tools Cross-Site Request Forgery (CSRF) vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability coul… CWE-352
 Origin Validation Error 		CVE-2021-22512 2024-11-21 14:50 2021-04-9 Show GitHub Exploit DB Packet Storm
196199 6.5 MEDIUM
Network 		microfocus application_automation_tools Improper Certificate Validation vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects version 6.7 and earlier versions. The vulnerability could … CWE-295
Improper Certificate Validation  		CVE-2021-22511 2024-11-21 14:50 2021-04-9 Show GitHub Exploit DB Packet Storm
196200 6.1 MEDIUM
Network 		microfocus application_automation_tools Reflected XSS vulnerability in Micro Focus Application Automation Tools Plugin - Jenkins plugin. The vulnerability affects all version 6.7 and earlier versions. CWE-79
Cross-site Scripting 		CVE-2021-22510 2024-11-21 14:50 2021-04-9 Show GitHub Exploit DB Packet Storm