Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230331	7.5	危険	phpautos	-	PHP Autos の searchresults.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4498	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

230332	7.5	危険	select development solutions	-	PHP Realtor の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4496	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

230333	7.5	危険	select development solutions	-	PHP Auto Dealer の view_cat.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4495	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

230334	7.5	危険	torrenttrader	-	TorrentTrader Classic の completed-advance.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4494	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

230335	7.5	危険	yourownbux	-	YourOwnBux の referrals.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4492	2012-12-20 18:52	2008-10-8	Show	GitHub Exploit DB Packet Storm

230336	10	危険	yerba	-	Yerba で使用される SACphp の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-4486	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

230337	6.9	警告	Sympa	-	sympa の sympa.pl における任意のファイルを上書きされる脆弱性	CWE-59 リンク解釈の問題	CVE-2008-4476	2012-12-20 18:52	2008-10-7	Show	GitHub Exploit DB Packet Storm

230338	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Freelance Zone の view_cresume.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4469	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

230339	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Share Zone の view_news.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4468	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

230340	7.5	危険	Vastal I-Tech & Co.	-	Vastal I-Tech Toner Cart の show_series_ink.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-4467	2012-12-20 18:52	2008-10-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195991	3.1	LOW Network	mozilla	firefox	A race condition with requestPointerLock() and setTimeout() could have resulted in a user interacting with one tab when they believed they were on a separate tab. In conjunction with certain elements…	CWE-362 Race Condition	CVE-2021-24000	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195992	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	If a Blob URL was loaded through some unusual user interaction, it could have been loaded by the System Principal and granted additional privileges that should not be granted to web content. This vul…	CWE-269 CWE-697 Improper Privilege Management Incorrect Comparison	CVE-2021-23999	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195993	6.5	MEDIUM Network	mozilla	thunderbird firefox firefox_esr	Through complicated navigations with new windows, an HTTP page could have inherited a secure lock icon from an HTTPS page. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Fir…	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-23998	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195994	8.8	HIGH Network	mozilla	firefox	Due to unexpected data type conversions, a use-after-free could have occurred when interacting with the font cache. We presume that with enough effort this could have been exploited to run arbitrary …	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-23997	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195995	6.5	MEDIUM Network	mozilla	firefox	By utilizing 3D CSS in conjunction with Javascript, content could have been rendered outside the webpage's viewport, resulting in a spoofing attack that could have been used for phishing or other att…	NVD-CWE-Other	CVE-2021-23996	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195996	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	When Responsive Design Mode was enabled, it used references to objects that were previously freed. We presume that with enough effort this could have been exploited to run arbitrary code. This vulner…	CWE-672 Operation on a Resource after Expiration or Release	CVE-2021-23995	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195997	8.8	HIGH Network	mozilla	thunderbird firefox firefox_esr	A WebGL framebuffer was not initialized early enough, resulting in memory corruption and an out of bound write. This vulnerability affects Firefox ESR < 78.10, Thunderbird < 78.10, and Firefox < 88.	CWE-909 Missing Initialization of Resource	CVE-2021-23994	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195998	6.5	MEDIUM Network	mozilla	thunderbird	An attacker may perform a DoS attack to prevent a user from sending encrypted email to a correspondent. If an attacker creates a crafted OpenPGP key with a subkey that has an invalid self signature, …	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23993	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

195999	4.3	MEDIUM Network	mozilla	thunderbird	Thunderbird did not check if the user ID associated with an OpenPGP key has a valid self signature. An attacker may create a crafted version of an OpenPGP key, by either replacing the original user I…	CWE-347 Improper Verification of Cryptographic Signature	CVE-2021-23992	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm

196000	6.8	MEDIUM Network	mozilla	thunderbird	If a Thunderbird user has previously imported Alice's OpenPGP key, and Alice has extended the validity period of her key, but Alice's updated key has not yet been imported, an attacker may send an em…	NVD-CWE-Other	CVE-2021-23991	2024-11-21 14:52	2021-06-24	Show	GitHub Exploit DB Packet Storm