Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230341	7.5	危険	サン・マイクロシステムズ	-	Sun Java ASP Server の Admin Server における任意の新規ファイルにアペンドされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-2401	2012-12-20 18:52	2008-06-3	Show	GitHub Exploit DB Packet Storm

230342	7.2	危険	stunnel	-	stunnel における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-2400	2012-12-20 18:52	2008-05-22	Show	GitHub Exploit DB Packet Storm

230343	7.5	危険	wajox software	-	Wajox Software microSSys CMS の index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2396	2012-12-20 18:52	2008-05-21	Show	GitHub Exploit DB Packet Storm

230344	7.5	危険	tagworx	-	TAGWORX.CMS における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2394	2012-12-20 18:52	2008-05-21	Show	GitHub Exploit DB Packet Storm

230345	9	危険	WordPress.org	-	WordPress における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2392	2012-12-20 18:52	2008-05-21	Show	GitHub Exploit DB Packet Storm

230346	6.4	警告	レッドハット	-	Red Hat Network Satellite Server の manzier.pxt における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-2369	2012-12-20 18:52	2008-08-13	Show	GitHub Exploit DB Packet Storm

230347	6.8	警告	wr-script	-	WR-Meeting の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2355	2012-12-20 18:52	2008-05-20	Show	GitHub Exploit DB Packet Storm

230348	5	警告	testmaker	-	testMaker のデータエクスポート関数におけるデータをエキスポートするアクセス権を取得される脆弱性	CWE-noinfo 情報不足	CVE-2008-2354	2012-12-20 18:52	2008-05-20	Show	GitHub Exploit DB Packet Storm

230349	6.8	警告	smeego	-	Smeego の index.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2352	2012-12-20 18:52	2008-05-20	Show	GitHub Exploit DB Packet Storm

230350	7.5	危険	WebManager Pro	-	CMS WebManager-Pro の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2351	2012-12-20 18:52	2008-05-20	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196371	5.4	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used.	CWE-79 Cross-site Scripting	CVE-2021-22199	2024-11-21 14:49	2021-04-23	Show	GitHub Exploit DB Packet Storm

196372	7.8	HIGH Local	vmware	nsx-t_data_center	VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based access control) role assignment. Successful exploitation of this issue may allow attackers with local …	CWE-269 Improper Privilege Management	CVE-2021-21981	2024-11-21 14:49	2021-04-20	Show	GitHub Exploit DB Packet Storm

196373	6.5	MEDIUM Network	gitlab	gitlab	A path traversal vulnerability via the GitLab Workhorse in all versions of GitLab could result in the leakage of a JWT token	CWE-22 Path Traversal	CVE-2021-22190	2024-11-21 14:49	2021-04-13	Show	GitHub Exploit DB Packet Storm

196374	6.5	MEDIUM Network	cloudfoundry	capi-release cf-deployment	Cloud Controller API versions prior to 1.106.0 logs service broker credentials if the default value of db logging config field is changed. CAPI database logs service broker password in plain text whe…	CWE-522 Insufficiently Protected Credentials	CVE-2021-22115	2024-11-21 14:49	2021-04-9	Show	GitHub Exploit DB Packet Storm

196375	6.5	MEDIUM Network	huawei	ips_module_firmware ngfw_module_firmware secospace_usg6300_firmware secospace_usg6500_firmware secospace_usg6600_firmware usg9500_firmware nip6300_firmware nip6600_firmware ni…	There is a memory leak vulnerability in some Huawei products. An authenticated remote attacker may exploit this vulnerability by sending specific message to the affected product. Due to not release t…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-22312	2024-11-21 14:49	2021-04-9	Show	GitHub Exploit DB Packet Storm

196376	7.2	HIGH Network	proofpoint	insider_threat_management	The Proofpoint Insider Threat Management Server (formerly ObserveIT Server) is vulnerable to XML external entity (XXE) injection in the Web Console. The vulnerability requires admin user privileges a…	CWE-611 XXE	CVE-2021-22158	2024-11-21 14:49	2021-04-7	Show	GitHub Exploit DB Packet Storm

196377	6.1	MEDIUM Network	proofpoint	insider_threat_management	Proofpoint Insider Threat Management Server (formerly ObserveIT Server) before 7.11.1 allows stored XSS.	CWE-79 Cross-site Scripting	CVE-2021-22157	2024-11-21 14:49	2021-04-7	Show	GitHub Exploit DB Packet Storm

196378	9.8	CRITICAL Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.7.9 before 13.8.7, all versions starting from 13.9 before 13.9.5, and all versions starting from 13.10 before 13.1…	NVD-CWE-noinfo	CVE-2021-22203	2024-11-21 14:49	2021-04-3	Show	GitHub Exploit DB Packet Storm

196379	4.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all previous versions. If the victim is an admin, it was possible to issue a CSRF in System hooks through the API.	CWE-352 Origin Validation Error	CVE-2021-22202	2024-11-21 14:49	2021-04-3	Show	GitHub Exploit DB Packet Storm

196380	6.5	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.9. A specially crafted import file could read files on the server.	NVD-CWE-noinfo	CVE-2021-22201	2024-11-21 14:49	2021-04-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed