Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230391 2.6 注意 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-2140 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230392 6.5 警告 rPath, Inc - rPath Appliance Platform Agent の rootpw プラグインにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2139 2012-12-20 18:52 2008-04-25 Show GitHub Exploit DB Packet Storm
230393 7.5 危険 visualshapers - VisualShapers ezContents における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2135 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230394 6.8 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおける任意のユーザアカウントへのアクセス権を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2134 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230395 4.3 警告 tru-zone - Tru-Zone Nuke ET の Journal モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2133 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230396 7.5 危険 systementor - Systementor PostcardMentor の step1.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2132 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230397 4.3 警告 tux cms - Tux CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2126 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230398 4.3 警告 SAP - SAP ITS の WGate におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2123 2012-12-20 18:52 2008-05-9 Show GitHub Exploit DB Packet Storm
230399 7.5 危険 project alumni - Project Alumni の info.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2118 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
230400 4.3 警告 project alumni - Project Alumni の pages/news.page.inc におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2117 2012-12-20 18:52 2008-05-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196411 5.5 MEDIUM
Local 		smartbear swagger-codegen swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defi… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-21364 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196412 7.0 HIGH
Local 		smartbear swagger-codegen swagger-codegen is an open-source project which contains a template-driven engine to generate documentation, API clients and server stubs in different languages by parsing your OpenAPI / Swagger defi… - CVE-2021-21363 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196413 6.5 MEDIUM
Network 		teluu
debian 		pjsip
debian_linux 		PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earl… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-21375 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196414 8.6 HIGH
Local 		tenable jira_cloud Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerability data, then generate Jira Tasks and sub-tasks based on the vulnerabilities' current state. It published in py… - CVE-2021-21371 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196415 6.3 MEDIUM
Network 		linuxfoundation
fedoraproject 		containerd
fedora 		In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/cont… - CVE-2021-21334 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196416 8.1 HIGH
Network 		3mf
fedoraproject
debian 		lib3mf
fedora
debian_linux 		A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP() functionality of 3MF Consortium lib3mf 2.0.0. A specially crafted 3MF file can lead to code execution. An attacker ca… CWE-416
 Use After Free 		CVE-2021-21772 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196417 6.1 MEDIUM
Network 		sap netweaver_application_server_java SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allow an attacker to redirect users to a malicious site due to Re… CWE-601
Open Redirect 		CVE-2021-21491 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
196418 6.5 MEDIUM
Network 		linuxfoundation besu Hyperledger Besu is an open-source, MainNet compatible, Ethereum client written in Java. In Besu before version 1.5.1 there is a denial-of-service vulnerability involving the HTTP JSON-RPC API servic… - CVE-2021-21369 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
196419 3.3 LOW
Local 		sap 3d_visual_enterprise_viewer When a user opens manipulated Graphics Interchange Format (.GIF) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes tempora… NVD-CWE-noinfo
CVE-2021-21493 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
196420 6.5 MEDIUM
Network 		sap netweaver_knowledge_management Knowledge Management versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 allows a remote attacker with basic privileges to deserialize user-controlled data without verification, leading to insecure deseriali… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-21488 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm