Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230541 4.3 警告 Xerox - Xerox WorkCentre M123 などの組込み Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2825 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230542 10 危険 Xerox - Xerox WorkCentre 7655 などの Web Services における変更を設定される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2824 2012-12-20 18:52 2008-06-12 Show GitHub Exploit DB Packet Storm
230543 7.5 危険 phpeasynews - PHPeasyblog の newsarchive.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2823 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
230544 4.3 警告 shoutcastadmin - WallCity-Server Shoutcast Admin Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2814 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
230545 6.8 警告 shoutcastadmin - WallCity-Server Shoutcast Admin Panel の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2813 2012-12-20 18:52 2008-06-23 Show GitHub Exploit DB Packet Storm
230546 6.8 警告 シマンテック - Symantec Altiris Notification Server Agent の GUI における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2794 2012-12-20 18:52 2008-06-17 Show GitHub Exploit DB Packet Storm
230547 6.4 警告 Spamdyke - spamdyke の smtp_filter 関数におけるオープンメールリレーとしてサーバを使用される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2784 2012-12-20 18:52 2008-06-19 Show GitHub Exploit DB Packet Storm
230548 7.5 危険 revokesoft - RevokeBB の Search System における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2778 2012-12-20 18:52 2008-06-19 Show GitHub Exploit DB Packet Storm
230549 7.5 危険 phpraider - Simple Machines phpRaider の authentication/smf/smf.functions.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2769 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
230550 3.5 注意 xigla - Xigla Poll Manager XE の admin/search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2768 2012-12-20 18:52 2008-06-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 5, 2026, 4:11 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196201 4.8 MEDIUM
Network 		mcafee endpoint_security A stored cross site scripting vulnerability in ePO extension of McAfee Endpoint Security (ENS) prior to 10.7.0 February 2021 Update allows an ENS ePO administrator to add a script to a policy event w… CWE-79
Cross-site Scripting 		CVE-2021-23881 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196202 7.8 HIGH
Local 		mcafee total_protection Bypass Remote Procedure call in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file modification as the SYSTEM user potentially c… NVD-CWE-noinfo
CVE-2021-23876 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196203 7.8 HIGH
Local 		mcafee total_protection Arbitrary Process Execution vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and execute arbitrary code bypassing MTP self-defense. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-23874 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196204 6.1 MEDIUM
Local 		mcafee total_protection Privilege Escalation vulnerability in McAfee Total Protection (MTP) prior to 16.0.30 allows a local user to gain elevated privileges and perform arbitrary file deletion as the SYSTEM user potentially… CWE-59
Link Following 		CVE-2021-23873 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196205 4.4 MEDIUM
Local 		mcafee endpoint_security A Null Pointer Dereference vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local administrator to cause Windows to crash via a specific syste… CWE-476
 NULL Pointer Dereference 		CVE-2021-23883 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196206 4.4 MEDIUM
Local 		mcafee endpoint_security Improper Access Control vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows local administrators to prevent the installation of some ENS files by p… NVD-CWE-Other
CVE-2021-23882 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196207 4.4 MEDIUM
Local 		mcafee endpoint_security Improper Access Control in attribute in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows authenticated local administrator user to perform an uninstallation of t… NVD-CWE-Other
CVE-2021-23880 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196208 5.0 MEDIUM
Local 		mcafee endpoint_security Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local user to view ENS settings and cre… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-23878 2024-11-21 14:51 2021-02-10 Show GitHub Exploit DB Packet Storm
196209 6.3 MEDIUM
Network 		fusioncharts apexcharts The package apexcharts before 3.24.0 are vulnerable to Cross-site Scripting (XSS) via lack of sanitization of graph legend fields. CWE-79
Cross-site Scripting 		CVE-2021-23327 2024-11-21 14:51 2021-02-9 Show GitHub Exploit DB Packet Storm
196210 3.3 LOW
Local 		squareup connect_java_software_development_kit This affects all versions of package com.squareup:connect. The method prepareDownloadFilecreates creates a temporary file with the permissions bits of -rw-r--r-- on unix-like systems. On unix-like sy… NVD-CWE-noinfo
CVE-2021-23331 2024-11-21 14:51 2021-02-4 Show GitHub Exploit DB Packet Storm