Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230621 5.1 警告 The phpMyAdmin Project - phpMyAdmin における SQL インジェクションおよびクロスサイトリクエストフォージェリ攻撃を実行される脆弱性 CWE-352
CWE-89
CVE-2008-1149 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230622 9.3 危険 synce - SynCE-dccm の vdccm の src/utils.cpp における任意のコマンドを実行される脆弱性 CWE-20
CWE-94
CVE-2008-1136 2012-12-20 18:34 2008-03-4 Show GitHub Exploit DB Packet Storm
230623 4.3 警告 xrms crm - XRMS CRM の admin/users/self.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1129 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230624 6.8 警告 phpmytourney - phpMyTourney の tourney/index.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1128 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230625 5 警告 podcast generator - Podcast Generator におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-1125 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230626 6.8 警告 podcast generator - Podcast Generator における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1124 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230627 6.8 警告 sitebuilder - SiteBuilder Elite における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-1123 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230628 9.3 危険 rising antivirus international - Rising Antivirus Online Scanner の Web Scan Object ActiveX コントロール における任意のコードを強制的にダウンロードされる脆弱性 CWE-DesignError
CVE-2008-1116 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230629 7.8 危険 Vocera - Cisco Unified Wireless IP Phone 7921 におけるハッシュされたパスワードを盗まれる脆弱性 CWE-200
情報漏えい 		CVE-2008-1113 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230630 6.8 警告 Xine - xine-lib の xineplug_dmx_asf.so プラグイン におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-1110 2012-12-20 18:34 2008-02-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196711 5.4 MEDIUM
Network 		cybozu remote_service_manager Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2021-20799 2024-11-21 14:47 2021-10-13 Show GitHub Exploit DB Packet Storm
196712 5.4 MEDIUM
Network 		cybozu remote_service_manager Cross-site scripting vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2021-20798 2024-11-21 14:47 2021-10-13 Show GitHub Exploit DB Packet Storm
196713 5.4 MEDIUM
Network 		cybozu remote_service_manager Cross-site script inclusion vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to obtain the information stored in the product. This issue oc… CWE-79
Cross-site Scripting 		CVE-2021-20797 2024-11-21 14:47 2021-10-13 Show GitHub Exploit DB Packet Storm
196714 6.5 MEDIUM
Network 		cybozu remote_service_manager Directory traversal vulnerability in the management screen of Cybozu Remote Service 3.1.8 allows a remote authenticated attacker to upload an arbitrary file via unspecified vectors. CWE-22
Path Traversal 		CVE-2021-20796 2024-11-21 14:47 2021-10-13 Show GitHub Exploit DB Packet Storm
196715 8.8 HIGH
Network 		cybozu remote_service_manager Cross-site request forgery (CSRF) vulnerability in the management screen of Cybozu Remote Service 3.1.8 to 3.1.9 allows a remote attacker to hijack the authentication of administrators and unintended… CWE-352
 Origin Validation Error 		CVE-2021-20795 2024-11-21 14:47 2021-10-13 Show GitHub Exploit DB Packet Storm
196716 3.3 LOW
Local 		adobe acrobat_dc
acrobat_reader_dc 		Acrobat Reader DC versions versions 2020.013.20074 (and earlier), 2020.001.30018 (and earlier) and 2017.011.30188 (and earlier) are affected by an out-of-bounds Read vulnerability. An unauthenticated… - CVE-2021-21089 2024-11-21 14:47 2021-10-1 Show GitHub Exploit DB Packet Storm
196717 6.1 MEDIUM
Network 		weseek growi Cross-site scripting vulnerability due to the inadequate tag sanitization in GROWI versions v4.2.19 and earlier allows remote attackers to execute an arbitrary script on the web browser of the user w… CWE-79
Cross-site Scripting 		CVE-2021-20829 2024-11-21 14:47 2021-09-21 Show GitHub Exploit DB Packet Storm
196718 6.1 MEDIUM
Network 		activefusions order_status_batch_change Cross-site scripting vulnerability in Order Status Batch Change Plug-in (for EC-CUBE 3.0 series) all versions allows a remote attacker to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2021-20828 2024-11-21 14:47 2021-09-17 Show GitHub Exploit DB Packet Storm
196719 6.1 MEDIUM
Network 		shiro8 list_\(order_management\)_item_change Cross-site scripting vulnerability in List (order management) item change plug-in (for EC-CUBE 3.0 series) Ver.1.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified v… CWE-79
Cross-site Scripting 		CVE-2021-20825 2024-11-21 14:47 2021-09-17 Show GitHub Exploit DB Packet Storm
196720 9.3 CRITICAL
Network 		jscom revoworks_browser Improper access control vulnerability in RevoWorks Browser 2.1.230 and earlier allows an attacker to bypass access restriction and to exchange unauthorized files between the local environment and the… NVD-CWE-Other
CVE-2021-20791 2024-11-21 14:47 2021-09-17 Show GitHub Exploit DB Packet Storm