Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
230651 6.4 警告 spyce - Spyce - PSP の spyce/examples/redirect.spy におけるオープンリダイレクトの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-0981 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
230652 4.3 警告 spyce - Spyce - PSP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0980 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
230653 4.3 警告 webgui - Plain Black WebGUI におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0940 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
230654 7.5 危険 WordPress.org - WordPress 用の WPPA プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0939 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
230655 7.5 危険 the sword project - The SWORD Project Diatheke の diatheke.pl における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-0932 2012-12-20 18:34 2008-02-25 Show GitHub Exploit DB Packet Storm
230656 6.3 警告 xwine - Debian GNU/Linux 上で稼動する XWine の w_export.c における任意のコマンドを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-0931 2012-12-20 18:34 2008-03-3 Show GitHub Exploit DB Packet Storm
230657 7.5 危険 PHPNUKE - PHP-Nuke 用の Manuales モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0922 2012-12-20 18:34 2008-02-22 Show GitHub Exploit DB Packet Storm
230658 4.3 警告 tendenci - Tendenci CMS の search.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0793 2012-12-20 18:34 2008-02-14 Show GitHub Exploit DB Packet Storm
230659 4.3 警告 Simple Machines - SMF Shoutbox の sboxDB.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-0775 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
230660 7.5 危険 site2nite - Site2Nite の default.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-0771 2012-12-20 18:34 2008-02-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196661 4.3 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver Application Server Java(HTTP Service), versions - 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, does not sufficiently validate logon group in URLs, resulting in a content spoofing vulnerabi… CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-21492 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196662 6.5 MEDIUM
Network 		sap netweaver_application_server_java An unauthorized attacker may be able to entice an administrator to invoke telnet commands of an SAP NetWeaver Application Server for Java that allow the attacker to gain NTLM hashes of a privileged u… NVD-CWE-noinfo
CVE-2021-21485 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196663 4.9 MEDIUM
Network 		sap solution_manager Under certain conditions SAP Solution Manager, version - 720, allows a high privileged attacker to get access to sensitive information which has a direct serious impact beyond the exploitable compone… NVD-CWE-noinfo
CVE-2021-21483 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196664 8.3 HIGH
Adjacent 		sap netweaver_master_data_management SAP NetWeaver Master Data Management, versions - 710, 710.750, allows a malicious unauthorized user with access to the MDM Server subnet to find the password using a brute force method. If successful… NVD-CWE-noinfo
CVE-2021-21482 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196665 8.1 HIGH
Network 		zte zxcloud_irai_firmware A CSRF vulnerability exists in the management page of a ZTE product.The vulnerability is caused because the management page does not fully verify whether the request comes from a trusted user. The at… CWE-352
 Origin Validation Error 		CVE-2021-21731 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196666 9.8 CRITICAL
Network 		zte zxhn_h168n_firmware A ZTE product is impacted by improper access control vulnerability. The attacker could exploit this vulnerability to access CLI by brute force attacks.This affects: ZXHN H168N V3.5.0_TY.T6 NVD-CWE-Other
CVE-2021-21730 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196667 6.5 MEDIUM
Network 		zte zxhn_h168n_firmware
zxhn_h108n_firmware 		Some ZTE products have CSRF vulnerability. Because some pages lack CSRF random value verification, attackers could perform illegal authorization operations by constructing messages.This affects: ZXHN… CWE-352
CWE-330
 Origin Validation Error
 Use of Insufficiently Random Values 		CVE-2021-21729 2024-11-21 14:48 2021-04-14 Show GitHub Exploit DB Packet Storm
196668 6.5 MEDIUM
Network 		matrix
fedoraproject 		synapse
fedora 		Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps… CWE-20
 Improper Input Validation  		CVE-2021-21393 2024-11-21 14:48 2021-04-13 Show GitHub Exploit DB Packet Storm
196669 6.3 MEDIUM
Network 		matrix
fedoraproject 		synapse
fedora 		Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 reques… CWE-601
Open Redirect 		CVE-2021-21392 2024-11-21 14:48 2021-04-13 Show GitHub Exploit DB Packet Storm
196670 7.8 HIGH
Local 		dell peripheral_manager Dell Peripheral Manager 1.3.1 or greater contains remediation for a local privilege escalation vulnerability that could be potentially exploited to gain arbitrary code execution on the system with pr… CWE-427
 Uncontrolled Search Path Element 		CVE-2021-21545 2024-11-21 14:48 2021-04-13 Show GitHub Exploit DB Packet Storm