Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 9, 2026, 10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230671 | 7.5 | 危険 | uniwin | - | Uniwin eCart Professional における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4746 | 2012-12-20 18:52 | 2008-10-27 | Show | GitHub Exploit DB Packet Storm |
| 230672 | 4.3 | 警告 | uniwin | - | Uniwin eCart Professional の emailFriend.asp におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4745 | 2012-12-20 18:52 | 2008-10-27 | Show | GitHub Exploit DB Packet Storm |
| 230673 | 7.5 | 危険 | quidascript | - | QuidaScript FAQ Management Script の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4743 | 2012-12-20 18:52 | 2008-10-27 | Show | GitHub Exploit DB Packet Storm |
| 230674 | 4.3 | 警告 | timetrex | - | TimeTrex の interface/Login.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4742 | 2012-12-20 18:52 | 2008-10-27 | Show | GitHub Exploit DB Packet Storm |
| 230675 | 5.1 | 警告 | tinycms | - | TinyCMS 内の ZZ_Templater モジュール内におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-4740 | 2012-12-20 18:52 | 2008-10-27 | Show | GitHub Exploit DB Packet Storm |
| 230676 | 6.8 | 警告 | plugspace | - | PlugSpace の index.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2008-4739 | 2012-12-20 18:52 | 2008-10-24 | Show | GitHub Exploit DB Packet Storm |
| 230677 | 7.5 | 危険 | tufat | - | MyCard の gallery.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4738 | 2012-12-20 18:52 | 2008-10-24 | Show | GitHub Exploit DB Packet Storm |
| 230678 | 7.5 | 危険 | pressography | - | WordPress 用の WP Comment Remix プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2008-4734 | 2012-12-20 18:52 | 2008-10-24 | Show | GitHub Exploit DB Packet Storm |
| 230679 | 4.3 | 警告 | pressography | - | WordPress 用の WP Comment Remix プラグインにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2008-4733 | 2012-12-20 18:52 | 2008-10-24 | Show | GitHub Exploit DB Packet Storm |
| 230680 | 7.5 | 危険 | pressography | - | WordPress 用の WP Comment Remix プラグインにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-4732 | 2012-12-20 18:52 | 2008-10-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196681 | 5.3 |
MEDIUM
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24071 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196682 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2021-24070 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196683 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24069 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196684 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps |
Microsoft Excel Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24068 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196685 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2021-24067 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196686 | 8.8 |
HIGH
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Remote Code Execution Vulnerability |
CWE-502
Deserialization of Untrusted Data |
CVE-2021-24066 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196687 | 9.8 |
CRITICAL
Network |
botan_project | botan | In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex). |
NVD-CWE-noinfo
|
CVE-2021-24115 | 2024-11-21 14:52 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 196688 | 8.8 |
HIGH
Network |
mcafee | web_gateway | Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance… |
NVD-CWE-Other
|
CVE-2021-23885 | 2024-11-21 14:52 | 2021-02-17 | Show | GitHub Exploit DB Packet Storm |
| 196689 | 9.1 |
CRITICAL
Network |
apache netapp |
nutch snap_creator_framework |
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web se… |
CWE-611
XXE |
CVE-2021-23901 | 2024-11-21 14:52 | 2021-01-25 | Show | GitHub Exploit DB Packet Storm |
| 196690 | 9.1 |
CRITICAL
Network |
apache netapp debian oracle |
xmlbeans snap_creator_framework snapmanager oncommand_unified_manager_core_package debian_linux peoplesoft_enterprise_peopletools middleware_common_libraries_and_tools |
The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion att… |
CWE-776
XML Entity Expansion |
CVE-2021-23926 | 2024-11-21 14:52 | 2021-01-15 | Show | GitHub Exploit DB Packet Storm |