Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230761	5	警告	seagullproject.org	-	Seagull の optimizer.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0465	2012-12-20 18:34	2008-01-25	Show	GitHub Exploit DB Packet Storm

230762	6.8	警告	slaed	-	SLAED CMS の function/sources.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0458	2012-12-20 18:34	2008-01-25	Show	GitHub Exploit DB Packet Storm

230763	10	危険	シマンテック	-	Symantec Backup Exec System Recovery Manager で使用される Symantec LiveState Apache Tomcat サーバで稼動している FileUpload クラスにおける任意の JSP ファイルをアップロードされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-0457	2012-12-20 18:34	2008-02-4	Show	GitHub Exploit DB Packet Storm

230764	5	警告	siteman	-	Siteman の articles.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-0452	2012-12-20 18:34	2008-01-24	Show	GitHub Exploit DB Packet Storm

230765	7.5	危険	rocksalt international	-	VP-ASP Shopping Cart の paypalresult.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0449	2012-12-20 18:34	2008-01-24	Show	GitHub Exploit DB Packet Storm

230766	7.5	危険	small axe solutions	-	Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0442	2012-12-20 18:34	2008-01-24	Show	GitHub Exploit DB Packet Storm

230767	6.8	警告	東芝	-	Toshiba Surveillance RecordSend ActiveX コントロールにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0399	2012-12-20 18:34	2008-01-23	Show	GitHub Exploit DB Packet Storm

230768	6.8	警告	WordPress.org	-	WordPress 用の WP-Forum プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0388	2012-12-20 18:34	2008-01-22	Show	GitHub Exploit DB Packet Storm

230769	7.5	危険	urulu	-	Urulu の server/widgetallocator.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0385	2012-12-20 18:34	2008-02-29	Show	GitHub Exploit DB Packet Storm

230770	6.8	警告	softpedia	-	Small Axe Weblog の inc/linkbar.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0376	2012-12-20 18:34	2008-01-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196811	4.3	MEDIUM Adjacent	buffalo	wsr-1166dhp4_firmware wsr-1166dhp3_firmware	Improper access control vulnerability in WSR-1166DHP3 firmware Ver.1.16 and prior and WSR-1166DHP4 firmware Ver.1.02 and prior allows an attacker to obtain configuration information via unspecified v…	NVD-CWE-Other	CVE-2021-20730	2024-11-21 14:47	2021-06-9	Show	GitHub Exploit DB Packet Storm

196812	5.3	MEDIUM Network	nttr	goo_blog	Improper access control vulnerability in goo blog App for Android ver.1.2.25 and earlier and for iOS ver.1.3.3 and earlier allows a remote attacker to lead a user to access an arbitrary website via t…	NVD-CWE-Other	CVE-2021-20728	2024-11-21 14:47	2021-06-9	Show	GitHub Exploit DB Packet Storm

196813	9.8	CRITICAL Network	sharp-nec-displays	un462a_firmware un462va_firmware un492s_firmware un492vs_firmware un552a_firmware un552s_firmware un552vs_firmware un552_firmware un552v_firmware ux552s_firmware ux552_f…	Sharp NEC Displays ((UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300 and prior to it, UN492VS R1.300 and prior to it, UN552A R1.300 and prior to it, UN552S R1.300 and pri…	CWE-77 CWE-120 Command Injection Classic Buffer Overflow	CVE-2021-20699	2024-11-21 14:47	2021-06-7	Show	GitHub Exploit DB Packet Storm

196814	9.8	CRITICAL Network	sharp-nec-displays	un462a_firmware un462va_firmware un492s_firmware un492vs_firmware un552a_firmware un552s_firmware un552vs_firmware un552_firmware un552v_firmware ux552s_firmware ux552_f…	Sharp NEC Displays (UN462A R1.300 and prior to it, UN462VA R1.300 and prior to it, UN492S R1.300 and prior to it, UN492VS R1.300 and prior to it, UN552A R1.300 and prior to it, UN552S R1.300 and prio…	NVD-CWE-noinfo	CVE-2021-20698	2024-11-21 14:47	2021-06-7	Show	GitHub Exploit DB Packet Storm

196815	6.1	MEDIUM Network	zettlr	zettlr	Cross-site scripting vulnerability in Zettlr from 0.20.0 to 1.8.8 allows an attacker to execute an arbitrary script by loading a file or code snippet containing an invalid iframe into Zettlr.	CWE-79 Cross-site Scripting	CVE-2021-20727	2024-11-21 14:47	2021-05-27	Show	GitHub Exploit DB Packet Storm

196816	6.5	MEDIUM Network	wago	750-823_firmware 750-829_firmware 750-831_firmware 750-832_firmware 750-852_firmware 750-862_firmware 750-880_firmware 750-881_firmware 750-882_firmware 750-885_firmware	On WAGO PFC200 devices in different firmware versions with special crafted packets an authorised attacker with network access to the device can access the file system with higher privileges.	CWE-22 Path Traversal	CVE-2021-21001	2024-11-21 14:47	2021-05-24	Show	GitHub Exploit DB Packet Storm

196817	7.5	HIGH Network	wago	750-823_firmware 750-829_firmware 750-831_firmware 750-832_firmware 750-852_firmware 750-862_firmware 750-880_firmware 750-881_firmware 750-882_firmware 750-885_firmware	On WAGO PFC200 devices in different firmware versions with special crafted packets an attacker with network access to the device could cause a denial of service for the login service of the runtime.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-21000	2024-11-21 14:47	2021-05-24	Show	GitHub Exploit DB Packet Storm

196818	7.8	HIGH Local	overwolf	overwolf	Untrusted search path vulnerability in The Installer of Overwolf 2.168.0.n and earlier allows an attacker to gain privileges and execute arbitrary code with the privilege of the user invoking the ins…	CWE-427 Uncontrolled Search Path Element	CVE-2021-20726	2024-11-21 14:47	2021-05-24	Show	GitHub Exploit DB Packet Storm

196819	6.1	MEDIUM Network	calendar01_project	calendar01	Reflected cross-site scripting vulnerability in the admin page of [Calendar01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2021-20725	2024-11-21 14:47	2021-05-24	Show	GitHub Exploit DB Packet Storm

196820	6.1	MEDIUM Network	telop01_project	telop01	Reflected cross-site scripting vulnerability in the admin page of [Telop01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2021-20724	2024-11-21 14:47	2021-05-24	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed