Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 3, 2026, 2:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230791	4.3	警告	Simple Machines	-	SMF におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0284	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

230792	7.5	危険	xforum	-	Xforum の liretopic.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0279	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

230793	6	警告	X7 Group	-	X7 Chat の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0278	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

230794	6	警告	taskfreak	-	TaskFreak! の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0270	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

230795	6.8	警告	wavelink media	-	TutorialCMS の activate.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0254	2012-12-20 18:34	2008-01-15	Show	GitHub Exploit DB Packet Storm

230796	5	警告	php webquest	-	PHP Webquest におけるデータベースの資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-0249	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

230797	9.3	危険	streamaudio	-	StreamAudio ChainCast ProxyManager の ccpm_0237.dll におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0248	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

230798	10	危険	uploadscript	-	UploadScript の admin.php における管理者の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0246	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

230799	7.5	危険	uploadscript	-	UploadImage の admin.php における管理者の権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-0245	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

230800	10	危険	SAP	-	SAP MaxDB における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-0244	2012-12-20 18:34	2008-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196701	6.5	MEDIUM Adjacent	huawei	p30_firmware	There is an out of bounds write vulnerability in Huawei Smartphone HUAWEI P30 versions 9.1.0.131(C00E130R1P21) when processing a message. An unauthenticated attacker can exploit this vulnerability by…	CWE-787 Out-of-bounds Write	CVE-2021-22330	2024-11-21 14:49	2021-04-28	Show	GitHub Exploit DB Packet Storm

196702	7.5	HIGH Network	huawei	p30_firmware	There is a JavaScript injection vulnerability in certain Huawei smartphones. A module does not verify some inputs sufficiently. Attackers can exploit this vulnerability by sending a malicious applica…	CWE-74 Injection	CVE-2021-22331	2024-11-21 14:49	2021-04-28	Show	GitHub Exploit DB Packet Storm

196703	6.5	MEDIUM Network	huawei	p30_firmware	There is an arbitrary memory write vulnerability in Huawei smart phone when processing file parsing. Due to insufficient validation of the input files, successful exploit could cause certain service …	CWE-787 Out-of-bounds Write	CVE-2021-22327	2024-11-21 14:49	2021-04-28	Show	GitHub Exploit DB Packet Storm

196704	6.5	MEDIUM Network	wireshark fedoraproject oracle debian	wireshark fedora zfs_storage_appliance_kit debian_linux	Excessive memory consumption in MS-WSP dissector in Wireshark 3.4.0 to 3.4.4 and 3.2.0 to 3.2.12 allows denial of service via packet injection or crafted capture file	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-22207	2024-11-21 14:49	2021-04-24	Show	GitHub Exploit DB Packet Storm

196705	10.0	CRITICAL Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validating image files that were passed to a file parser which resulted in a remote com…	CWE-94 Code Injection	CVE-2021-22205	2024-11-21 14:49	2021-04-24	Show	GitHub Exploit DB Packet Storm

196706	7.8	HIGH Local	exiftool_project debian fedoraproject	exiftool debian_linux fedora	Improper neutralization of user data in the DjVu file format in ExifTool versions 7.44 and up allows arbitrary code execution when parsing the malicious image	CWE-94 Code Injection	CVE-2021-22204	2024-11-21 14:49	2021-04-24	Show	GitHub Exploit DB Packet Storm

196707	5.4	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting with 12.9. GitLab was vulnerable to a stored XSS if scoped labels were used.	CWE-79 Cross-site Scripting	CVE-2021-22199	2024-11-21 14:49	2021-04-23	Show	GitHub Exploit DB Packet Storm

196708	7.8	HIGH Local	vmware	nsx-t_data_center	VMware NSX-T contains a privilege escalation vulnerability due to an issue with RBAC (Role based access control) role assignment. Successful exploitation of this issue may allow attackers with local …	CWE-269 Improper Privilege Management	CVE-2021-21981	2024-11-21 14:49	2021-04-20	Show	GitHub Exploit DB Packet Storm

196709	6.5	MEDIUM Network	gitlab	gitlab	A path traversal vulnerability via the GitLab Workhorse in all versions of GitLab could result in the leakage of a JWT token	CWE-22 Path Traversal	CVE-2021-22190	2024-11-21 14:49	2021-04-13	Show	GitHub Exploit DB Packet Storm

196710	6.5	MEDIUM Network	cloudfoundry	capi-release cf-deployment	Cloud Controller API versions prior to 1.106.0 logs service broker credentials if the default value of db logging config field is changed. CAPI database logs service broker password in plain text whe…	CWE-522 Insufficiently Protected Credentials	CVE-2021-22115	2024-11-21 14:49	2021-04-9	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed