Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230811	7.5	危険	scripts-for-sites	-	SFS EZ Adult Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6784	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230812	7.5	危険	scripts-for-sites	-	SFS EZ Home Business Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6783	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230813	7.5	危険	scripts-for-sites	-	SFS EZ Hosting Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6782	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230814	7.5	危険	scripts-for-sites	-	SFS Gaming Directory の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6781	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230815	7.5	危険	scripts-for-sites	-	SFS SFS EZ Affiliate の directory.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6780	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230816	7.5	危険	PHPNUKE	-	PHP-Nuke 用の Sarkilar モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6779	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230817	7.5	危険	scripts-for-sites	-	SFS EZ Auction の viewfaqs.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6778	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230818	7.5	危険	scripts-for-sites	-	SFS EZ Hot or Not の viewcomments.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6776	2012-12-20 19:10	2009-05-1	Show	GitHub Exploit DB Packet Storm

230819	6.8	警告	shopsystem-forum	-	K&S Shopsoftware の admin/editor/images.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2008-6768	2012-12-20 19:10	2009-04-29	Show	GitHub Exploit DB Packet Storm

230820	10	危険	WordPress.org	-	WordPress の wp-admin/upgrade.php におけるアプリケーションをアップグレードされる脆弱性	CWE-noinfo 情報不足	CVE-2008-6767	2012-12-20 19:10	2009-04-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196351	8.8	HIGH Network	atlassian	jira_server_for_slack	An endpoint in Atlassian Jira Server for Slack plugin from version 0.0.3 before version 2.0.15 allows remote attackers to execute arbitrary code via a template injection vulnerability.	CWE-74 Injection	CVE-2021-26068	2024-11-21 14:55	2021-02-23	Show	GitHub Exploit DB Packet Storm

196352	9.8	CRITICAL Network	smarty debian	smarty debian_linux	Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring.	CWE-94 Code Injection	CVE-2021-26120	2024-11-21 14:55	2021-02-22	Show	GitHub Exploit DB Packet Storm

196353	7.5	HIGH Network	smarty debian	smarty debian_linux	Smarty before 3.1.39 allows a Sandbox Escape because $smarty.template_object can be accessed in sandbox mode.	NVD-CWE-noinfo	CVE-2021-26119	2024-11-21 14:55	2021-02-22	Show	GitHub Exploit DB Packet Storm

196354	7.2	HIGH Network	baby_care_system_project	baby_care_system	An arbitrary file upload vulnerability has been identified in posts.php in Baby Care System 1.0. The vulnerability could be exploited by an remote attacker to upload content to the server, including …	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-25780	2024-11-21 14:55	2021-02-18	Show	GitHub Exploit DB Packet Storm

196355	9.8	CRITICAL Network	baby_care_system_project	baby_care_system	Baby Care System v1.0 is vulnerable to SQL injection via the 'id' parameter on the contentsectionpage.php page.	CWE-89 SQL Injection	CVE-2021-25779	2024-11-21 14:55	2021-02-18	Show	GitHub Exploit DB Packet Storm

196356	9.8	CRITICAL Network	testes-codigo	testes_de_codigo	Mobile application "Testes de Codigo" 11.4 and prior allows an attacker to gain access to the administrative interface and premium features by tampering the boolean value of parameters "isAdmin" and …	NVD-CWE-Other	CVE-2021-25648	2024-11-21 14:55	2021-02-17	Show	GitHub Exploit DB Packet Storm

196357	9.8	CRITICAL Network	casap_automated_enrollment_system_project	casap_automated_enrollment_system	The Login Panel of CASAP Automated Enrollment System 1.0 is vulnerable to SQL injection authentication bypass. An attacker can obtain access to the admin panel by injecting a SQL query in the usernam…	CWE-89 SQL Injection	CVE-2021-26201	2024-11-21 14:55	2021-02-16	Show	GitHub Exploit DB Packet Storm

196358	9.8	CRITICAL Network	library_system_project	library_system	The user area for Library System 1.0 is vulnerable to SQL injection where a user can bypass the authentication and login as the admin user.	CWE-89 SQL Injection	CVE-2021-26200	2024-11-21 14:55	2021-02-16	Show	GitHub Exploit DB Packet Storm

196359	7.5	HIGH Network	teradici	pcoip_soft_client	A null pointer dereference in Teradici PCoIP Soft Client versions prior to 20.07.3 could allow an attacker to crash the software.	CWE-476 NULL Pointer Dereference	CVE-2021-25690	2024-11-21 14:55	2021-02-12	Show	GitHub Exploit DB Packet Storm

196360	9.8	CRITICAL Network	teradici	pcoip_soft_client	An out of bounds write in Teradici PCoIP soft client versions prior to version 20.10.1 could allow an attacker to remotely execute code.	CWE-787 Out-of-bounds Write	CVE-2021-25689	2024-11-21 14:55	2021-02-12	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed