Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 8, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 230951 | 4 | 警告 | phpwebgallery | - | PhpWebGallery における他のユーザの電子メールアドレスを取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2008-3451 | 2012-12-20 18:52 | 2008-08-4 | Show | GitHub Exploit DB Packet Storm |
| 230952 | 7.5 | 危険 | phpmyrealty | - | PMR の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2008-3445 | 2012-12-20 18:52 | 2008-08-4 | Show | GitHub Exploit DB Packet Storm |
| 230953 | 7.5 | 危険 | winzip | - | WinZip における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-3442 | 2012-12-20 18:52 | 2008-08-1 | Show | GitHub Exploit DB Packet Storm |
| 230954 | 7.5 | 危険 | サン・マイクロシステムズ | - | Sun Java における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-3440 | 2012-12-20 18:52 | 2008-08-1 | Show | GitHub Exploit DB Packet Storm |
| 230955 | 7.5 | 危険 | speedbit | - | SpeedBit Video Acceleration における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-3439 | 2012-12-20 18:52 | 2008-08-1 | Show | GitHub Exploit DB Packet Storm |
| 230956 | 7.5 | 危険 | speedbit | - | SpeedBit DAP における任意のコードを実行される脆弱性 |
CWE-94
コード・インジェクション |
CVE-2008-3433 | 2012-12-20 18:52 | 2008-08-1 | Show | GitHub Exploit DB Packet Storm |
| 230957 | 5 | 警告 | Vtiger | - | Vtiger CRM におけるメールマージテンプレートを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2008-3458 | 2012-12-20 18:52 | 2006-09-9 | Show | GitHub Exploit DB Packet Storm |
| 230958 | 7.2 | 危険 | サン・マイクロシステムズ | - | IOCTL 用の METHOD_NEITHER 通信メソッドで使用されている Sun xVM VirtualBox における権限を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2008-3431 | 2012-12-20 18:52 | 2008-08-5 | Show | GitHub Exploit DB Packet Storm |
| 230959 | 6.5 | 警告 | PhpFreeChat | - | phpFreeChat におけるセッションをハイジャックされる脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-3428 | 2012-12-20 18:52 | 2008-07-31 | Show | GitHub Exploit DB Packet Storm |
| 230960 | 6.5 | 警告 | サン・マイクロシステムズ | - | Sun N1 SPS の Sun Java System Web Server プラグインにおける Web サーバへの管理アクセス権限を取得される脆弱性 |
CWE-287
不適切な認証 |
CVE-2008-3425 | 2012-12-20 18:52 | 2008-07-30 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 9, 2026, 4:16 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 196681 | 5.3 |
MEDIUM
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24071 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196682 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2021-24070 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196683 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24069 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196684 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps |
Microsoft Excel Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-24068 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196685 | 7.8 |
HIGH
Local |
microsoft |
excel office_web_apps office_online_server office 365_apps |
Microsoft Excel Remote Code Execution Vulnerability |
CWE-416
Use After Free |
CVE-2021-24067 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196686 | 8.8 |
HIGH
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Remote Code Execution Vulnerability |
CWE-502
Deserialization of Untrusted Data |
CVE-2021-24066 | 2024-11-21 14:52 | 2021-02-26 | Show | GitHub Exploit DB Packet Storm |
| 196687 | 9.8 |
CRITICAL
Network |
botan_project | botan | In Botan before 2.17.3, constant-time computations are not used for certain decoding and encoding operations (base32, base58, base64, and hex). |
NVD-CWE-noinfo
|
CVE-2021-24115 | 2024-11-21 14:52 | 2021-02-22 | Show | GitHub Exploit DB Packet Storm |
| 196688 | 8.8 |
HIGH
Network |
mcafee | web_gateway | Privilege escalation vulnerability in McAfee Web Gateway (MWG) prior to 9.2.8 allows an authenticated user to gain elevated privileges through the User Interface and execute commands on the appliance… |
NVD-CWE-Other
|
CVE-2021-23885 | 2024-11-21 14:52 | 2021-02-17 | Show | GitHub Exploit DB Packet Storm |
| 196689 | 9.1 |
CRITICAL
Network |
apache netapp |
nutch snap_creator_framework |
An XML external entity (XXE) injection vulnerability was discovered in the Nutch DmozParser and is known to affect Nutch versions < 1.18. XML external entity injection (also known as XXE) is a web se… |
CWE-611
XXE |
CVE-2021-23901 | 2024-11-21 14:52 | 2021-01-25 | Show | GitHub Exploit DB Packet Storm |
| 196690 | 9.1 |
CRITICAL
Network |
apache netapp debian oracle |
xmlbeans snap_creator_framework snapmanager oncommand_unified_manager_core_package debian_linux peoplesoft_enterprise_peopletools middleware_common_libraries_and_tools |
The XML parsers used by XMLBeans up to version 2.6.0 did not set the properties needed to protect the user from malicious XML input. Vulnerabilities include possibilities for XML Entity Expansion att… |
CWE-776
XML Entity Expansion |
CVE-2021-23926 | 2024-11-21 14:52 | 2021-01-15 | Show | GitHub Exploit DB Packet Storm |