Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 22, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231051	7.5	危険	phpnagios	-	phpNagios の menu.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-4626	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

231052	7.5	危険	Tamlyn Creative Pty	-	Joomla! 用の bfsurvey コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4625	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

231053	7.5	危険	Plohni	-	Advanced Comment System における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-4623	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

231054	7.5	危険	tourismscripts	-	Tourism Script Bus Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4618	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

231055	7.5	危険	tourismscripts	-	Tourism Script Accommodation Hotel Booking Portal Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4617	2012-12-20 19:28	2010-01-18	Show	GitHub Exploit DB Packet Storm

231056	7.2	危険	south river technologies	-	South River Technologies WebDrive におけるサービスを停止される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4606	2012-12-20 19:28	2010-01-13	Show	GitHub Exploit DB Packet Storm

231057	5	警告	The phpMyAdmin Project	-	phpMyAdmin の scripts/setup.php におけるクロスサイトリクエストフォージェリ (CSRF) 攻撃を実行される脆弱性	CWE-DesignError	CVE-2009-4605	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

231058	5	警告	SAP	-	SAP Kernel の sapstartsrv.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4603	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

231059	4.3	警告	zeeways	-	Zeeways ZeeJobsite の basic_search_result.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-4601	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

231060	7.5	危険	phpwares	-	PHP Inventory の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-4597	2012-12-20 19:28	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196541	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded rootmet / m3tr0r00t credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27151	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196542	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded gestiontelebucaramanga / t3l3buc4r4m4ng42013 credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27150	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196543	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded adminpldt / z6dUABtl270qRxt7a2uGTiw credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27149	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196544	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded telecomadmin / nE7jA%5m credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27148	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196545	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / admin credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27147	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196546	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / CUadmin credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27146	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196547	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / lnadmin credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27145	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196548	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded f~i!b@e#r$h%o^m*esuperadmin / s(f)u_h+g\|u credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27144	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196549	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / user1234 credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27143	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196550	7.5	HIGH Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web management is done over HTTPS, using a hardcoded private key that has 0777 permissions.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27142	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed