Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231051 7.5 危険 sudirman angriawan - PHP-Nuke 用の Sudirman Angriawan NukeC30 モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-1308 2012-12-20 18:34 2008-03-12 Show GitHub Exploit DB Packet Storm
231052 4.3 警告 WordPress.org - WordPress におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1304 2012-12-20 18:34 2008-03-12 Show GitHub Exploit DB Packet Storm
231053 4.3 警告 ViewVC - ViewVC における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1292 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
231054 4.3 警告 ViewVC - ViewVC における CVSROOT 隠しフォルダ配下のファイルおよびフォルダの一覧を読み取られる脆弱性 CWE-200
情報漏えい 		CVE-2008-1291 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
231055 4.3 警告 ViewVC - ViewVC における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-1290 2012-12-20 18:34 2008-03-24 Show GitHub Exploit DB Packet Storm
231056 4.3 警告 サン・マイクロシステムズ - Sun JSF におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1285 2012-12-20 18:34 2008-02-27 Show GitHub Exploit DB Packet Storm
231057 4.3 警告 silver-forge - Neptune Web Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-1283 2012-12-20 18:34 2008-03-10 Show GitHub Exploit DB Packet Storm
231058 5 警告 remotelyanywhere - Remotely Anywhere Server および Workstation の RemotelyAnywhere.exe サービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-1278 2012-12-20 18:34 2008-03-10 Show GitHub Exploit DB Packet Storm
231059 7.8 危険 シーメンス - Siemens SpeedStream 6520 ルータにおけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2008-1267 2012-12-20 18:34 2008-03-10 Show GitHub Exploit DB Packet Storm
231060 5 警告 ZyXEL - Zyxel P-2602HW-D1A ルータにおける現在のログインステータスを取得される脆弱性 CWE-DesignError
CVE-2008-1261 2012-12-20 18:34 2008-03-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196821 7.5 HIGH
Network 		ovarro twinsoft
tbox_lt2-530_firmware
tbox_lt2-532_firmware
tbox_lt2-540_firmware
tbox_ms-cpu32_firmware
tbox_ms-cpu32-s2_firmware
tbox_rm2_firmware
tbox_tg2_firmware 		An attacker could use specially crafted invalid Modbus frames to crash the Ovarro TBox system. CWE-400
 Uncontrolled Resource Consumption 		CVE-2021-22642 2024-11-21 14:50 2022-07-29 Show GitHub Exploit DB Packet Storm
196822 9.8 CRITICAL
Network 		ovarro twinsoft
tbox_lt2-530_firmware
tbox_lt2-532_firmware
tbox_lt2-540_firmware
tbox_ms-cpu32_firmware
tbox_ms-cpu32-s2_firmware
tbox_rm2_firmware
tbox_tg2_firmware 		An attacker can decrypt the Ovarro TBox login password by communication capture and brute force attacks. CWE-294
CWE-307
Authentication Bypass by Capture-replay 
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-22640 2024-11-21 14:50 2022-07-29 Show GitHub Exploit DB Packet Storm
196823 6.1 MEDIUM
Network 		microfocus access_manager A bug exist in the input parameter of Access Manager that allows supply of invalid character to trigger cross-site scripting vulnerability. This affects NetIQ Access Manager 4.5 and 5.0 CWE-79
Cross-site Scripting 		CVE-2021-22531 2024-11-21 14:50 2022-05-13 Show GitHub Exploit DB Packet Storm
196824 9.8 CRITICAL
Network 		nxp mqx NXP MQX Versions 5.1 and prior are vulnerable to integer overflow in mem_alloc, _lwmem_alloc and _partition functions. This unverified memory assignment can lead to arbitrary memory allocation, resul… - CVE-2021-22680 2024-11-21 14:50 2022-05-4 Show GitHub Exploit DB Packet Storm
196825 7.3 HIGH
Network 		google oauth_client_library_for_java The vulnerability is that IDToken verifier does not verify if token is properly signed. Signature verification makes sure that the token's payload comes from valid provider, not from someone else. An… CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2021-22573 2024-11-21 14:50 2022-05-4 Show GitHub Exploit DB Packet Storm
196826 7.8 HIGH
Local 		google fuchsia The Security Team discovered an integer overflow bug that allows an attacker with code execution to issue memory cache invalidation operations on pages that they don’t own, allowing them to control k… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-22556 2024-11-21 14:50 2022-05-4 Show GitHub Exploit DB Packet Storm
196827 7.8 HIGH
Local 		schneider-electric ecostruxure_process_expert
ecostruxure_control_expert
remoteconnect 		A CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal) vulnerability exists that could cause malicious script to be deployed in an unauthorized location and may resul… - CVE-2021-22797 2024-11-21 14:50 2022-04-14 Show GitHub Exploit DB Packet Storm
196828 9.8 CRITICAL
Network 		schneider-electric struxureware_data_center_expert A CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could cause remote code execution when performed over the network. Affect… - CVE-2021-22795 2024-11-21 14:50 2022-04-14 Show GitHub Exploit DB Packet Storm
196829 9.8 CRITICAL
Network 		schneider-electric struxureware_data_center_expert A CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability exists that could cause remote code execution. Affected Product: StruxureWare Data Center Expert … - CVE-2021-22794 2024-11-21 14:50 2022-04-14 Show GitHub Exploit DB Packet Storm
196830 5.5 MEDIUM
Local 		google data_transfer_project On unix-like systems, the system temporary directory is shared between all users on that system. The root cause is File.createTempFile creates files in the the system temporary directory with world r… CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-22572 2024-11-21 14:50 2022-03-30 Show GitHub Exploit DB Packet Storm