Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231051 7.5 危険 Pro Chat Rooms - Pro Chat Rooms における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5070 2012-12-20 18:52 2008-11-14 Show GitHub Exploit DB Packet Storm
231052 5 警告 smolinari - mwcal の php/cal_pdf.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5062 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
231053 4.3 警告 smolinari - mwcal の php/cal_default.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5061 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
231054 7.5 危険 PreProject.com - Pre Simple CMS の siteadmin/loginsucess.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5058 2012-12-20 18:52 2008-11-13 Show GitHub Exploit DB Packet Storm
231055 7.5 危険 zeeways - Zeeways PhotoVideoTube における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-5042 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
231056 7.5 危険 Sweex - Sweex RO002 Router におけるアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5041 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
231057 4.3 警告 PHPNUKE - PHP-Nuke 用の League モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5039 2012-12-20 18:52 2008-11-12 Show GitHub Exploit DB Packet Storm
231058 5 警告 University of Washington - University of Washington IMAP Toolkit の c-client ライブラリにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-5006 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
231059 7.5 危険 shahrood - Shahrood の ndetail.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5003 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
231060 9.3 危険 UltraVNC - UltraVNC 用の vncviewer の関数におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-5001 2012-12-20 18:52 2008-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199321 7.4 HIGH
Network 		mifos mifos-mobile Mifos-Mobile Android Application for MifosX is an Android Application built on top of the MifosX Self-Service platform. Mifos-Mobile before commit e505f62 disables HTTPS hostname verification of its … - CVE-2021-21385 2024-11-21 14:48 2021-03-25 Show GitHub Exploit DB Packet Storm
199322 8.8 HIGH
Network 		xwiki xwiki XWiki Platform is a generic wiki platform offering runtime services for applications built on top of it. In affected versions of XWiki Platform (and only those with the Ratings API installed), the Ra… CWE-89
SQL Injection 		CVE-2021-21380 2024-11-21 14:48 2021-03-24 Show GitHub Exploit DB Packet Storm
199323 6.5 MEDIUM
Network 		jellyfin jellyfin Jellyfin is a Free Software Media System. In Jellyfin before version 10.7.1, with certain endpoints, well crafted requests will allow arbitrary file read from a Jellyfin server's file system. This is… - CVE-2021-21402 2024-11-21 14:48 2021-03-24 Show GitHub Exploit DB Packet Storm
199324 7.1 HIGH
Network 		nanopb_project nanopb Nanopb is a small code-size Protocol Buffers implementation in ansi C. In Nanopb before versions 0.3.9.8 and 0.4.5, decoding a specifically formed message can cause invalid `free()` or `realloc()` ca… - CVE-2021-21401 2024-11-21 14:48 2021-03-24 Show GitHub Exploit DB Packet Storm
199325 5.4 MEDIUM
Network 		openmicroscopy omero.web OMERO.web is open source Django-based software for managing microscopy imaging. OMERO.web before version 5.9.0 supports redirection to a given URL after performing login or switching the group contex… - CVE-2021-21377 2024-11-21 14:48 2021-03-24 Show GitHub Exploit DB Packet Storm
199326 6.5 MEDIUM
Network 		openmicroscopy omero.web OMERO.web is open source Django-based software for managing microscopy imaging. OMERO.web before version 5.9.0 loads various information about the current user such as their id, name and the groups t… - CVE-2021-21376 2024-11-21 14:48 2021-03-24 Show GitHub Exploit DB Packet Storm
199327 5.4 MEDIUM
Network 		typo3 typo3 TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 7.6.51, 8.7.40, 9.5.25, 10.4.14, 11.1.1 it has been discovered that content elements of type _menu_ are vulne… - CVE-2021-21370 2024-11-21 14:48 2021-03-23 Show GitHub Exploit DB Packet Storm
199328 7.5 HIGH
Network 		typo3 typo3 TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 9.5.25, 10.4.14, 11.1.1 requesting invalid or non-existing resources via HTTP triggers the page error handler… - CVE-2021-21359 2024-11-21 14:48 2021-03-23 Show GitHub Exploit DB Packet Storm
199329 5.4 MEDIUM
Network 		typo3 typo3 TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 10.4.14, 11.1.1 it has been discovered that the Form Designer backend module of the Form Framework is vulnera… - CVE-2021-21358 2024-11-21 14:48 2021-03-23 Show GitHub Exploit DB Packet Storm
199330 5.4 MEDIUM
Network 		typo3 typo3 TYPO3 is an open source PHP based web content management system. In TYPO3 before versions 10.4.14, 11.1.1 it has been discovered that database fields used as _descriptionColumn_ are vulnerable to cro… CWE-79
Cross-site Scripting 		CVE-2021-21340 2024-11-21 14:48 2021-03-23 Show GitHub Exploit DB Packet Storm