Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 4:07 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231171 7.5 危険 shiftthis - WordPress 用の ShiftThis Newsletter プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4625 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231172 5 警告 Wireshark - Wireshark の Bluetooth ACL 解析子におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-4683 2012-12-20 18:52 2007-04-4 Show GitHub Exploit DB Packet Storm
231173 7.5 危険 phpfastnews - phpFastNews の fastnews-code.php における認証を迂回される脆弱性 CWE-287
不適切な認証 		CVE-2008-4622 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231174 7.5 危険 ZeeScripts.com - ZeeScripts Zeeproperty の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4621 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231175 10 危険 サン・マイクロシステムズ - Sun Solaris の RPC サブシステムにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2008-4619 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231176 7.5 危険 pyxicom - Joomla! 用の actualite モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4617 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231177 5 警告 the spanner
WordPress.org		 - WordPress の SpamBam プラグインにおける制限を回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4616 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231178 10 危険 portalapp - PortalApp の i_utils.asp における脆弱性 CWE-noinfo
情報不足 		CVE-2008-4615 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231179 7.5 危険 portalapp - PortalApp におけるトピックなどを作成および削除される脆弱性 CWE-287
不適切な認証 		CVE-2008-4614 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
231180 7.5 危険 portalapp - PortalApp の forums.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4613 2012-12-20 18:52 2008-10-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196911 4.9 MEDIUM
Network 		10web photo_gallery The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded files are kept inside its uploads folder, allowing high privilege users to put i… - CVE-2021-24363 2024-11-21 14:52 2021-08-16 Show GitHub Exploit DB Packet Storm
196912 6.1 MEDIUM
Network 		10web photo_gallery The Photo Gallery by 10Web – Mobile-Friendly Image Gallery WordPress plugin before 1.5.75 did not ensure that uploaded SVG files added to a gallery do not contain malicious content. As a result, user… - CVE-2021-24362 2024-11-21 14:52 2021-08-16 Show GitHub Exploit DB Packet Storm
196913 6.1 MEDIUM
Network 		tagdiv newsmag The Newsmag WordPress theme before 5.0 does not sanitise the td_block_id parameter in its td_ajax_block AJAX action, leading to an unauthenticated Reflected Cross-site Scripting (XSS) vulnerability. - CVE-2021-24304 2024-11-21 14:52 2021-08-9 Show GitHub Exploit DB Packet Storm
196914 6.1 MEDIUM
Network 		fortinet fortisandbox Multiple instances of improper neutralization of input during web page generation vulnerabilities in FortiSandbox before 4.0.0 may allow an unauthenticated attacker to perform an XSS attack via speci… CWE-79
Cross-site Scripting 		CVE-2021-24014 2024-11-21 14:52 2021-08-5 Show GitHub Exploit DB Packet Storm
196915 8.8 HIGH
Adjacent 		fortinet fortios A buffer underwrite vulnerability in the firmware verification routine of FortiOS before 7.0.1 may allow an attacker located in the adjacent network to potentially execute arbitrary code via a specif… CWE-787
 Out-of-bounds Write 		CVE-2021-24018 2024-11-21 14:52 2021-08-5 Show GitHub Exploit DB Packet Storm
196916 6.5 MEDIUM
Network 		fortinet fortisandbox Improper limitation of a pathname to a restricted directory vulnerabilities in FortiSandbox 3.2.0 through 3.2.2, and 3.1.0 through 3.1.4 may allow an authenticated user to obtain unauthorized access … CWE-22
Path Traversal 		CVE-2021-24010 2024-11-21 14:52 2021-08-5 Show GitHub Exploit DB Packet Storm
196917 2.7 LOW
Network 		carrcommunications rsvpmaker The Import feature of the RSVPMaker WordPress plugin before 8.7.3 (/wp-admin/tools.php?page=rsvpmaker_export_screen) takes an URL input and calls curl on it, without first validating it to ensure it'… - CVE-2021-24371 2024-11-21 14:52 2021-08-2 Show GitHub Exploit DB Packet Storm
196918 9.8 CRITICAL
Network 		facebook hhvm
folly 		Passing an attacker controlled size when creating an IOBuf could cause integer overflow, leading to an out of bounds write on the heap with the possibility of remote code execution. This issue affect… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-24036 2024-11-21 14:52 2021-07-23 Show GitHub Exploit DB Packet Storm
196919 4.4 MEDIUM
Local 		fortinet fortimanager
fortianalyzer 		A buffer overflow vulnerability in FortiAnalyzer CLI 6.4.5 and below, 6.2.7 and below, 6.0.x and FortiManager CLI 6.4.5 and below, 6.2.7 and below, 6.0.x may allow an authenticated, local attacker to… CWE-120
Classic Buffer Overflow 		CVE-2021-24022 2024-11-21 14:52 2021-07-20 Show GitHub Exploit DB Packet Storm
196920 4.9 MEDIUM
Network 		apache teaclave_sgx_sdk In Apache Teaclave Rust SGX SDK 1.1.3, a side-channel vulnerability in base64 PEM file decoding allows system-level (administrator) attackers to obtain information about secret RSA keys via a control… CWE-203
 Information Exposure Through Discrepancy 		CVE-2021-24117 2024-11-21 14:52 2021-07-14 Show GitHub Exploit DB Packet Storm