Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231191	7.5	危険	turnkeyforms	-	TurnkeyForms Local Classifieds の listtest.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6350	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

231192	7.5	危険	turnkeyforms	-	TurnkeyForms Business Survey Pro の survey_results_text.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6349	2012-12-20 19:10	2009-03-2	Show	GitHub Exploit DB Packet Storm

231193	4.3	警告	ticklespace	-	Drupal 用の Answers モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6413	2012-12-20 19:10	2008-09-18	Show	GitHub Exploit DB Packet Storm

231194	4.3	警告	sadi samami	-	Multi Languages WebShop Online の detail.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6267	2012-12-20 19:10	2009-02-25	Show	GitHub Exploit DB Packet Storm

231195	6.8	警告	xt:Commerce	-	xt:Commerce における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6304	2012-12-20 19:10	2008-11-20	Show	GitHub Exploit DB Packet Storm

231196	7.5	危険	TYPO3 Association	-	TYPO3 用の TU-Clausthal Staff エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6344	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

231197	4.3	警告	TYPO3 Association	-	TYPO3 用の TU-Clausthal ODIN エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6343	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

231198	4.3	警告	TYPO3 Association	-	TYPO3 用の SB Universal Plugin エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-6341	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

231199	7.5	危険	weber-ebusiness	-	TYPO3 用の WEBERkommunal Facilities エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-6338	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

231200	4.3	警告	rightscripts	-	Text Lines Rearrange Script の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-6336	2012-12-20 19:10	2009-02-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200541	5.3	MEDIUM Network	ibm	cloud_pak_for_multicloud_management_monitoring	IBM Cloud Pak for Multicloud Management Monitoring 2.2 returns potentially sensitive information in headers which could lead to further attacks against the system. IBM X-Force ID: 194513.	NVD-CWE-noinfo	CVE-2021-20341	2024-11-21 14:46	2021-03-10	Show	GitHub Exploit DB Packet Storm

200542	7.5	HIGH Network	privoxy debian	privoxy debian_linux	A flaw was found in privoxy before 3.0.32. Invalid memory access with an invalid pattern passed to pcre_compile() may lead to denial of service.	NVD-CWE-noinfo	CVE-2021-20276	2024-11-21 14:46	2021-03-9	Show	GitHub Exploit DB Packet Storm

200543	7.5	HIGH Network	privoxy debian	privoxy debian_linux	A flaw was found in privoxy before 3.0.32. A invalid read of size two may occur in chunked_body_is_complete() leading to denial of service.	CWE-125 Out-of-bounds Read	CVE-2021-20275	2024-11-21 14:46	2021-03-9	Show	GitHub Exploit DB Packet Storm

200544	7.5	HIGH Network	privoxy	privoxy	A flaw was found in privoxy before 3.0.32. A crash may occur due a NULL-pointer dereference when the socks server misbehaves.	-	CVE-2021-20274	2024-11-21 14:46	2021-03-9	Show	GitHub Exploit DB Packet Storm

200545	7.5	HIGH Network	privoxy debian	privoxy debian_linux	A flaw was found in privoxy before 3.0.32. A crash can occur via a crafted CGI request if Privoxy is toggled off.	-	CVE-2021-20273	2024-11-21 14:46	2021-03-9	Show	GitHub Exploit DB Packet Storm

200546	7.5	HIGH Network	privoxy debian	privoxy debian_linux	A flaw was found in privoxy before 3.0.32. An assertion failure could be triggered with a crafted CGI request leading to server crash.	-	CVE-2021-20272	2024-11-21 14:46	2021-03-9	Show	GitHub Exploit DB Packet Storm

200547	6.1	MEDIUM Network	movabletype	movable_type_premium movable_type_premium_advanced movable_type_advanced movable_type	Cross-site scripting vulnerability in in Add asset screen of Contents field of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Adva…	CWE-79 Cross-site Scripting	CVE-2021-20665	2024-11-21 14:46	2021-03-5	Show	GitHub Exploit DB Packet Storm

200548	6.1	MEDIUM Network	movabletype	movable_type movable_type_premium movable_type_premium_advanced movable_type_advanced	Cross-site scripting vulnerability in in Asset registration screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Advanced 7 Se…	CWE-79 Cross-site Scripting	CVE-2021-20664	2024-11-21 14:46	2021-03-5	Show	GitHub Exploit DB Packet Storm

200549	6.1	MEDIUM Network	movabletype	movable_type movable_type_premium movable_type_premium_advanced movable_type_advanced	Cross-site scripting vulnerability in in Role authority setting screen of Movable Type 7 r.4705 and earlier (Movable Type 7 Series), Movable Type Advanced 7 r.4705 and earlier (Movable Type Advanced …	CWE-79 Cross-site Scripting	CVE-2021-20663	2024-11-21 14:46	2021-03-5	Show	GitHub Exploit DB Packet Storm

200550	5.4	MEDIUM Network	ibm	rational_quality_manager rational_team_concert rational_doors_next_generation doors_next engineering_workflow_management engineering_test_management engineering_lifecycle_management…	IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially …	CWE-79 Cross-site Scripting	CVE-2021-20351	2024-11-21 14:46	2021-03-5	Show	GitHub Exploit DB Packet Storm