Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
231391	5	警告	wogan may	-	LiteNews における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-3508	2012-12-20 18:52	2008-08-7	Show	GitHub Exploit DB Packet Storm

231392	7.5	危険	wogan may	-	LiteNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3507	2012-12-20 18:52	2008-08-7	Show	GitHub Exploit DB Packet Storm

231393	7.5	危険	polypager	-	PolyPager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3506	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231394	4.3	警告	polypager	-	PolyPager におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3505	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231395	5	警告	webgui	-	Plain Black WebGUI の RSSFromParent における重要な情報を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-3503	2012-12-20 18:52	2008-06-20	Show	GitHub Exploit DB Packet Storm

231396	5	警告	RealVNC	-	RealVNC Windows Client の vncviewer.exe におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-3493	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231397	7.5	危険	scripts24	-	Scripts24 iPost および iTGP の go.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3491	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231398	7.5	危険	phpx	-	PHPX の includes/functions.inc.php の checkCookie 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3489	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231399	7.5	危険	phpauctions	-	PHPAuction GPL の profile.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-3487	2012-12-20 18:52	2008-08-6	Show	GitHub Exploit DB Packet Storm

231400	4.3	警告	screwturn	-	ScrewTurn Wiki におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-3483	2012-12-20 18:52	2008-08-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199201	5.3	MEDIUM Adjacent	dell	emc_networker	Dell EMC NetWorker, versions 18.x, 19.1.x, 19.2.x 19.3.x, 19.4, and 19.4.0.1 contain an Improper Certificate Validation vulnerability in the client (NetWorker Management Console) components which use…	CWE-295 Improper Certificate Validation	CVE-2021-21559	2024-11-21 14:48	2021-06-9	Show	GitHub Exploit DB Packet Storm

199202	6.5	MEDIUM Network	zte	zxa10_f821_firmware zxa10_f822_firmware zxa10_f819_firmware zxa10_f832_firmware zxa10_f839_firmware zxa10_f809_firmware zxa10_f822p_firmware zxa10_f832v2_firmware	Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-21734	2024-11-21 14:48	2021-05-28	Show	GitHub Exploit DB Packet Storm

199203	5.4	MEDIUM Network	jenkins	markdown_formatter	Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with the abilit…	CWE-79 Cross-site Scripting	CVE-2021-21660	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

199204	8.1	HIGH Network	jenkins	urltrigger	Jenkins URLTrigger Plugin 0.48 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21659	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

199205	9.1	CRITICAL Network	jenkins	nuget	Jenkins Nuget Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21658	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

199206	8.8	HIGH Network	jenkins	filesystem_trigger	Jenkins Filesystem Trigger Plugin 0.40 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21657	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

199207	8.8	HIGH Local	microsoft	windows_10	Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploi…	NVD-CWE-Other	CVE-2021-21552	2024-11-21 14:48	2021-05-22	Show	GitHub Exploit DB Packet Storm

199208	8.8	HIGH Network	dell	xtremio_management_server	Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. A non-privileged attacker could potentially exploit this vulnerability, leading to a privileged …	CWE-352 Origin Validation Error	CVE-2021-21549	2024-11-21 14:48	2021-05-22	Show	GitHub Exploit DB Packet Storm

199209	4.9	MEDIUM Network	zte	zxcdn	The management system of ZXCDN is impacted by the information leak vulnerability. Attackers can make further analysis according to the information returned by the program, and then obtain some sensit…	CWE-200 Information Exposure	CVE-2021-21733	2024-11-21 14:48	2021-05-19	Show	GitHub Exploit DB Packet Storm

199210	7.5	HIGH Network	zte	axon_11_5g_firmware	A mobile phone of ZTE is impacted by improper access control vulnerability. Due to improper permission settings, third-party applications can read some files in the proc file system without authoriza…	NVD-CWE-Other	CVE-2021-21732	2024-11-21 14:48	2021-05-19	Show	GitHub Exploit DB Packet Storm