Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 19, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231931 7.5 危険 zeeways - ZeeMatri の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5782 2012-12-20 19:10 2008-12-31 Show GitHub Exploit DB Packet Storm
231932 7.5 危険 phpweather - PHP Weather の test.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5771 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231933 4.3 警告 phpweather - PHP Weather の config/make_config.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5770 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231934 7.5 危険 sirium - XOOPS 用の AM Events モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5768 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231935 6.8 警告 phparanoid - PHParanoid におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2008-5758 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231936 3.5 注意 Textpattern - Textpattern の textarea/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5757 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231937 4.3 警告 WordPress.org - WordPress 用の Page Flip Image Gallery プラグインにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-5752 2012-12-20 19:10 2008-12-30 Show GitHub Exploit DB Packet Storm
231938 7.5 危険 Pligg - Pligg CMS の evb/check_url.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5739 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
231939 7.5 危険 PHP-Fusion - PHP-Fusion 用の Team Impact TI Blog System モジュールにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5733 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
231940 7.5 危険 stormboards aaronnemisis - stormBoards の thread.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-5726 2012-12-20 19:10 2008-12-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200151 7.5 HIGH
Network 		huawei ips_module_firmware
ngfw_module_firmware
nip6600_firmware
nip6800_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware 		There is a denial of service vulnerability in Huawei products. A module cannot deal with specific messages correctly. Attackers can exploit this vulnerability by sending malicious messages to an affe… NVD-CWE-noinfo
CVE-2021-22320 2024-11-21 14:49 2021-03-23 Show GitHub Exploit DB Packet Storm
200152 4.4 MEDIUM
Local 		huawei nip6300_firmware
nip6600_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
usg9500_firmware 		There is an information leakage vulnerability in some huawei products. Due to the properly storage of specific information in the log file, the attacker can obtain the information when a user logs in… CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-22310 2024-11-21 14:49 2021-03-23 Show GitHub Exploit DB Packet Storm
200153 7.5 HIGH
Network 		huawei usg9500_firmware
usg9520_firmware
usg9560_firmware
usg9580_firmware 		There is insecure algorithm vulnerability in Huawei products. A module uses less random input in a secure mechanism. Attackers can exploit this vulnerability by brute forcing to obtain sensitive mess… CWE-330
 Use of Insufficiently Random Values 		CVE-2021-22309 2024-11-21 14:49 2021-03-23 Show GitHub Exploit DB Packet Storm
200154 8.8 HIGH
Network 		wireshark
oracle
debian 		wireshark
zfs_storage_appliance
debian_linux 		Improper URL handling in Wireshark 3.4.0 to 3.4.3 and 3.2.0 to 3.2.11 could allow remote code execution via via packet injection or crafted capture file. CWE-74
Injection 		CVE-2021-22191 2024-11-21 14:49 2021-03-16 Show GitHub Exploit DB Packet Storm
200155 4.3 MEDIUM
Network 		elastic
oracle 		elasticsearch
communications_cloud_native_core_automated_test_suite 		A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and before 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions whe… CWE-863
 Incorrect Authorization 		CVE-2021-22134 2024-11-21 14:49 2021-03-9 Show GitHub Exploit DB Packet Storm
200156 4.3 MEDIUM
Network 		fortinet fortiproxy An improper access control vulnerability in FortiProxy SSL VPN portal 2.0.0, 1.2.9 and below versions may allow an authenticated, remote attacker to access internal service such as the ZebOS Shell on… NVD-CWE-Other
CVE-2021-22128 2024-11-21 14:49 2021-03-5 Show GitHub Exploit DB Packet Storm
200157 7.2 HIGH
Network 		gitlab gitlab Starting with version 13.7 the Gitlab CE/EE editions were affected by a security issue related to the validation of the certificates for the Fortinet OTP that could result in authentication issues. CWE-295
Improper Certificate Validation  		CVE-2021-22189 2024-11-21 14:49 2021-03-5 Show GitHub Exploit DB Packet Storm
200158 5.4 MEDIUM
Network 		gitlab gitlab An issue has been discovered in GitLab affecting all versions starting with 11.8. GitLab was vulnerable to a stored XSS in the epics page, which could be exploited with user interactions. CWE-79
Cross-site Scripting 		CVE-2021-22183 2024-11-21 14:49 2021-03-5 Show GitHub Exploit DB Packet Storm
200159 5.3 MEDIUM
Network 		gitlab gitlab An issue has been discovered in GitLab affecting all versions starting with 13.0. Confidential issue titles in Gitlab were readable by an unauthorised user via branch logs. NVD-CWE-noinfo
CVE-2021-22188 2024-11-21 14:49 2021-03-4 Show GitHub Exploit DB Packet Storm
200160 5.4 MEDIUM
Network 		gitlab gitlab An issue has been discovered in GitLab affecting all versions starting with 13.7. GitLab was vulnerable to a stored XSS in merge request. CWE-79
Cross-site Scripting 		CVE-2021-22182 2024-11-21 14:49 2021-03-4 Show GitHub Exploit DB Packet Storm