Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232041	4.3	警告	smartscript	-	Smartscript Domain Trader の catalog.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0688	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232042	7.5	危険	youtube	-	Youtube Clone Script の siteadmin/editor_files/includes/load_message.php におけるクロスサイトスクリプティングの脆弱性	CWE-94 コード・インジェクション	CVE-2008-0687	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232043	7.5	危険	WordPress.org	-	WordPress 用の st_newsletter プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0683	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232044	7.5	危険	WordPress.org	-	WordPress 用の Wordspew プラグインにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0682	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232045	6.8	警告	phpshop	-	PHPShop の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0681	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232046	7.5	危険	the everything development company	-	The Everything Development System の The Everything Development Engine における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-0675	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232047	7.5	危険	tintin	-	TinTin++ および WinTin++ におけるホームディレクトリの一番上のレベルにある任意のファイルを切り捨てられる脆弱性	CWE-DesignError	CVE-2008-0673	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232048	5	警告	tintin	-	TinTin++ および WinTin++ の process_chat_input 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2008-0672	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232049	10	危険	tintin	-	TinTin++ および WinTin++ の add_line_buffer 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-0671	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

232050	4.3	警告	sift	-	Sift Unity の search.cgi におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0669	2012-12-20 18:34	2008-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199531	9.8	CRITICAL Network	nec	expresscluster_x clusterpro_x expresscluster_x_singleserversafe clusterpro_x_singleserversafe	Buffer overflow vulnerability in the Transaction Server CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earli…	CWE-120 Classic Buffer Overflow	CVE-2021-20702	2024-11-21 14:47	2021-11-3	Show	GitHub Exploit DB Packet Storm

199532	9.8	CRITICAL Network	nec	expresscluster_x clusterpro_x expresscluster_x_singleserversafe clusterpro_x_singleserversafe	Buffer overflow vulnerability in the Disk Agent CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPR…	CWE-120 Classic Buffer Overflow	CVE-2021-20701	2024-11-21 14:47	2021-11-3	Show	GitHub Exploit DB Packet Storm

199533	9.8	CRITICAL Network	nec	expresscluster_x clusterpro_x expresscluster_x_singleserversafe clusterpro_x_singleserversafe	Buffer overflow vulnerability in the Disk Agent CLUSTERPRO X 4.3 for Windows and earlier, EXPRESSCLUSTER X 4.3 for Windows and earlier, CLUSTERPRO X 4.3 SingleServerSafe for Windows and earlier, EXPR…	CWE-120 Classic Buffer Overflow	CVE-2021-20700	2024-11-21 14:47	2021-11-3	Show	GitHub Exploit DB Packet Storm

199534	6.5	MEDIUM Network	antennahouse	office_server_document_converter	Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS)…	CWE-611 XXE	CVE-2021-20839	2024-11-21 14:47	2021-11-1	Show	GitHub Exploit DB Packet Storm

199535	7.5	HIGH Network	antennahouse	office_server_document_converter	Office Server Document Converter V7.2MR4 and earlier and V7.1MR7 and earlier allows a remote unauthenticated attacker to conduct an XML External Entity (XXE) attack to cause a denial of service (DoS)…	CWE-611 XXE	CVE-2021-20838	2024-11-21 14:47	2021-11-1	Show	GitHub Exploit DB Packet Storm

199536	9.8	CRITICAL Network	sixapart	movable_type	Movable Type 7 r.5002 and earlier (Movable Type 7 Series), Movable Type 6.8.2 and earlier (Movable Type 6 Series), Movable Type Advanced 7 r.5002 and earlier (Movable Type Advanced 7 Series), Movable…	CWE-78 OS Command	CVE-2021-20837	2024-11-21 14:47	2021-10-26	Show	GitHub Exploit DB Packet Storm

199537	6.5	MEDIUM Local	omron	cx-supervisor	Out-of-bounds read vulnerability in CX-Supervisor v4.0.0.13 and v4.0.0.16 allows an attacker with administrative privileges to cause information disclosure and/or arbitrary code execution by opening …	CWE-125 Out-of-bounds Read	CVE-2021-20836	2024-11-21 14:47	2021-10-19	Show	GitHub Exploit DB Packet Storm

199538	6.1	MEDIUM Network	nike	nike	Improper authorization in handler for custom URL scheme vulnerability in Nike App for Android versions prior to 2.177 and Nike App for iOS versions prior to 2.177.1 allows a remote attacker to lead a…	CWE-862 Missing Authorization	CVE-2021-20834	2024-11-21 14:47	2021-10-13	Show	GitHub Exploit DB Packet Storm

199539	7.4	HIGH Network	soda-inc	snkrdunk	The SNKRDUNK Market Place App for iOS versions prior to 2.2.0 does not verify server certificate properly, which allows man-in-the-middle attackers to eavesdrop on and/or alter encrypted communicatio…	CWE-295 Improper Certificate Validation	CVE-2021-20833	2024-11-21 14:47	2021-10-13	Show	GitHub Exploit DB Packet Storm

199540	5.3	MEDIUM Network	inbody	inbody	InBody App for iOS versions prior to 2.3.30 and InBody App for Android versions prior to 2.2.90(510) contain a vulnerability which may lead to information disclosure only when it works with the body …	CWE-200 Information Exposure	CVE-2021-20832	2024-11-21 14:47	2021-10-13	Show	GitHub Exploit DB Packet Storm