Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232101	7.5	危険	realm project	-	Realm CMS の _includes/inc_routines.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2679	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

232102	7.5	危険	telephone	-	Telephone Directory 2008 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2678	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

232103	4.3	警告	telephone	-	Telephone Directory 2008 の edit1.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2677	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

232104	4.3	警告	softcomplex	-	PHP Image Gallery の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2675	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

232105	7.5	危険	Powie	-	Powie pNews の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2673	2012-12-20 18:52	2008-06-12	Show	GitHub Exploit DB Packet Storm

232106	7.5	危険	y-blog	-	yBlog における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2669	2012-12-20 18:52	2008-06-11	Show	GitHub Exploit DB Packet Storm

232107	4.3	警告	y-blog	-	yBlog におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2668	2012-12-20 18:52	2008-06-11	Show	GitHub Exploit DB Packet Storm

232108	7.5	危険	smeweb	-	SMEWeb の catalog.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2652	2012-12-20 18:52	2008-06-10	Show	GitHub Exploit DB Packet Storm

232109	4.3	警告	smeweb	-	SMEWeb における任意の Web スクリプトまたは HTML を挿入される脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2644	2012-12-20 18:52	2008-06-10	Show	GitHub Exploit DB Packet Storm

232110	7.5	危険	theflashblog	-	FlashBlog の php/leer_comentarios.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2572	2012-12-20 18:52	2008-06-6	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199401	8.8	HIGH Network	gpac debian	gpac debian_linux	Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-21838	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199402	8.8	HIGH Network	gpac debian	gpac debian_linux	Multiple exploitable integer overflow vulnerabilities exist within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause…	CWE-190 Integer Overflow or Wraparound	CVE-2021-21837	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199403	9.8	CRITICAL Network	att	xmill	A heap-based buffer overflow vulnerability exists in the XML Decompression PlainTextUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote…	CWE-787 Out-of-bounds Write	CVE-2021-21825	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199404	9.8	CRITICAL Network	disc-soft	daemon_tools	A memory corruption vulnerability exists in the ISO Parsing functionality of Disc Soft Ltd Deamon Tools Pro 8.3.0.0767. A specially crafted malformed file can lead to an out-of-bounds write. An attac…	CWE-190 Integer Overflow or Wraparound	CVE-2021-21832	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199405	9.8	CRITICAL Network	att	xmill	A memory corruption vulnerability exists in the XML-parsing ParseAttribs functionality of AT&T Labs’ Xmill 0.7. A specially crafted XML file can lead to a heap buffer overflow. An attacker can provid…	CWE-787 Out-of-bounds Write	CVE-2021-21810	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199406	9.8	CRITICAL Network	blackberry	qnx_software_development_platform qnx_os_for_medical qnx_os_for_safety	An integer overflow vulnerability in the calloc() function of the C runtime library of affected versions of BlackBerry® QNX Software Development Platform (SDP) version(s) 6.5.0SP1 and earlier, QNX OS…	CWE-190 Integer Overflow or Wraparound	CVE-2021-22156	2024-11-21 14:49	2021-08-18	Show	GitHub Exploit DB Packet Storm

199407	8.8	HIGH Network	gpac debian	gpac debian_linux	An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. When processing the 'hdlr' FOURCC code, a speci…	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-21861	2024-11-21 14:49	2021-08-17	Show	GitHub Exploit DB Packet Storm

199408	8.8	HIGH Network	gpac debian	gpac debian_linux	An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an i…	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-21860	2024-11-21 14:49	2021-08-17	Show	GitHub Exploit DB Packet Storm

199409	8.8	HIGH Network	gpac debian	gpac debian_linux	An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The stri_box_read function is used when process…	CWE-190 Integer Overflow or Wraparound	CVE-2021-21859	2024-11-21 14:49	2021-08-17	Show	GitHub Exploit DB Packet Storm

199410	7.8	HIGH Local	att	xmill	Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by t…	CWE-787 Out-of-bounds Write	CVE-2021-21813	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm