Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232171 4.3 警告 CJ Niemira - phpMyID の MyID.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4730 2012-12-20 18:52 2008-10-24 Show GitHub Exploit DB Packet Storm
232172 4.3 警告 sungard - SunGard Banner Student のコンタクトアップデートページにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-4727 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232173 7.5 危険 X7 Group - X7 Chat の help/mini.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4718 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232174 7.5 危険 zeeways - ZEELYRICS の bannerclick.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4717 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232175 7.5 危険 scriptdemo - BitmixSoft PHP-Lance の show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4716 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232176 7.5 危険 pilotgroup - PG eTraining の news_read.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4709 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232177 7.5 危険 sylvain pasquet - BbZL.PhP における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4708 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232178 5 警告 sylvain pasquet - BbZL.PhP の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-4707 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232179 7.5 危険 vBulletin Solutions, Inc. - VBGooglemap Hotspot Edition モジュールなどにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4706 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
232180 7.5 危険 phponlinedatingsoftware - php Online Dating Software MyPHPDating の success_story.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4705 2012-12-20 18:52 2008-10-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199901 6.5 MEDIUM
Network 		gitlab gitlab Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data NVD-CWE-Other
CVE-2021-22244 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199902 4.3 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to use an invite URL meant for another email address to gain access into a group. CWE-863
 Incorrect Authorization 		CVE-2021-22243 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199903 5.4 MEDIUM
Network 		gitlab gitlab Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown CWE-79
Cross-site Scripting 		CVE-2021-22242 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199904 4.9 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab may allow a user with an impersonation token to perform Git actions even if impersonation is disabled. This vulnerability is present in GitLab CE/EE versions befo… CWE-384
 Session Fixation 		CVE-2021-22237 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199905 8.8 HIGH
Network 		gitlab gitlab Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present in GitLab CE/EE since version 14.1. CWE-863
 Incorrect Authorization 		CVE-2021-22236 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199906 7.8 HIGH
Local 		codesys codesys An unsafe deserialization vulnerability exists in the Engine.plugin ProfileInformation ProfileData functionality of CODESYS GmbH CODESYS Development System 3.5.16 and 3.5.17. A specially crafted file… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-21869 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199907 8.8 HIGH
Network 		gpac
debian 		gpac
debian_linux 		An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an int… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-21850 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199908 8.8 HIGH
Network 		gpac
debian 		gpac
debian_linux 		An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an int… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-21849 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199909 8.8 HIGH
Network 		gpac
debian 		gpac
debian_linux 		An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The library will actually reuse the parser for at… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-21848 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
199910 8.8 HIGH
Network 		gpac
debian 		gpac
debian_linux 		An exploitable integer overflow vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. A specially crafted MPEG-4 input can cause an int… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-21842 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm