Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 15, 2026, 12:08 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232181	4.3	警告	phpeasydata	-	PHPEasyData におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2994	2012-12-20 18:52	2008-07-3	Show	GitHub Exploit DB Packet Storm

232182	7.5	危険	phpdmca	-	phpDMCA における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-2986	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232183	6.8	警告	tinx cms	-	TinX/cms におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2976	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232184	4.3	警告	tinx cms	-	TinX/cms の admin/objects/obj_image.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2975	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232185	7.5	危険	yektaweb	-	AWT YEKTA におけるセッションをハイジャックされる脆弱性	CWE-20 不適切な入力確認	CVE-2008-2970	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232186	5	警告	yektaweb	-	AWT YEKTA の download.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2969	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232187	7.5	危険	yektaweb	-	AWT YEKTA の rating.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2968	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232188	4.3	警告	yektaweb	-	AWT YEKTA におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2967	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232189	7.5	危険	researchguide	-	ResearchGuide の guide.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2964	2012-12-20 18:52	2008-07-2	Show	GitHub Exploit DB Packet Storm

232190	2.6	注意	The phpMyAdmin Project	-	phpMyAdmin におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2960	2012-12-20 18:52	2008-06-23	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199421	8.8	HIGH Network	gpac debian	gpac debian_linux	An exploitable integer truncation vulnerability exists within the MPEG-4 decoding functionality of the GPAC Project on Advanced Content library v1.0.1. The stri_box_read function is used when process…	CWE-190 Integer Overflow or Wraparound	CVE-2021-21859	2024-11-21 14:49	2021-08-17	Show	GitHub Exploit DB Packet Storm

199422	7.8	HIGH Local	att	xmill	Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to memcpy copying the path provided by t…	CWE-787 Out-of-bounds Write	CVE-2021-21813	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199423	7.8	HIGH Local	att	xmill	A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs' Xmill 0.7. Within the function HandleFileArg the argument filepattern is under…	CWE-787 Out-of-bounds Write	CVE-2021-21815	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199424	7.8	HIGH Local	att	xmill	Within the function HandleFileArg the argument filepattern is under control of the user who passes it in from the command line. filepattern is passed directly to strlen to determine the ending locati…	CWE-88 Argument Injection	CVE-2021-21814	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199425	7.8	HIGH Local	att	xmill	A stack-based buffer overflow vulnerability exists in the command-line-parsing HandleFileArg functionality of AT&T Labs’ Xmill 0.7. Within the function HandleFileArg the argument filepattern is under…	CWE-787 Out-of-bounds Write	CVE-2021-21812	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199426	9.8	CRITICAL Network	att	xmill	A heap-based buffer overflow vulnerability exists in the XML Decompression LabelDict::Load functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remote code execution. An at…	CWE-787 Out-of-bounds Write	CVE-2021-21830	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199427	9.8	CRITICAL Network	att	xmill	A heap-based buffer overflow vulnerability exists in the XML Decompression EnumerationUncompressor::UncompressItem functionality of AT&T Labs’ Xmill 0.7. A specially crafted XMI file can lead to remo…	CWE-787 Out-of-bounds Write	CVE-2021-21829	2024-11-21 14:49	2021-08-14	Show	GitHub Exploit DB Packet Storm

199428	6.1	MEDIUM Network	cloudfoundry	user_account_and_authentication cf-deployment	UAA server versions prior to 75.4.0 are vulnerable to an open redirect vulnerability. A malicious user can exploit the open redirect vulnerability by social engineering leading to take over of victim…	CWE-601 Open Redirect	CVE-2021-22098	2024-11-21 14:49	2021-08-12	Show	GitHub Exploit DB Packet Storm

199429	5.5	MEDIUM Local	huawei	harmonyos	A component of the HarmonyOS has a permission bypass vulnerability. Local attackers may exploit this vulnerability to cause the device to hang due to the page error OsVmPageFaultHandler.	CWE-276 Incorrect Default Permissions	CVE-2021-22295	2024-11-21 14:49	2021-08-6	Show	GitHub Exploit DB Packet Storm

199430	6.4	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab CE/EE affecting all versions starting from 13.11 before 13.11.7, all versions starting from 13.12 before 13.12.8, and all versions starting from 14.0 before 14.…	CWE-79 Cross-site Scripting	CVE-2021-22234	2024-11-21 14:49	2021-08-6	Show	GitHub Exploit DB Packet Storm