Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232321 7.5 危険 stash - Stash の admin/login.php における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-4081 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
232322 6.8 警告 stash - Stash における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4080 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
232323 7.5 危険 zanfi solutions - Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4074 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
232324 7.5 危険 zanfi solutions - Zanfi Autodealers CMS AutOnline の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4073 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
232325 7.5 危険 phsdev - phsBlog の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4072 2012-12-20 18:52 2008-09-15 Show GitHub Exploit DB Packet Storm
232326 7.5 危険 texmedia - Million Pixel Script の tops_top.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-4055 2012-12-20 18:52 2008-09-11 Show GitHub Exploit DB Packet Storm
232327 4.6 警告 トレンドマイクロ - Trend Micro NSC モジュールの Trend Micro Personal Firewall サービスにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2008-3866 2012-12-20 18:52 2009-01-16 Show GitHub Exploit DB Packet Storm
232328 10 危険 トレンドマイクロ - Trend Micro NSC モジュールのファイアーウォールにおけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-3865 2012-12-20 18:52 2009-01-16 Show GitHub Exploit DB Packet Storm
232329 5 警告 トレンドマイクロ - Trend Micro NSC モジュールのファイアーウォールサービスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-3864 2012-12-20 18:52 2009-01-16 Show GitHub Exploit DB Packet Storm
232330 4 警告 softalk mail server - Softalk Mail Server の IMAP サーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2008-4041 2012-12-20 18:52 2008-09-11 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199821 10.0 CRITICAL
Network 		anker eufy_homebase_2_firmware An out-of-bounds write vulnerability exists in the CMD_DEVICE_GET_SERVER_LIST_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h in function recv_server_device_respon… CWE-1284
 Improper Validation of Specified Quantity in Input 		CVE-2021-21950 2024-11-21 14:49 2021-12-9 Show GitHub Exploit DB Packet Storm
199822 7.5 HIGH
Network 		gitlab gitlab Assuming a database breach, nonce reuse issues in GitLab 11.6+ allows an attacker to decrypt some of the database's encrypted content CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2021-22170 2024-11-21 14:49 2021-12-7 Show GitHub Exploit DB Packet Storm
199823 6.5 MEDIUM
Network 		vmware spring_advanced_message_queuing_protocol In Spring AMQP versions 2.2.0 - 2.2.19 and 2.3.0 - 2.3.11, the Spring AMQP Message object, in its toString() method, will create a new String object from the message body, regardless of its size. Thi… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-22095 2024-11-21 14:49 2021-12-1 Show GitHub Exploit DB Packet Storm
199824 9.8 CRITICAL
Network 		vmware vcenter_server The vSphere Web Client (FLEX/Flash) contains an SSRF (Server Side Request Forgery) vulnerability in the vSAN Web Client (vSAN UI) plug-in. A malicious actor with network access to port 443 on vCenter… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-22049 2024-11-21 14:49 2021-11-25 Show GitHub Exploit DB Packet Storm
199825 7.5 HIGH
Network 		vmware vcenter_server
cloud_foundation 		The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain acce… NVD-CWE-noinfo
CVE-2021-21980 2024-11-21 14:49 2021-11-25 Show GitHub Exploit DB Packet Storm
199826 5.9 MEDIUM
Network 		huawei ips_module_firmware
ngfw_module_firmware
secospace_usg6300_firmware
secospace_usg6500_firmware
secospace_usg6600_firmware
usg9500_firmware 		There is a weak secure algorithm vulnerability in Huawei products. A weak secure algorithm is used in a module. Attackers can exploit this vulnerability by capturing and analyzing the messages betwee… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2021-22356 2024-11-21 14:49 2021-11-24 Show GitHub Exploit DB Packet Storm
199827 8.8 HIGH
Network 		librecad
debian
fedoraproject 		libdxfrw
debian_linux
fedora 		A code execution vulnerability exists in the dwgCompressor::decompress18() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to an out-of-bounds write.… - CVE-2021-21898 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
199828 8.8 HIGH
Network 		librecad
debian
fedoraproject 		libdxfrw
debian_linux
fedora 		A code execution vulnerability exists in the dxfRW::processLType() functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dxf file can lead to a use-after-free vulnerability.… - CVE-2021-21900 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
199829 8.8 HIGH
Network 		librecad
fedoraproject
debian 		libdxfrw
fedora
debian_linux 		A code execution vulnerability exists in the dwgCompressor::copyCompBytes21 functionality of LibreCad libdxfrw 2.2.0-rc2-19-ge02f3580. A specially-crafted .dwg file can lead to a heap buffer overflow… - CVE-2021-21899 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
199830 6.5 MEDIUM
Network 		greenplum greenplum In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with … CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-22030 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm