Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
232361	7.5	危険	xyssl	-	XySSL の ssl_parse_client_key_exchange 関数における鍵を回復される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7128	2012-12-20 19:10	2009-08-31	Show	GitHub Exploit DB Packet Storm

232362	7.5	危険	zkup	-	zKup CMS における管理者権限を取得される脆弱性	CWE-287 不適切な認証	CVE-2008-7124	2012-12-20 19:10	2009-08-31	Show	GitHub Exploit DB Packet Storm

232363	6.8	警告	zkup	-	zKup CMS の admin/configuration/modifier.php における任意の PHP コード挿入される脆弱性	CWE-94 コード・インジェクション	CVE-2008-7123	2012-12-20 19:10	2009-08-31	Show	GitHub Exploit DB Packet Storm

232364	7.5	危険	WeBid Support	-	WeBid auction script の item.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7119	2012-12-20 19:10	2009-08-28	Show	GitHub Exploit DB Packet Storm

232365	5	警告	WeBid Support	-	WeBid auction script における SQL クエリログを取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7118	2012-12-20 19:10	2009-08-28	Show	GitHub Exploit DB Packet Storm

232366	5	警告	WeBid Support	-	WeBid auction script の eledicss.php における任意のカスケードスタイルシートファイル (CSS) を変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2008-7117	2012-12-20 19:10	2009-08-28	Show	GitHub Exploit DB Packet Storm

232367	7.5	危険	WeBid Support	-	WeBid auction script の admin panel における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-7116	2012-12-20 19:10	2009-08-28	Show	GitHub Exploit DB Packet Storm

232368	4.3	警告	phpcart	-	Carmosa phpCart におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-7108	2012-12-20 19:10	2009-08-28	Show	GitHub Exploit DB Packet Storm

232369	5	警告	ソフォス	-	Microsoft Exchange 用の Sophos PureMessage におけるスキャン保護のリモート回避をされる脆弱性	CWE-Other その他	CVE-2008-7106	2012-12-20 19:10	2009-08-27	Show	GitHub Exploit DB Packet Storm

232370	5	警告	ソフォス	-	Microsoft Exchange 用の Sophos PureMessage におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2008-7105	2012-12-20 19:10	2009-08-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
200331	6.7	MEDIUM Local	dell	poweredge_r640_firmware poweredge_r740_firmware poweredge_r740xd_firmware poweredge_r940_firmware poweredge_r840_firmware poweredge_r940xa_firmware poweredge_t640_firmware powere…	Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and T640 Server BIOS contain a heap-based buffer overflow vulnerability in systems with NVDIMM-N installed. A local malicious us…	CWE-787 Out-of-bounds Write	CVE-2021-21555	2024-11-21 14:48	2021-06-15	Show	GitHub Exploit DB Packet Storm

200332	6.7	MEDIUM Local	dell	poweredge_r640_firmware poweredge_r740_firmware poweredge_r740xd_firmware poweredge_r940_firmware poweredge_r840_firmware poweredge_r940xa_firmware poweredge_mx740c_firmware powe…	Dell PowerEdge R640, R740, R740XD, R840, R940, R940xa, MX740c, MX840c, and, Dell Precision 7920 Rack Workstation BIOS contain a stack-based buffer overflow vulnerability in systems with Intel Optane …	CWE-787 Out-of-bounds Write	CVE-2021-21554	2024-11-21 14:48	2021-06-15	Show	GitHub Exploit DB Packet Storm

200333	6.5	MEDIUM Network	otrs	otrs	DoS attack can be performed when an email contains specially designed URL in the body. It can lead to the high CPU usage and cause low quality of service, or in extreme case bring the system to a hal…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-21439	2024-11-21 14:48	2021-06-14	Show	GitHub Exploit DB Packet Storm

200334	9.6	CRITICAL Network	wire	restund	Restund is an open source NAT traversal server. The restund TURN server can be instructed to open a relay to the loopback address range. This allows you to reach any other service running on localhos…	CWE-862 Missing Authorization	CVE-2021-21382	2024-11-21 14:48	2021-06-12	Show	GitHub Exploit DB Packet Storm

200335	9.8	CRITICAL Network	accusoft	imagegear	A heap-based buffer overflow vulnerability exists in the PSD read_icc_icCurve_data functionality of Accusoft ImageGear 19.9. A specially crafted malformed file can lead to an integer overflow that, i…	CWE-787 Out-of-bounds Write	CVE-2021-21795	2024-11-21 14:48	2021-06-12	Show	GitHub Exploit DB Packet Storm

200336	6.1	MEDIUM Network	jenkins	kiuwan	Jenkins Kiuwan Plugin 1.6.0 and earlier does not escape query parameters in an error message for a form validation endpoint, resulting in a reflected cross-site scripting (XSS) vulnerability.	CWE-79 Cross-site Scripting	CVE-2021-21666	2024-11-21 14:48	2021-06-11	Show	GitHub Exploit DB Packet Storm

200337	8.8	HIGH Network	jenkins	xebialabs_xl_deploy	A cross-site request forgery (CSRF) vulnerability in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified credential…	CWE-352 Origin Validation Error	CVE-2021-21665	2024-11-21 14:48	2021-06-11	Show	GitHub Exploit DB Packet Storm

200338	6.5	MEDIUM Network	jenkins	xebialabs_xl_deploy	An incorrect permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Generic Create permission to connect to an attacker-specified URL using attacker-specified…	CWE-863 Incorrect Authorization	CVE-2021-21664	2024-11-21 14:48	2021-06-11	Show	GitHub Exploit DB Packet Storm

200339	4.3	MEDIUM Network	jenkins	xebialabs_xl_deploy	A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 7.5.8 and earlier allows attackers with Overall/Read permission to connect to an attacker-specified URL using attacker-specified crede…	-	CVE-2021-21663	2024-11-21 14:48	2021-06-11	Show	GitHub Exploit DB Packet Storm

200340	4.3	MEDIUM Network	jenkins	xebialabs_xl_deploy	A missing permission check in Jenkins XebiaLabs XL Deploy Plugin 10.0.1 and earlier allows attackers with Overall/Read permission to enumerate credentials ID of credentials stored in Jenkins.	-	CVE-2021-21662	2024-11-21 14:48	2021-06-11	Show	GitHub Exploit DB Packet Storm