Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
247781 6.5 警告 beaussier - RoomPHPlanning の admin/userform.php における新規に admin アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2488 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247782 10 危険 emule - eMule Plus における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-2486 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247783 6.8 警告 badongo - phpFix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2479 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
247784 6.8 警告 entertainmentscript - EntertainmentScript の page.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2459 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247785 4.3 警告 4shared - Starsgames Control Panel の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2458 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247786 7.5 危険 bitmixsoft - PHP-Jokesite の jokes_category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2457 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247787 7.5 危険 comicshout - ComicShout の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2456 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247788 7.5 危険 e107coders - e107用 MacGuru BLOG Engine プラグインの comment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2455 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247789 7.5 危険 ASP indir - Meto Forum における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2448 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
247790 7.5 危険 calogic - CaLogic Calendars の userreg.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2444 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199661 5.4 MEDIUM
Network 		hr_portal_project hr_portal The HR Portal of Soar Cloud System fails to manage access control. While obtaining user ID, remote attackers can access sensitive data via a specific data packet, such as user’s login information, fu… NVD-CWE-Other
CVE-2021-22853 2024-11-21 14:50 2021-02-17 Show GitHub Exploit DB Packet Storm
199662 7.5 HIGH
Network 		google gerrit Any git operation is passed through Jetty and a session is created. No expiry is set for the session and Jetty does not automatically dispose of the session. Over multiple git actions, this can lead … CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2021-22553 2024-11-21 14:50 2021-02-17 Show GitHub Exploit DB Packet Storm
199663 8.8 HIGH
Network 		changjia_property_management_system_project changjia_property_management_system Attackers can access the CGE account management function without privilege for permission elevation and execute arbitrary commands or files after obtaining user permissions. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-22858 2024-11-21 14:50 2021-02-17 Show GitHub Exploit DB Packet Storm
199664 7.5 HIGH
Network 		changjia_property_management_system_project changjia_property_management_system The CGE page with download function contains a Directory Traversal vulnerability. Attackers can use this loophole to download system files arbitrarily. CWE-22
Path Traversal 		CVE-2021-22857 2024-11-21 14:50 2021-02-17 Show GitHub Exploit DB Packet Storm
199665 7.5 HIGH
Network 		changjia_property_management_system_project changjia_property_management_system The CGE property management system contains SQL Injection vulnerabilities. Remote attackers can inject SQL commands into the parameters in Cookie and obtain data in the database without privilege. CWE-89
SQL Injection 		CVE-2021-22856 2024-11-21 14:50 2021-02-17 Show GitHub Exploit DB Packet Storm
199666 9.8 CRITICAL
Network 		microfocus operations_bridge_manager Arbitrary code execution vulnerability on Micro Focus Operations Bridge Manager product, affecting versions 10.1x, 10.6x, 2018.05, 2018.11, 2019.05, 2019.11, 2020.05, 2020.10. The vulnerability could… NVD-CWE-noinfo
CVE-2021-22504 2024-11-21 14:50 2021-02-13 Show GitHub Exploit DB Packet Storm
199667 9.8 CRITICAL
Network 		advantech iview Advantech iView versions prior to v5.7.03.6112 are vulnerable to a SQL injection, which may allow an attacker to escalate privileges to 'Administrator'. CWE-89
SQL Injection 		CVE-2021-22658 2024-11-21 14:50 2021-02-12 Show GitHub Exploit DB Packet Storm
199668 6.1 MEDIUM
Network 		rubyonrails
fedoraproject 		rails
fedora 		The Host Authorization middleware in Action Pack before 6.1.2.1, 6.0.3.5 suffers from an open redirect vulnerability. Specially crafted `Host` headers in combination with certain "allowed host" forma… CWE-601
Open Redirect 		CVE-2021-22881 2024-11-21 14:50 2021-02-12 Show GitHub Exploit DB Packet Storm
199669 7.5 HIGH
Network 		rubyonrails
fedoraproject 		rails
fedora 		The PostgreSQL adapter in Active Record before 6.1.2.1, 6.0.3.5, 5.2.4.5 suffers from a regular expression denial of service (REDoS) vulnerability. Carefully crafted input can cause the input validat… CWE-400
 Uncontrolled Resource Consumption 		CVE-2021-22880 2024-11-21 14:50 2021-02-12 Show GitHub Exploit DB Packet Storm
199670 7.5 HIGH
Network 		advantech iview Advantech iView versions prior to v5.7.03.6112 are vulnerable to directory traversal, which may allow an attacker to read sensitive files. CWE-22
Path Traversal 		CVE-2021-22656 2024-11-21 14:50 2021-02-12 Show GitHub Exploit DB Packet Storm