Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 4 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
247951	9.3	危険	CA Technologies	-	DSM gui_cm_ctrls ActiveX コントロールにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2008-1786	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

247952	5	警告	advanced software engineering	-	Advanced Software Engineering ChartDirector の phpdemo/viewsource.php における重要な情報を読まれる脆弱性	CWE-200 情報漏えい	CVE-2008-1782	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

247953	6.8	警告	dragoon	-	Dragoon の includes/header.inc.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1773	2012-06-26 16:02	2008-04-14	Show	GitHub Exploit DB Packet Storm

247954	7.5	危険	Firefly Media Server	-	Firefly Media Server の ws_getpostvars 関数における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-1771	2012-06-26 16:02	2008-04-15	Show	GitHub Exploit DB Packet Storm

247955	9.3	危険	アカマイテクノロジーズ	-	Akamai Download Manager ActiveX コントロールにおける CRLF インジェクションの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2008-1770	2012-06-26 16:02	2008-06-4	Show	GitHub Exploit DB Packet Storm

247956	7.5	危険	blogator-script	-	Blogator-script の _blogadata/include/sond_result.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-1763	2012-06-26 16:02	2008-04-12	Show	GitHub Exploit DB Packet Storm

247957	6.8	警告	blogator-script	-	Blogator-script における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2008-1760	2012-06-26 16:02	2008-04-12	Show	GitHub Exploit DB Packet Storm

247958	4.3	警告	Alkacon Software	-	Alkacon OpenCMS の system/workplace/admin/workplace/sessions.jsp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-1753	2012-06-26 16:02	2008-04-11	Show	GitHub Exploit DB Packet Storm

247959	7.5	危険	achmad zaenuri	-	ezRADIUS における資格情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2008-1752	2012-06-26 16:02	2008-04-11	Show	GitHub Exploit DB Packet Storm

247960	6.8	警告	アップル	-	Apple QuickTime におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-1739	2012-06-26 16:02	2008-09-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199321	5.5	MEDIUM Local	google debian fedoraproject oracle netapp	protobuf debian_linux fedora mysql snapcenter oncommand_workflow_automation oncommand_insight active_iq_unified_manager	Nullptr dereference when a null char is present in a proto symbol. The symbol is parsed incorrectly, leading to an unchecked call into the proto file's name during generation of the resulting error m…	CWE-476 NULL Pointer Dereference	CVE-2021-22570	2024-11-21 14:50	2022-01-26	Show	GitHub Exploit DB Packet Storm

199322	9.8	CRITICAL Network	google	fuchsia	An incorrect setting of UXN bits within mmu_flags_to_s1_pte_attr lead to privileged executable pages being mapped as executable from an unprivileged context. This can be leveraged by an attacker to b…	CWE-732 Incorrect Permission Assignment for Critical Resource	CVE-2021-22566	2024-11-21 14:50	2022-01-18	Show	GitHub Exploit DB Packet Storm

199323	5.5	MEDIUM Local	google oracle	protobuf-kotlin protobuf-java google-protobuf communications_cloud_native_core_console communications_cloud_native_core_policy communications_cloud_native_core_network_repository_funct…	An issue in protobuf-java allowed the interleaving of com.google.protobuf.UnknownFieldSet fields in such a way that would be processed out of order. A small malicious payload can occupy the parser fo…	NVD-CWE-noinfo	CVE-2021-22569	2024-11-21 14:50	2022-01-10	Show	GitHub Exploit DB Packet Storm

199324	3.5	LOW Network	dart	dart_software_development_kit	Bidirectional Unicode text can be interpreted and compiled differently than how it appears in editors which can be exploited to get nefarious code passed a code review by appearing benign. An attacke…	NVD-CWE-Other	CVE-2021-22567	2024-11-21 14:50	2022-01-5	Show	GitHub Exploit DB Packet Storm

199325	9.8	CRITICAL Network	myscada	mypro	mySCADA myPRO: Versions 8.20.0 and prior has a feature where the API password can be specified, which may allow an attacker to inject arbitrary operating system commands through a specific parameter.	-	CVE-2021-22657	2024-11-21 14:50	2021-12-24	Show	GitHub Exploit DB Packet Storm

199326	8.8	HIGH Network	dart	dart_software_development_kit	When using the dart pub publish command to publish a package to a third-party package server, the request would be authenticated with an oauth2 access_token that is valid for publishing on pub.dev. U…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-22568	2024-11-21 14:50	2021-12-10	Show	GitHub Exploit DB Packet Storm

199327	6.5	MEDIUM Network	google	exposure_notification_verification_server	An attacker could prematurely expire a verification code, making it unusable by the patient, making the patient unable to upload their TEKs to generate exposure notifications. We recommend upgrading …	NVD-CWE-Other	CVE-2021-22565	2024-11-21 14:50	2021-12-9	Show	GitHub Exploit DB Packet Storm

199328	5.4	MEDIUM Network	huawei	imaster_nce-fabric_firmware	There is a XSS injection vulnerability in iMaster NCE-Fabric V100R019C10. A module of the client does not verify the input sufficiently. Attackers can exploit this vulnerability by modifying input af…	CWE-79 Cross-site Scripting	CVE-2021-22410	2024-11-21 14:50	2021-11-24	Show	GitHub Exploit DB Packet Storm

199329	6.5	MEDIUM Network	github	enterprise_server	A path traversal vulnerability was identified in GitHub Pages builds on GitHub Enterprise Server that could allow an attacker to read system files. To exploit this vulnerability, an attacker would ne…	CWE-22 Path Traversal	CVE-2021-22870	2024-11-21 14:50	2021-11-10	Show	GitHub Exploit DB Packet Storm

199330	5.5	MEDIUM Local	libjxl_project	libjxl	For certain valid JPEG XL images with a size slightly larger than an integer number of groups (256x256 pixels) when processing the groups out of order the decoder can perform an out of bounds copy of…	CWE-787 Out-of-bounds Write	CVE-2021-22564	2024-11-21 14:50	2021-11-1	Show	GitHub Exploit DB Packet Storm