Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 25, 2026, 10:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248591	7.5	危険	dzoic	-	DZOIC Handshakes の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2781	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248592	6.4	警告	albinoloverats	-	encrypt の Anubis プラグインにおける暗号化されたデータと乱数のパディングを識別される脆弱性	CWE-310 暗号の問題	CVE-2008-2780	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248593	9.3	危険	globalscape	-	GlobalSCAPE CuteFTP Home および CuteFTP Pro におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2779	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248594	4.3	警告	dt centrepiece	-	DT Centrepiece の search.asp におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2776	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248595	7.5	危険	dt centrepiece	-	DT Centrepiece の search.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2775	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248596	7.5	危険	cartkeeper	-	CartKeeper CKGold Shopping Cart の item.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2774	2012-06-26 16:02	2008-06-19	Show	GitHub Exploit DB Packet Storm

248597	6.8	警告	efiction	-	eFiction の toplists.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2754	2012-06-26 16:02	2008-06-18	Show	GitHub Exploit DB Packet Storm

248598	7.5	危険	gryphon	-	Gryphon gllcTS2 の login.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2746	2012-06-26 16:02	2008-06-17	Show	GitHub Exploit DB Packet Storm

248599	9.3	危険	black ice	-	Black Ice Software Annotation プラグインの BiAnno ActiveX コントロールにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2008-2745	2012-06-26 16:02	2008-06-17	Show	GitHub Exploit DB Packet Storm

248600	7.5	危険	Achievo	-	Achievo の mcpuk ファイルエディタにおける任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2008-2742	2012-06-26 16:02	2008-06-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 25, 2026, 4:04 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196521	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to start a Linux telnetd as root on port 26/tcp by using the CLI interface commands of ddd and shell (or tshell).	CWE-787 Out-of-bounds Write	CVE-2021-27171	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196522	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. By default, there are no firewall rules for IPv6 connectivity, exposing the internal management interfaces to the Internet.	CWE-922 Insecure Storage of Sensitive Information	CVE-2021-27170	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196523	9.8	CRITICAL Network	fiberhome	an5506-04-fa_firmware	An issue was discovered on FiberHome AN5506-04-FA devices with firmware RP2631. There is a gepon password for the gepon account.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27169	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196524	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. There is a 6GFJdY4aAuUKJjdtSn7d password for the rdsadmin account.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27168	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196525	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. There is a password of four hexadecimal characters for the admin account. These characters are generated in init_3bb_password in l…	CWE-798 Use of Hard-coded Credentials	CVE-2021-27167	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196526	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The password for the enable command is gpon.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27166	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196527	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The telnet daemon on port 23/tcp can be abused with the gpon/gpon credentials.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27165	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196528	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / aisadmin credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27164	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196529	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / tele1234 credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27163	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

196530	9.8	CRITICAL Network	fiberhome	hg6245d_firmware	An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials for an ISP.	CWE-798 Use of Hard-coded Credentials	CVE-2021-27162	2024-11-21 14:57	2021-02-11	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed