Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 10:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248611 9.3 危険 black ice - Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2684 2012-06-26 16:02 2008-06-12 Show GitHub Exploit DB Packet Storm
248612 9.3 危険 black ice - Black Ice Barcode SDK の BIDIB.BIDIBCtrl.1 ActiveX コントロールにおける任意のファイルのダウンロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2008-2683 2012-06-26 16:02 2008-06-12 Show GitHub Exploit DB Packet Storm
248613 7.5 危険 erfurtwiki - ErfurtWiki におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2672 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
248614 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
248615 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
248616 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248617 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248618 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248619 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
248620 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 26, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196461 9.8 CRITICAL
Network 		kollectapp kollect KollectApps before 4.8.16c is affected by insecure Java deserialization, leading to Remote Code Execution via a ysoserial.payloads.CommonsCollections parameter. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-27335 2024-11-21 14:57 2021-02-19 Show GitHub Exploit DB Packet Storm
196462 10.0 CRITICAL
Network 		frendi frendica Friendica 2021.01 allows SSRF via parse_url?binurl= for DNS lookups or HTTP requests to arbitrary domain names. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-27329 2024-11-21 14:57 2021-02-19 Show GitHub Exploit DB Packet Storm
196463 7.8 HIGH
Local 		xen
debian 		xen
debian_linux 		An issue was discovered in Xen through 4.11.x, allowing x86 Intel HVM guest OS users to achieve unintended read/write DMA access, and possibly cause a denial of service (host OS crash) or gain privil… NVD-CWE-Other
CVE-2021-27379 2024-11-21 14:57 2021-02-19 Show GitHub Exploit DB Packet Storm
196464 9.8 CRITICAL
Network 		rand_core_project rand_core An issue was discovered in the rand_core crate before 0.6.2 for Rust. Because read_u32_into and read_u64_into mishandle certain buffer-length checks, a random number generator may be seeded with too … CWE-131
Incorrect Calculation of Buffer Size 		CVE-2021-27378 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196465 9.8 CRITICAL
Network 		yottadb yottadb An issue was discovered in the yottadb crate before 1.2.0 for Rust. For some memory-allocation patterns, ydb_subscript_next_st and ydb_subscript_prev_st have a use-after-free. CWE-416
 Use After Free 		CVE-2021-27377 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196466 9.8 CRITICAL
Network 		nb-connect_project nb-connect An issue was discovered in the nb-connect crate before 1.0.3 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::S… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-27376 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196467 6.5 MEDIUM
Network 		doctor_appointment_system_project doctor_appointment_system SQL injection in the expertise parameter in search_result.php in Doctor Appointment System v1.0 allows an authenticated patient user to dump the database credentials via a SQL injection attack. CWE-89
SQL Injection 		CVE-2021-27124 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196468 5.3 MEDIUM
Network 		containous traefik Traefik before 2.4.5 allows the loading of IFRAME elements from other domains. CWE-1021
 Improper Restriction of Rendered UI Layers or Frames 		CVE-2021-27375 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196469 7.8 HIGH
Local 		denx u-boot The boot loader in Das U-Boot before 2021.04-rc2 mishandles use of unit addresses in a FIT. NVD-CWE-noinfo
CVE-2021-27138 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm
196470 7.8 HIGH
Local 		denx u-boot The boot loader in Das U-Boot before 2021.04-rc2 mishandles a modified FIT. NVD-CWE-noinfo
CVE-2021-27097 2024-11-21 14:57 2021-02-18 Show GitHub Exploit DB Packet Storm