Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248611 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
248612 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
248613 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248614 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248615 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248616 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
248617 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248618 4.3 警告 F5 Networks - F5 FirePass SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2637 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248619 9.3 危険 barad dur - BitKinex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2635 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248620 7.5 危険 bearrivernet.net - I-Pos Internet Pay Online Store の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2634 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196491 4.9 MEDIUM
Network 		mutare voice An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, password information for external systems is visible in cleartext. The Settings.asp page is… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27233 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196492 5.4 MEDIUM
Network 		hestiacp control_panel Hestia Control Panel 1.3.5 and below, in a shared-hosting environment, sometimes allows remote authenticated users to create a subdomain for a different customer's domain name, leading to spoofing of… NVD-CWE-noinfo
CVE-2021-27231 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196493 8.8 HIGH
Network 		mumble
debian 		mumble
debian_linux 		Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text. CWE-59
Link Following 		CVE-2021-27229 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196494 7.5 HIGH
Network 		steghide_project steghide steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data. CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2021-27211 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196495 8.8 HIGH
Network 		endian firewall_community Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment. CWE-78
OS Command  		CVE-2021-27201 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196496 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27219 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196497 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated mo… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27218 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
196498 9.8 CRITICAL
Network 		pystemon_project pystemon config.py in pystemon before 2021-02-13 allows code execution via YAML deserialization because SafeLoader and safe_load are not used. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-27213 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
196499 6.1 MEDIUM
Network 		horde
debian 		groupware
debian_linux 		An XSS issue was discovered in Horde Groupware Webmail Edition through 5.2.22 (where the Horde_Text_Filter library before 2.3.7 is used). The attacker can send a plain text e-mail message, with JavaS… CWE-79
Cross-site Scripting 		CVE-2021-26929 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
196500 7.5 HIGH
Network 		openldap
debian 		openldap
debian_linux 		In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemo… CWE-617
 Reachable Assertion 		CVE-2021-27212 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm