Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248611 7.5 危険 dcfm blog - DCFM Blog の comments.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2671 2012-06-26 16:02 2008-06-11 Show GitHub Exploit DB Packet Storm
248612 5.1 警告 SUSE - SUSE openSUSE および他のプラットフォーム上の Courier Authentication Library における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2667 2012-06-26 16:02 2008-07-7 Show GitHub Exploit DB Packet Storm
248613 6.8 警告 Preben Bjorn Biermann Madsen - CMSimple の cmsimple/cms.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2650 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248614 7.5 危険 don3 - DesktopOnNet における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2649 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248615 7.5 危険 brim-project - Brim における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2645 2012-06-26 16:02 2008-06-10 Show GitHub Exploit DB Packet Storm
248616 4.3 警告 アドビシステムズ - 複数の Adobe 製品の Flex History Management 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2640 2012-06-26 16:02 2008-06-17 Show GitHub Exploit DB Packet Storm
248617 10 危険 1-script - 1Book の guestbook.php における任意の PHP コードをアップロードされる脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2638 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248618 4.3 警告 F5 Networks - F5 FirePass SSL VPN におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2637 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248619 9.3 危険 barad dur - BitKinex におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2635 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
248620 7.5 危険 bearrivernet.net - I-Pos Internet Pay Online Store の index.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2634 2012-06-26 16:02 2008-06-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196501 6.5 MEDIUM
Network 		tp-link archer_c5v_firmware TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27210 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
196502 7.1 HIGH
Local 		tp-link archer_c5v_firmware In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a base64 format over cleartext HTTP. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-27209 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
196503 8.1 HIGH
Network 		pelco digital_sentry_server DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a ma… CWE-346
 Origin Validation Error 		CVE-2021-27197 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
196504 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27205 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196505 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local passcode in cleartext, leading to information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27204 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196506 7.5 HIGH
Network 		xn--b1agzlht fx_aggregator_terminal_client The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 allows attackers to cause a denial of service (access suspended for five hours) by making five invalid login attempts to a victim's… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-27188 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196507 7.5 HIGH
Network 		xn--b1agzlht fx_aggregator_terminal_client The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 stores authentication credentials in cleartext in login.sav when the Save Password box is checked. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-27187 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196508 5.4 MEDIUM
Network 		peel peel_shopping A Stored Cross Site Scripting(XSS) Vulnerability was discovered in PEEL SHOPPING 9.3.0 and 9.4.0, which are publicly available. The user supplied input containing polyglot payload is echoed back in j… CWE-79
Cross-site Scripting 		CVE-2021-27190 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196509 7.5 HIGH
Network 		get-ip-range_project get-ip-range The get-ip-range package before 4.0.0 for Node.js is vulnerable to denial of service (DoS) if the range is untrusted input. An attacker could send a large range (such as 128.0.0.0/1) that causes reso… NVD-CWE-noinfo
CVE-2021-27191 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
196510 7.5 HIGH
Network 		pelco digital_sentry_server Pelco Digital Sentry Server 7.18.72.11464 has an XML External Entity vulnerability (exploitable via the DTD parameter entities technique), resulting in disclosure and retrieval of arbitrary data on t… CWE-611
XXE 		CVE-2021-27184 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm