Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
248611 7.5 危険 badongo - Campus Bulletin Board における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2492 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
248612 9.3 危険 ebay - eBay Enhanced Picture Uploader ActiveX コントロールにおける任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2008-2475 2012-06-26 16:02 2009-06-9 Show GitHub Exploit DB Packet Storm
248613 6.5 警告 beaussier - RoomPHPlanning の admin/userform.php における新規に admin アカウントを作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-2488 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
248614 10 危険 emule - eMule Plus における詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2008-2486 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
248615 6.8 警告 badongo - phpFix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2479 2012-06-26 16:02 2008-05-28 Show GitHub Exploit DB Packet Storm
248616 6.8 警告 entertainmentscript - EntertainmentScript の page.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2459 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
248617 4.3 警告 4shared - Starsgames Control Panel の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2458 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
248618 7.5 危険 bitmixsoft - PHP-Jokesite の jokes_category.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2457 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
248619 7.5 危険 comicshout - ComicShout の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2456 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
248620 7.5 危険 e107coders - e107用 MacGuru BLOG Engine プラグインの comment.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2455 2012-06-26 16:02 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196521 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. It is possible to start a Linux telnetd as root on port 26/tcp by using the CLI interface commands of ddd and shell (or tshell). CWE-787
 Out-of-bounds Write 		CVE-2021-27171 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196522 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. By default, there are no firewall rules for IPv6 connectivity, exposing the internal management interfaces to the Internet. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-27170 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196523 9.8 CRITICAL
Network 		fiberhome an5506-04-fa_firmware An issue was discovered on FiberHome AN5506-04-FA devices with firmware RP2631. There is a gepon password for the gepon account. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27169 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196524 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. There is a 6GFJdY4aAuUKJjdtSn7d password for the rdsadmin account. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27168 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196525 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. There is a password of four hexadecimal characters for the admin account. These characters are generated in init_3bb_password in l… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27167 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196526 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The password for the enable command is gpon. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27166 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196527 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The telnet daemon on port 23/tcp can be abused with the gpon/gpon credentials. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27165 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196528 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / aisadmin credentials for an ISP. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27164 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196529 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded admin / tele1234 credentials for an ISP. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27163 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm
196530 9.8 CRITICAL
Network 		fiberhome hg6245d_firmware An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials for an ISP. CWE-798
 Use of Hard-coded Credentials 		CVE-2021-27162 2024-11-21 14:57 2021-02-11 Show GitHub Exploit DB Packet Storm