Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 6 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
248641 9 危険 アバイア - Avaya Communication Manager の Web 管理インターフェースにおける root 権限を取得される脆弱性 CWE-noinfo
情報不足
CVE-2008-6710 2012-06-26 16:10 2008-06-25 Show GitHub Exploit DB Packet Storm
248642 4.3 警告 butterflymedia - Butterfly Organizer におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6700 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
248643 7.5 危険 frank naegler
TYPO3 Association
- TYPO3 の timtab_sociable における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2008-6695 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
248644 4.3 警告 david cadu
TYPO3 Association
- TYPO3 の dcdgooglemap におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6687 2012-06-26 16:10 2009-04-10 Show GitHub Exploit DB Packet Storm
248645 4.3 警告 The Dojo Foundation - Dojo の dijit.Editor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2008-6681 2012-06-26 16:10 2009-04-9 Show GitHub Exploit DB Packet Storm
248646 7.5 危険 dirk bartley - nweb2fax の viewrq.php における任意のコードを実行される脆弱性 CWE-78
OSコマンド・インジェクション
CVE-2008-6669 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
248647 5 警告 dirk bartley - nweb2fax におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル
CVE-2008-6668 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
248648 6.8 警告 anantasoft - Ananta CMS の change.php における管理者の権限を取得される脆弱性 CWE-94
コード・インジェクション
CVE-2008-6665 2012-06-26 16:10 2009-04-8 Show GitHub Exploit DB Packet Storm
248649 4.3 警告 AVG Technologies
Linux
- AVG Anti-Virus におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認
CVE-2008-6662 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
248650 5 警告 BitDefender
Linux
- Bitdefender のスキャンエンジンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題
CVE-2008-6661 2012-06-26 16:10 2009-04-7 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196871 7.5 HIGH
Network
mozilla thunderbird Thunderbird unprotects a secret OpenPGP key prior to using it for a decryption, signing or key import task. If the task runs into a failure, the secret key may remain in memory in its unprotected sta… CWE-312
 Cleartext Storage of Sensitive Information
CVE-2021-29950 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196872 2.5 LOW
Local
mozilla thunderbird Signatures are written to disk before and read during verification, which might be subject to a race condition when a malicious local process or user is replacing the file. This vulnerability affects… CWE-362
Race Condition
CVE-2021-29948 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196873 8.8 HIGH
Network
mozilla firefox Mozilla developers and community members reported memory safety bugs present in Firefox 87. Some of these bugs showed evidence of memory corruption and we presume that with enough effort some of thes… CWE-787
 Out-of-bounds Write
CVE-2021-29947 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196874 6.5 MEDIUM
Network
mozilla firefox
firefox_esr
thunderbird
The Mozilla Maintenance Service granted SERVICE_START access to BUILTIN|Users which, in a domain network, grants normal remote users access to start or stop the service. This could be used to prevent… CWE-269
 Improper Privilege Management
CVE-2021-29951 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196875 7.8 HIGH
Local
mozilla thunderbird When loading the shared library that provides the OTR protocol implementation, Thunderbird will initially attempt to open it using a filename that isn't distributed by Thunderbird. If a computer has … CWE-427
 Uncontrolled Search Path Element
CVE-2021-29949 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196876 8.8 HIGH
Network
mozilla thunderbird
firefox
firefox_esr
Ports that were written as an integer overflow above the bounds of a 16-bit integer could have bypassed port blocking restrictions when used in the Alt-Svc header. This vulnerability affects Firefox … CWE-190
 Integer Overflow or Wraparound
CVE-2021-29946 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196877 6.5 MEDIUM
Network
mozilla firefox
firefox_esr
thunderbird
The WebAssembly JIT could miscalculate the size of a return type, which could lead to a null read and result in a crash. *Note: This issue only affected x86-32 platforms. Other platforms are unaffect… CWE-682
 Incorrect Calculation
CVE-2021-29945 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196878 6.1 MEDIUM
Network
mozilla firefox Lack of escaping allowed HTML injection when a webpage was viewed in Reader View. While a Content Security Policy prevents direct code execution, HTML injection is still possible. *Note: This issue o… CWE-79
Cross-site Scripting
CVE-2021-29944 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196879 8.8 HIGH
Network
oracle opengrok Vulnerability in OpenGrok (component: Web App). Versions that are affected are 1.6.7 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via HTTPS to compro… CWE-91
Blind XPath Injection
CVE-2021-2322 2024-11-21 15:02 2021-06-24 Show GitHub Exploit DB Packet Storm
196880 8.8 HIGH
Network
cloverdx cloverdx A Cross Site Request Forgery (CSRF) issue in Server Console in CloverDX through 5.9.0 allows remote attackers to execute any action as the logged-in user (including script execution). The issue is re… CWE-352
 Origin Validation Error
CVE-2021-29995 2024-11-21 15:02 2021-06-10 Show GitHub Exploit DB Packet Storm