Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
248881	7.5	危険	Borland Software Corporation	-	Borland Interbase における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2008-2559	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248882	5	警告	creloaded	-	CRE Loaded におけるクッキーを傍受される脆弱性	CWE-310 暗号の問題	CVE-2008-2558	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248883	4.3	警告	creloaded	-	CRE Loaded におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2557	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248884	7.5	危険	easyway	-	EasyWay CMS の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2555	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248885	7.5	危険	bp blog	-	BP Blog における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2554	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248886	5	警告	Digium	-	Asterisk Addons の ooh323 チャネルドライバにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2008-2543	2012-06-26 16:02	2008-06-5	Show	GitHub Exploit DB Packet Storm

248887	7.5	危険	fkrauthan	-	Phoenix View CMS Pre Alpha2 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2535	2012-06-26 16:02	2008-06-3	Show	GitHub Exploit DB Packet Storm

248888	7.5	危険	fkrauthan	-	Phoenix View CMS Pre Alpha2 の admin/admin_frame.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2008-2534	2012-06-26 16:02	2008-06-3	Show	GitHub Exploit DB Packet Storm

248889	4.3	警告	fkrauthan	-	Phoenix View CMS Pre Alpha2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-2533	2012-06-26 16:02	2008-06-3	Show	GitHub Exploit DB Packet Storm

248890	7.5	危険	aj square	-	AJ Square aj-hyip の Forum/topic_detail.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2008-2532	2012-06-26 16:02	2008-06-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 28, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196191	5.3	MEDIUM Network	mediawiki debian fedoraproject	mediawiki debian_linux fedora	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. Blocked users are unable to use Special:ResetTokens. This has security relevance because a blocked user mi…	CWE-287 Improper Authentication	CVE-2021-30158	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196192	6.1	MEDIUM Network	mediawiki debian fedoraproject	mediawiki debian_linux fedora	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On ChangesList special pages such as Special:RecentChanges and Special:Watchlist, some of the rcfilters-fi…	CWE-79 Cross-site Scripting	CVE-2021-30157	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196193	6.1	MEDIUM Network	mediawiki debian fedoraproject	mediawiki debian_linux fedora	An issue was discovered in MediaWiki before 1.31.12 and 1.32.x through 1.35.x before 1.35.2. On Special:NewFiles, all the mediastatistics-header-* messages are output in HTML unescaped, leading to XS…	CWE-79 Cross-site Scripting	CVE-2021-30154	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196194	6.1	MEDIUM Network	contribsys debian	sidekiq debian_linux	Sidekiq through 5.1.3 and 6.x through 6.2.0 allows XSS via the queue name of the live-poll feature when Internet Explorer is used.	CWE-79 Cross-site Scripting	CVE-2021-30151	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196195	6.1	MEDIUM Network	ocproducts	composr	Composr 10.0.36 allows XSS in an XML script.	CWE-79 Cross-site Scripting	CVE-2021-30150	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196196	9.8	CRITICAL Network	ocproducts	composr	Composr 10.0.36 allows upload and execution of PHP files.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-30149	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196197	4.3	MEDIUM Network	glpi-project	dashboard	The Dashboard plugin through 1.0.2 for GLPI allows remote low-privileged users to bypass access control on viewing information about the last ten events, the connected users, and the users in the tec…	CWE-425 Direct Request ('Forced Browsing')	CVE-2021-30144	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196198	7.5	HIGH Network	friendica	friendica	Module/Settings/UserExport.php in Friendica through 2021.01 allows settings/userexport to be used by anonymous users, as demonstrated by an attempted access to an array offset on a value of type null…	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-30141	2024-11-21 15:03	2021-04-6	Show	GitHub Exploit DB Packet Storm

196199	6.1	MEDIUM Network	froala	froala_editor	Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink crea…	CWE-79 Cross-site Scripting	CVE-2021-30109	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

196200	6.1	MEDIUM Network	eng	knowage	Knowage Suite before 7.4 is vulnerable to cross-site scripting (XSS). An attacker can inject arbitrary external script in '/knowagecockpitengine/api/1.0/pages/execute' via the 'SBI_HOST' parameter.	CWE-79 Cross-site Scripting	CVE-2021-30058	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm