Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
232121 6.5 警告 YABSoft - YABSoft Mega File Hosting Script の members.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2521 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
232122 2.1 注意 sarab - SaraB の sarab.sh スクリプトにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2008-2517 2012-12-20 18:52 2008-06-3 Show GitHub Exploit DB Packet Storm
232123 5 警告 シマンテック - Symantec Backup Exec System Recovery Manager におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2512 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
232124 7.5 危険 WordPress.org - WordPress 用 Upload File プラグインにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2510 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232125 4.3 警告 tr script news - Tr Script News の news.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2508 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232126 7.5 危険 simpel side - Simpel Side Weblosning における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2506 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232127 4.3 警告 simpel side - Simpel Side Weblosning の result.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2505 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232128 7.5 危険 simpel side - Simpel Side Netbutik における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2504 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232129 9.3 危険 加藤和良 - eMule X-Ray の Uploadlist におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2008-2503 2012-12-20 18:52 2008-05-29 Show GitHub Exploit DB Packet Storm
232130 4.3 警告 quate - Quate CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2496 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
1111 - - - A command injection vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerability to e… CWE-78
OS Command  		CVE-2025-66273 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
1112 - - - A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker gains an administrator account, they can then exploit the vulnerabili… CWE-476
 NULL Pointer Dereference 		CVE-2025-62850 2026-06-10 13:17 2026-06-10 Show GitHub Exploit DB Packet Storm
1113 - - - QuTS hero is not affected. We have already fixed the vulnerability in the following version: QTS 5.2.7.3256 build 20250913 and later - CVE-2025-66276 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
1114 - - - A cross-site request forgery (CSRF) vulnerability has been reported to affect Notification Center. The remote attackers can then exploit the vulnerability to gain privileges or hijack user identities… CWE-352
 Origin Validation Error 		CVE-2025-58468 2026-06-10 12:16 2026-06-10 Show GitHub Exploit DB Packet Storm
1115 5.4 MEDIUM
Network 		- - WordPress Popup Builder 3.49 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by breaking out of option tags in the post_title … CWE-79
Cross-site Scripting 		CVE-2019-25744 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
1116 5.4 MEDIUM
Network 		- - WordPress Soliloquy Lite 2.5.6 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious scripts by inserting script tags in the post title fiel… CWE-79
Cross-site Scripting 		CVE-2019-25743 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
1117 5.4 MEDIUM
Network 		- - WordPress Theme Zoner Real Estate 4.1.1 contains a persistent cross-site scripting vulnerability that allows authenticated agents to inject malicious scripts through the Address input field when crea… CWE-79
Cross-site Scripting 		CVE-2019-25742 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
1118 5.4 MEDIUM
Network 		- - GigToDo 1.3 contains a persistent cross-site scripting vulnerability that allows authenticated attackers to inject malicious JavaScript and HTML code through the proposal description field. Attackers… CWE-79
Cross-site Scripting 		CVE-2019-25739 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
1119 6.1 MEDIUM
Network 		- - Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the chat input field. Attackers can submit pay… CWE-79
Cross-site Scripting 		CVE-2019-25737 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm
1120 6.1 MEDIUM
Network 		- - Zuz Music 2.1 contains a persistent cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious JavaScript by submitting crafted contact form data. Attackers can inje… CWE-79
Cross-site Scripting 		CVE-2019-25731 2026-06-10 11:16 2026-06-4 Show GitHub Exploit DB Packet Storm