Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 21, 2026, 6:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
251501	7.5	危険	SoftbizScripts	-	Softbiz Article Directory Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4905	2012-02-9 11:12	2011-10-8	Show	GitHub Exploit DB Packet Storm

251502	7.5	危険	DrBenHur	-	DBHcms の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4869	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

251503	4.3	警告	W-Agora	-	W-Agora の search.php3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4868	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

251504	7.5	危険	W-Agora	-	W-Agora の search.php3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-4867	2012-02-9 11:10	2011-10-5	Show	GitHub Exploit DB Packet Storm

251505	7.5	危険	Chipmunk Scripts	-	Chipmunk Board の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4866	2012-02-9 11:09	2011-10-5	Show	GitHub Exploit DB Packet Storm

251506	7.5	危険	Jextensions	-	Joomla! 用 JE Guestbook (com_jeguestbook) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4865	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

251507	7.5	危険	Daniel James Scott	-	Joomla! 用 Club Manager (com_clubmanager) コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4864	2012-02-9 11:08	2011-10-5	Show	GitHub Exploit DB Packet Storm

251508	4.3	警告	The GetSimple Team	-	GetSimple CMS の admin/changedata.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4863	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

251509	7.5	危険	Joomla! Jextensions	-	Joomla! 用 JExtensions JE Director コンポーネントにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4862	2012-02-9 11:07	2011-10-5	Show	GitHub Exploit DB Packet Storm

251510	7.5	危険	webSPELL	-	webSPELL の asearch.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4861	2012-02-9 11:06	2011-10-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 21, 2026, 4:10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
248261	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…	CWE-20 Improper Input Validation	CVE-2017-8128	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248262	6.1	MEDIUM Network	huawei	uma	The UMA product with software V200R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch XSS attacks.	CWE-79 Cross-site Scripting	CVE-2017-8127	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248263	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…	CWE-20 Improper Input Validation	CVE-2017-8126	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248264	6.1	MEDIUM Network	huawei	uma	The UMA product with software V200R001 and V300R001 has a cross-site scripting (XSS) vulnerability due to insufficient input validation. An attacker could craft malicious links or scripts to launch X…	CWE-79 Cross-site Scripting	CVE-2017-8125	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248265	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…	CWE-20 Improper Input Validation	CVE-2017-8124	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248266	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…	CWE-20 Improper Input Validation	CVE-2017-8123	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248267	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packets to exploit…	CWE-20 Improper Input Validation	CVE-2017-8122	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248268	5.3	MEDIUM Network	huawei	uma	The UMA product with software V200R001 and V300R001 has an information leak vulnerability. An attacker could exploit them to obtain some sensitive information, causing information leak.	CWE-200 Information Exposure	CVE-2017-8121	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248269	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…	CWE-20 Improper Input Validation	CVE-2017-8120	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm

248270	9.8	CRITICAL Network	huawei	uma	The UMA product with software V200R001 and V300R001 has a privilege elevation vulnerability due to insufficient validation or improper processing of parameters. An attacker could craft specific packe…	CWE-20 Improper Input Validation	CVE-2017-8119	2024-11-21 12:33	2017-11-23	Show	GitHub Exploit DB Packet Storm