Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
132501	7.5	重要 Network	Apache Software Foundation オラクル	Apache Thrift Apache Hive Oracle Communications Cloud Native Core Network Slice Selection Function	Apache Thrift におけるリソースの枯渇に関する脆弱性	CWE-400 リソースの枯渇	CVE-2020-13949	2021-12-1 09:55	2020-06-8	Show	GitHub Exploit DB Packet Storm

132502	7.5	重要 Network	JefferyHus	es6-crawler-detect	es6-crawler-detect における脆弱性	CWE-Other その他	CVE-2020-28501	2021-12-1 09:54	2020-12-6	Show	GitHub Exploit DB Packet Storm

132503	9.8	緊急 Network	Apache Software Foundation	Apache Open For Business Project (OFBiz)	Apache OFBiz における信頼できないデータのデシリアライゼーションに関する脆弱性	CWE-502 信頼性のないデータのデシリアライゼーション	CVE-2021-26295	2021-12-1 09:54	2021-03-21	Show	GitHub Exploit DB Packet Storm

132504	8.8	重要 Network	Mozilla Foundation	Mozilla Firefox Mozilla Firefox ESR Mozilla Thunderbird	Mozilla Firefox および Thunderbird における型の取り違えに関する脆弱性	CWE-843 型の取り違え	CVE-2021-23954	2021-12-1 09:53	2021-01-26	Show	GitHub Exploit DB Packet Storm

132505	6.1	警告 Network	Remark42	Remark42	remark42 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-29271	2021-11-30 17:58	2021-03-26	Show	GitHub Exploit DB Packet Storm

132506	6.1	警告 Network	microco	bluemonday	bluemonday におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-29272	2021-11-30 17:58	2021-03-27	Show	GitHub Exploit DB Packet Storm

132507	6.1	警告 Network	Redmine	Redmine	Redmine におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2021-29274	2021-11-30 17:58	2021-03-26	Show	GitHub Exploit DB Packet Storm

132508	9.8	緊急 Network	gitjacker project	gitjacker	gitjacker におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2021-29417	2021-11-30 17:58	2021-03-29	Show	GitHub Exploit DB Packet Storm

132509	7.1	重要 Network	ネットギア	ProSAFE Network Management System	NETGEAR ProSAFE Network Management System におけるパストラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2021-27272	2021-11-30 17:35	2021-03-30	Show	GitHub Exploit DB Packet Storm

132510	8.8	重要 Network	ネットギア	ProSAFE Network Management System	NETGEAR ProSAFE Network Management System における OS コマンドインジェクションの脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2021-27273	2021-11-30 17:35	2021-03-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
359841	-	compaq	insight_manager_xe	Buffer overflow in Compaq Insight Manager XE 2.1b and earlier allows remote attackers to execute arbitrary code via (1) SNMP and (2) DMI.	NVD-CWE-Other	CVE-2001-0840	2008-09-6 05:25	2001-12-6	Show	GitHub Exploit DB Packet Storm

359842	-	cisco	12000_router	Cisco 12000 with IOS 12.0 and lines card based on Engine 2 does not properly handle an outbound ACL when an input ACL is not configured on all the interfaces of a multi port line card, which could al…	NVD-CWE-Other	CVE-2001-0866	2008-09-6 05:25	2001-12-6	Show	GitHub Exploit DB Packet Storm

359843	-	oracle	database_server	dbsnmp in Oracle 8.0.5 and 8.1.5, under certain conditions, trusts the PATH environment variable to find and execute the (1) chown or (2) chgrp commands, which allows local users to execute arbitrary…	NVD-CWE-Other	CVE-2001-0943	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359844	-	glftpd	glftpd	glFTPD 1.23 allows remote attackers to cause a denial of service (CPU consumption) via a LIST command with an argument that contains a large number of * (asterisk) characters.	NVD-CWE-Other	CVE-2001-0965	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359845	-	nudester.org	nudester	Directory traversal vulnerability in Nudester 1.10 and earlier allows remote attackers to read or write arbitrary files via a .. (dot dot) in the CD (CWD) command.	NVD-CWE-Other	CVE-2001-0966	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359846	-	knox_software	arkeia	Knox Arkeia server 4.2, and possibly other versions, installs its root user with a null password by default, which allows local and remote users to gain privileges.	NVD-CWE-Other	CVE-2001-0968	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359847	-	aci	4d_webserver	Directory traversal vulnerability in ACI 4d webserver allows remote attackers to read arbitrary files via a .. (dot dot) or drive letter (e.g., C:) in an HTTP request.	NVD-CWE-Other	CVE-2001-0971	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359848	-	fraunhofer_fit	bscw	BSCW groupware system 3.3 through 4.0.2 beta allows remote attackers to read or modify arbitrary files by uploading and extracting a tar file with a symlink into the data-bag space.	NVD-CWE-Other	CVE-2001-0973	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359849	-	hp	process_resource_manager	Vulnerability in HP Process Resource Manager (PRM) C.01.08.2 and earlier, as used by HP-UX Workload Manager (WLM), allows local users to gain root privileges via modified libraries or environment var…	NVD-CWE-Other	CVE-2001-0976	2008-09-6 05:25	2001-08-31	Show	GitHub Exploit DB Packet Storm

359850	-	hp	hp-ux	login in HP-UX 10.26 does not record failed login attempts in /var/adm/btmp, which could allow attackers to conduct brute force password guessing attacks without being detected or observed using the …	NVD-CWE-Other	CVE-2001-0978	2008-09-6 05:25	2001-09-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed