Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 28, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225031	4.3	警告	Messaging	-	TYPO3 用 UserTask Center、Messaging エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4749	2013-07-3 17:55	2013-01-28	Show	GitHub Exploit DB Packet Storm

225032	7.5	危険	Georg Ringer	-	TYPO3 用 News system エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4748	2013-07-3 17:55	2013-01-11	Show	GitHub Exploit DB Packet Storm

225033	4.3	警告	Kasper Skarhoj	-	TYPO3 用 Accessible browse results for indexed search エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4747	2013-07-3 17:54	2013-06-3	Show	GitHub Exploit DB Packet Storm

225034	4.3	警告	Kurt Gusbeth	-	TYPO3 用 My quiz and poll エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4746	2013-07-3 17:53	2013-02-19	Show	GitHub Exploit DB Packet Storm

225035	4.3	警告	Kurt Gusbeth	-	TYPO3 用 myquizpoll エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4745	2013-07-3 17:52	2008-06-7	Show	GitHub Exploit DB Packet Storm

225036	4.3	警告	Sebastian Bergmann	-	TYPO3 用 PHPUnit エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4744	2013-07-3 17:52	2013-01-11	Show	GitHub Exploit DB Packet Storm

225037	6.8	警告	X.Org Foundation Openchrome	-	Openchrome の X.org libchromeXvMC および libchromeXvMCPro における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-1994	2013-07-3 16:38	2013-05-23	Show	GitHub Exploit DB Packet Storm

225038	3.5	注意	TYPO3 Association	-	TYPO3 の function menu API におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6148	2013-07-3 16:05	2012-11-8	Show	GitHub Exploit DB Packet Storm

225039	3.5	注意	TYPO3 Association	-	TYPO3 の Backend API の tree render API におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6147	2013-07-3 16:05	2012-11-8	Show	GitHub Exploit DB Packet Storm

225040	3.5	注意	TYPO3 Association	-	TYPO3 の Backend History モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6145	2013-07-3 16:04	2012-11-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197751	5.5	MEDIUM Local	nvidia	virtual_gpu	NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager kernel mode driver (nvidia.ko), in which a pointer to a user-space buffer is not validated before it is dereferenced, which ma…	NVD-CWE-Other	CVE-2021-1100	2024-11-21 14:43	2021-07-21	Show	GitHub Exploit DB Packet Storm

197752	7.8	HIGH Local	nvidia	virtual_gpu	NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin) that could allow an attacker to cause stack-based buffer overflow and put a customized ROP gadget on the stack. …	CWE-787 Out-of-bounds Write	CVE-2021-1099	2024-11-21 14:43	2021-07-21	Show	GitHub Exploit DB Packet Storm

197753	7.8	HIGH Local	nvidia	virtual_gpu	NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it doesn't release some resources during driver unload requests from guests. This flaw allows a malicious…	CWE-404 Improper Resource Shutdown or Release	CVE-2021-1098	2024-11-21 14:43	2021-07-21	Show	GitHub Exploit DB Packet Storm

197754	7.8	HIGH Local	nvidia	virtual_gpu	NVIDIA vGPU software contains a vulnerability in the Virtual GPU Manager (vGPU plugin), where it improperly validates the length field in a request from a guest. This flaw allows a malicious guest to…	CWE-20 Improper Input Validation	CVE-2021-1097	2024-11-21 14:43	2021-07-21	Show	GitHub Exploit DB Packet Storm

197755	5.5	MEDIUM Local	google	android	In isRealSnapshot of TaskThumbnailView.java, there is possible data exposure due to a missing permission check. This could lead to local information disclosure from locked profiles with no additional…	CWE-862 Missing Authorization	CVE-2021-0654	2024-11-21 14:43	2021-07-14	Show	GitHub Exploit DB Packet Storm

197756	5.5	MEDIUM Local	google	android	In generateFileInfo of BluetoothOppSendFileInfo.java, there is a possible way to share private files over Bluetooth due to a confused deputy. This could lead to local information disclosure with no a…	NVD-CWE-Other	CVE-2021-0604	2024-11-21 14:43	2021-07-14	Show	GitHub Exploit DB Packet Storm

197757	7.8	HIGH Local	google	android	In onCreate of ContactSelectionActivity.java, there is a possible way to get access to contacts without permission due to a tapjacking/overlay attack. This could lead to local escalation of privilege…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-0603	2024-11-21 14:43	2021-07-14	Show	GitHub Exploit DB Packet Storm

197758	7.8	HIGH Local	google	android	In onCreateOptionsMenu of WifiNetworkDetailsFragment.java, there is a possible way for guest users to view and modify Wi-Fi settings for all configured APs due to a permissions bypass. This could lea…	CWE-200 Information Exposure	CVE-2021-0602	2024-11-21 14:43	2021-07-14	Show	GitHub Exploit DB Packet Storm

197759	5.5	MEDIUM Local	google	android	In encodeFrames of avc_enc_fuzzer.cpp, there is a possible out of bounds write due to a double free. This could lead to local information disclosure with no additional execution privileges needed. Us…	CWE-787 CWE-415 Out-of-bounds Write Double Free	CVE-2021-0601	2024-11-21 14:43	2021-07-14	Show	GitHub Exploit DB Packet Storm

197760	7.4	HIGH Network	cisco	dna_center	A vulnerability in the Cisco Identity Services Engine (ISE) integration feature of the Cisco DNA Center Software could allow an unauthenticated, remote attacker to gain unauthorized access to sensiti…	CWE-295 Improper Certificate Validation	CVE-2021-1134	2024-11-21 14:43	2021-06-29	Show	GitHub Exploit DB Packet Storm