Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225181	4.3	警告	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 における別のドメインまたはゾーンからコンテンツを読まれる脆弱性	CWE-200 情報漏えい	CVE-2014-0293	2014-02-13 16:52	2014-02-11	Show	GitHub Exploit DB Packet Storm

225182	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0290	2014-02-13 16:51	2014-02-11	Show	GitHub Exploit DB Packet Storm

225183	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0289	2014-02-13 16:50	2014-02-11	Show	GitHub Exploit DB Packet Storm

225184	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0288	2014-02-13 16:49	2014-02-11	Show	GitHub Exploit DB Packet Storm

225185	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0287	2014-02-13 16:48	2014-02-11	Show	GitHub Exploit DB Packet Storm

225186	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0286	2014-02-13 16:46	2014-02-11	Show	GitHub Exploit DB Packet Storm

225187	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 6 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0285	2014-02-13 16:46	2014-02-11	Show	GitHub Exploit DB Packet Storm

225188	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 および 10 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0284	2014-02-13 16:45	2014-02-11	Show	GitHub Exploit DB Packet Storm

225189	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 9 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0283	2014-02-13 16:44	2014-02-11	Show	GitHub Exploit DB Packet Storm

225190	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer 8 から 11 における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2014-0281	2014-02-13 16:43	2014-02-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201041	8.1	HIGH Network	gallagher	command_centre_mobile_connect	Improper validation of the cloud certificate chain in Mobile Connect allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre …	CWE-295 Improper Certificate Validation	CVE-2021-23162	2024-11-21 14:51	2021-11-19	Show	GitHub Exploit DB Packet Storm

201042	6.8	MEDIUM Network	gallagher	command_centre_mobile_client	Improper validation of the cloud certificate chain in Mobile Client allows man-in-the-middle attack to impersonate the legitimate Command Centre Server. This issue affects: Gallagher Command Centre M…	CWE-295 Improper Certificate Validation	CVE-2021-23155	2024-11-21 14:51	2021-11-19	Show	GitHub Exploit DB Packet Storm

201043	7.5	HIGH Network	gallagher	command_centre	An Incomplete Comparison with Missing Factors vulnerability in the Gallagher Controller allows an attacker to bypass PIV verification. This issue affects: Gallagher Command Centre 8.40 versions prior…	CWE-697 Incorrect Comparison	CVE-2021-23146	2024-11-21 14:51	2021-11-19	Show	GitHub Exploit DB Packet Storm

201044	6.5	MEDIUM Network	llhttp oracle debian	llhttp graalvm debian_linux	The parser in accepts requests with a space (SP) right after the header name before the colon. This can lead to HTTP Request Smuggling (HRS) in llhttp < v2.1.4 and < v6.0.6.	CWE-444 HTTP Request Smuggling	CVE-2021-22959	2024-11-21 14:51	2021-11-16	Show	GitHub Exploit DB Packet Storm

201045	6.5	MEDIUM Network	llhttp oracle debian	llhttp graalvm debian_linux	The parse function in llhttp < 2.1.4 and < 6.0.6. ignores chunk extensions when parsing the body of chunked requests. This leads to HTTP Request Smuggling (HRS) under certain conditions.	CWE-444 HTTP Request Smuggling	CVE-2021-22960	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm

201046	6.1	MEDIUM Network	tempura_project	tempura	This affects the package tempura before 0.4.0. If the input to the esc function is of type object (i.e an array) it is returned without being escaped/sanitized, leading to a potential Cross-Site Scri…	CWE-79 Cross-site Scripting	CVE-2021-23784	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm

201047	9.8	CRITICAL Network	dotty_project	dotty	This affects the package dotty before 0.1.2. A type confusion vulnerability can lead to a bypass of CVE-2021-25912 when the user-provided keys used in the path parameter are arrays.	CWE-843 Type Confusion	CVE-2021-23624	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm

201048	9.8	CRITICAL Network	json-ptr_project	json-ptr	This affects the package json-ptr before 3.0.0. A type confusion vulnerability can lead to a bypass of CVE-2020-7766 when the user-provided keys used in the pointer parameter are arrays.	CWE-843 Type Confusion	CVE-2021-23509	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm

201049	6.1	MEDIUM Network	bootstrap-table	bootstrap_table	This affects versions before 1.19.1 of package bootstrap-table. A type confusion vulnerability can lead to a bypass of input sanitization when the input provided to the escapeHTML function is an arra…	CWE-843 Type Confusion	CVE-2021-23472	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm

201050	9.8	CRITICAL Network	jsonpointer_project	jsonpointer	This affects all versions of package json-pointer. A type confusion vulnerability can lead to a bypass of CVE-2020-7709 when the pointer components are arrays.	CWE-843 Type Confusion	CVE-2021-23820	2024-11-21 14:51	2021-11-4	Show	GitHub Exploit DB Packet Storm