Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226691 6.8 警告 SiliSoftware - phpThumb () の phpThumb.php における任意のコマンドを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1598 2012-12-20 19:29 2010-04-29 Show GitHub Exploit DB Packet Storm
226692 9.3 危険 zipgenius - ZipGenius の zqtips.dll におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1597 2012-12-20 19:29 2010-04-29 Show GitHub Exploit DB Packet Storm
226693 6.8 警告 The Support Incident Tracker Project - Support Incident Tracker における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-1596 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226694 4.3 警告 SilverStripe - SilverStripe におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1593 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226695 6.9 警告 SiSoftware - SiSoftware Sandra の Sandra Device Driver におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1592 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226696 7.2 危険 Beijing Rising International Software - Beijing Rising International Rising Antivirus における権限を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-1591 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226697 4.3 警告 vpasp - Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1590 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226698 5 警告 vpasp - Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1589 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226699 7.5 危険 vpasp - Rocksalt International VP-ASP Shopping Cart の shopsessionsubs.asp における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1588 2012-12-20 19:29 2010-04-28 Show GitHub Exploit DB Packet Storm
226700 2.1 注意 Steven Jones - Drupal 用の Context モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1584 2012-12-20 19:29 2010-05-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 19, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196171 7.8 HIGH
Local 		google android In shouldLockKeyguard of LockTaskController.java, there is a possible way to exit App Pinning without a PIN due to a permissions bypass. This could lead to local escalation of privilege with no addit… CWE-863
 Incorrect Authorization 		CVE-2021-0472 2024-11-21 14:42 2021-06-12 Show GitHub Exploit DB Packet Storm
196172 7.5 HIGH
Network 		google android In startIpClient of ClientModeImpl.java, there is a possible identifier which could be used to track a device. This could lead to remote information disclosure to a proximal attacker, with no additio… CWE-330
 Use of Insufficiently Random Values 		CVE-2021-0466 2024-11-21 14:42 2021-06-12 Show GitHub Exploit DB Packet Storm
196173 4.9 MEDIUM
Network 		intel secl-dc Improper input validation in an API for the Intel(R) Security Library before version 3.3 may allow a privileged user to potentially enable denial of service via network access. CWE-20
 Improper Input Validation  		CVE-2021-0134 2024-11-21 14:42 2021-06-10 Show GitHub Exploit DB Packet Storm
196174 8.1 HIGH
Network 		intel secl-dc Key exchange without entity authentication in the Intel(R) Security Library before version 3.3 may allow an authenticated user to potentially enable escalation of privilege via network access. NVD-CWE-Other
CVE-2021-0133 2024-11-21 14:42 2021-06-10 Show GitHub Exploit DB Packet Storm
196175 4.9 MEDIUM
Network 		intel secl-dc Missing release of resource after effective lifetime in an API for the Intel(R) Security Library before version 3.3 may allow a privileged user to potentially enable denial of service via network acc… CWE-772
 Missing Release of Resource after Effective Lifetime 		CVE-2021-0132 2024-11-21 14:42 2021-06-10 Show GitHub Exploit DB Packet Storm
196176 6.5 MEDIUM
Network 		intel secl-dc Use of cryptographically weak pseudo-random number generator (PRNG) in an API for the Intel(R) Security Library before version 3.3 may allow an authenticated user to potentially enable information di… CWE-338
 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) 		CVE-2021-0131 2024-11-21 14:42 2021-06-10 Show GitHub Exploit DB Packet Storm
196177 5.7 MEDIUM
Adjacent 		bluez
redhat
debian 		bluez
enterprise_linux
debian_linux 		Improper access control in BlueZ may allow an authenticated user to potentially enable information disclosure via adjacent access. NVD-CWE-Other
CVE-2021-0129 2024-11-21 14:42 2021-06-10 Show GitHub Exploit DB Packet Storm
196178 9.8 CRITICAL
Network 		juniper junos The use of multiple hard-coded cryptographic keys in cSRX Series software in Juniper Networks Junos OS allows an attacker to take control of any instance of a cSRX deployment through device managemen… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-0266 2024-11-21 14:42 2021-04-23 Show GitHub Exploit DB Packet Storm
196179 8.1 HIGH
Network 		juniper appformix An unvalidated REST API in the AppFormix Agent of Juniper Networks AppFormix allows an unauthenticated remote attacker to execute commands as root on the host running the AppFormix Agent, when certai… CWE-78
OS Command  		CVE-2021-0265 2024-11-21 14:42 2021-04-23 Show GitHub Exploit DB Packet Storm
196180 10.0 CRITICAL
Network 		juniper junos This issue is not applicable to NFX NextGen Software. On NFX Series devices the use of Hard-coded Credentials in Juniper Networks Junos OS allows an attacker to take over any instance of an NFX deplo… CWE-798
 Use of Hard-coded Credentials 		CVE-2021-0248 2024-11-21 14:42 2021-04-23 Show GitHub Exploit DB Packet Storm