Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227031 4.3 警告 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3872 2013-01-4 14:46 2012-12-28 Show GitHub Exploit DB Packet Storm
227032 3.5 注意 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3871 2013-01-4 14:22 2012-12-28 Show GitHub Exploit DB Packet Storm
227033 3.5 注意 Open Constructor - Open Constructor におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-3870 2013-01-4 14:22 2012-12-28 Show GitHub Exploit DB Packet Storm
227034 3.3 注意 サムスン - 複数の Samsung Galaxy デバイス上の Android 用 SamsungDive におけるデバイスの発見を妨害される脆弱性 CWE-200
情報漏えい 		CVE-2012-6337 2013-01-4 14:07 2012-12-31 Show GitHub Exploit DB Packet Storm
227035 3.3 注意 Lookout Mobile Security - Lookout の端末捜索機能における任意の位置データに偽装される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6336 2013-01-4 14:04 2012-12-31 Show GitHub Exploit DB Packet Storm
227036 3.3 注意 AVG Technologies - Android 用 AVG AntiVirus の Anti-theft サービスにおける任意の位置データに偽装される脆弱性 CWE-noinfo
情報不足 		CVE-2012-6335 2013-01-4 14:03 2012-12-31 Show GitHub Exploit DB Packet Storm
227037 5.8 警告 IBM - IBM Security AppScan Enterprise および Rational Policy Tester における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0741 2013-01-4 12:09 2012-12-28 Show GitHub Exploit DB Packet Storm
227038 5.8 警告 IBM - IBM Security AppScan Enterprise および Rational Policy Tester における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-0738 2013-01-4 12:08 2012-12-28 Show GitHub Exploit DB Packet Storm
227039 5 警告 IBM
Apache Software Foundation
富士通
サイバートラスト株式会社
ヒューレット・パッカード
ターボリナックス
オラクル
日立
レッドハット		 - Apache Portable Utility ライブラリの apr_brigade_split_line 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2010-1623 2012-12-28 18:39 2010-10-1 Show GitHub Exploit DB Packet Storm
227040 2.6 注意 Google
Mozilla Foundation		 - 複数の製品で使用される SPDY プロトコルにおける平文の HTTP ヘッダを取得される脆弱性 CWE-310
暗号の問題 		CVE-2012-4930 2012-12-28 18:12 2012-09-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195541 6.5 MEDIUM
Network 		node-etsy-client_project node-etsy-client node-etsy-client is a NodeJs Etsy ReST API Client. Applications that are using node-etsy-client and reporting client error to the end user will offer api key value too This is fixed in node-etsy-clie… CWE-209
Information Exposure Through an Error Message 		CVE-2021-21421 2024-11-21 14:48 2021-04-2 Show GitHub Exploit DB Packet Storm
195542 7.8 HIGH
Local 		stripe stripe vscode-stripe is an extension for Visual Studio Code. A vulnerability in Stripe for Visual Studio Code extension exists when it loads an untrusted source-code repository containing malicious settings… NVD-CWE-noinfo
CVE-2021-21420 2024-11-21 14:48 2021-04-2 Show GitHub Exploit DB Packet Storm
195543 2.6 LOW
Network 		django-registration_project django-registration django-registration is a user registration package for Django. The django-registration package provides tools for implementing user-account registration flows in the Django web framework. In django-r… CWE-209
Information Exposure Through an Error Message 		CVE-2021-21416 2024-11-21 14:48 2021-04-2 Show GitHub Exploit DB Packet Storm
195544 5.4 MEDIUM
Network 		prestashop ps_emailsubscription ps_emailsubscription is a newsletter subscription module for the PrestaShop platform. An employee can inject javascript in the newsletter condition field that will then be executed on the front offic… - CVE-2021-21418 2024-11-21 14:48 2021-04-1 Show GitHub Exploit DB Packet Storm
195545 8.8 HIGH
Network 		accusoft imagegear An out-of-bounds write vulnerability exists in the SGI format buffer size processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An att… CWE-787
 Out-of-bounds Write 		CVE-2021-21782 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm
195546 8.8 HIGH
Network 		accusoft imagegear An out-of-bounds write vulnerability exists in the SGI Format Buffer Size Processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An att… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2021-21776 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm
195547 7.8 HIGH
Local 		accusoft imagegear An out-of-bounds write vulnerability exists in the TIFF header count-processing functionality of Accusoft ImageGear 19.8. A specially crafted malformed file can lead to memory corruption. An attacker… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-21773 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm
195548 9.6 CRITICAL
Adjacent 		isolated-vm_project isolated-vm isolated-vm is a library for nodejs which gives you access to v8's Isolate interface. Versions of isolated-vm before v4.0.0 have API pitfalls which may make it easy for implementers to expose suppose… - CVE-2021-21413 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm
195549 8.8 HIGH
Network 		\@thi.ng\/egf_project \@thi.ng\/egf Potential for arbitrary code execution in npm package @thi.ng/egf `#gpg`-tagged property values (only if `decrypt: true` option is enabled). PR with patch has been submitted and will has been release… - CVE-2021-21412 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm
195550 5.4 MEDIUM
Network 		prestashop prestashop PrestaShop is a fully scalable open source e-commerce solution. In PrestaShop before version 1.7.7.3, an attacker can inject HTML when the Grid Column Type DataColumn is badly used. The problem is fi… - CVE-2021-21398 2024-11-21 14:48 2021-03-31 Show GitHub Exploit DB Packet Storm