Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227961 5 警告 Xerox - Xerox WorkCentre 6400 System Software および Net Controller の Network Controller における "ディレクトリ構造" へアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2010-0549 2012-12-20 19:28 2010-01-22 Show GitHub Exploit DB Packet Storm
227962 5 警告 Xerox - Xerox WorkCentre 5632 などにおけるメールボックスへアクセスされる脆弱性 CWE-200
情報漏えい 		CVE-2010-0548 2012-12-20 19:28 2010-01-22 Show GitHub Exploit DB Packet Storm
227963 4.3 警告 SugarCRM - SugarCRM のオンライン Documents 機能におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0465 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
227964 5 警告 Roundcube.net - Roundcube における Web メールユーザのネットワークロケーションを特定される脆弱性 CWE-200
情報漏えい 		CVE-2010-0464 2012-12-20 19:28 2010-01-29 Show GitHub Exploit DB Packet Storm
227965 7.5 危険 yoflash - Joomla! 用の Mochigames における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0459 2012-12-20 19:28 2010-01-28 Show GitHub Exploit DB Packet Storm
227966 4.3 警告 PunBB - PunBB の forum/viewtopic.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0455 2012-12-20 19:28 2010-01-28 Show GitHub Exploit DB Packet Storm
227967 7.5 危険 SystemTap - SystemTap の stap-server における脆弱性 CWE-noinfo
情報不足 		CVE-2010-0412 2012-12-20 19:28 2010-02-24 Show GitHub Exploit DB Packet Storm
227968 7.5 危険 phpgroupware - phpgw における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0404 2012-12-20 19:28 2010-05-19 Show GitHub Exploit DB Packet Storm
227969 6.8 警告 phpgroupware - phpgw の about.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-0403 2012-12-20 19:28 2010-05-19 Show GitHub Exploit DB Packet Storm
227970 9.3 危険 thegreenbow - TheGreenBow IPSec VPN Client の vpnconf.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0392 2012-12-20 19:28 2010-01-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195021 5.3 MEDIUM
Network 		browserslist_project browserslist The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries. CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23364 2024-11-21 14:51 2021-04-29 Show GitHub Exploit DB Packet Storm
195022 7.5 HIGH
Network 		postcss postcss The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused … CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23382 2024-11-21 14:51 2021-04-27 Show GitHub Exploit DB Packet Storm
195023 9.1 CRITICAL
Network 		tyk tyk-identity-broker The package github.com/tyktechnologies/tyk-identity-broker before 1.1.1 are vulnerable to Authentication Bypass via the Go XML parser which can cause SAML authentication bypass. This is because the X… CWE-287
Improper Authentication 		CVE-2021-23365 2024-11-21 14:51 2021-04-26 Show GitHub Exploit DB Packet Storm
195024 9.8 CRITICAL
Network 		killing_project killing This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec fu… CWE-78
OS Command  		CVE-2021-23381 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195025 7.3 HIGH
Network 		roar-pidusage_project roar-pidusage This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to exe… CWE-78
OS Command  		CVE-2021-23380 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195026 9.8 CRITICAL
Network 		portkiller_project portkiller This affects all versions of package portkiller. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process ex… CWE-78
OS Command  		CVE-2021-23379 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195027 9.8 CRITICAL
Network 		picotts_project picotts This affects all versions of package picotts. If attacker-controlled user input is given to the say function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c… CWE-78
OS Command  		CVE-2021-23378 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195028 9.8 CRITICAL
Network 		onion-oled-js_project onion-oled-js This affects all versions of package onion-oled-js. If attacker-controlled user input is given to the scroll function, it is possible for an attacker to execute arbitrary commands. This is due to use… CWE-78
OS Command  		CVE-2021-23377 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195029 9.8 CRITICAL
Network 		ffmpegdotjs_project ffmpegdotjs This affects all versions of package ffmpegdotjs. If attacker-controlled user input is given to the trimvideo function, it is possible for an attacker to execute arbitrary commands. This is due to us… CWE-78
OS Command  		CVE-2021-23376 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195030 9.8 CRITICAL
Network 		psnode_project psnode This affects all versions of package psnode. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c… CWE-78
OS Command  		CVE-2021-23375 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm