Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228171	9.3	危険	マイクロソフト	-	Microsoft .NET Framework の S.DS.P 名前空間メソッドにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0003	2013-01-16 15:01	2013-01-8	Show	GitHub Exploit DB Packet Storm

228172	7.8	危険	マイクロソフト	-	Microsoft .NET Framework および Windows Server 2012 におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0005	2013-01-16 14:59	2013-01-8	Show	GitHub Exploit DB Packet Storm

228173	3.5	注意	OpenStack	-	OpenStack Keystone における承認の制限を回避される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-5571	2013-01-16 14:44	2012-11-28	Show	GitHub Exploit DB Packet Storm

228174	5.8	警告	Orchard Project	-	Orchard の Users/Account/LogOff におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-5252	2013-01-16 14:31	2011-12-21	Show	GitHub Exploit DB Packet Storm

228175	4.3	警告	レッドハット	-	JBoss Application Server 用 IronJacamar コンテナにおけるアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2012-3428	2013-01-15 17:56	2012-08-2	Show	GitHub Exploit DB Packet Storm

228176	2.1	注意	オラクル	-	Oracle Mojarra におけるコンテキスト情報を取得される脆弱性	CWE-DesignError	CVE-2012-2672	2013-01-15 17:54	2012-06-17	Show	GitHub Exploit DB Packet Storm

228177	10	危険	Apache Software Foundation	-	Apache CXF における脆弱性	CWE-noinfo 情報不足	CVE-2012-2379	2013-01-15 17:53	2012-05-14	Show	GitHub Exploit DB Packet Storm

228178	4.3	警告	Apache Software Foundation	-	Apache HTTP Server の mod_negotiation モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2008-0455	2013-01-15 17:51	2008-01-24	Show	GitHub Exploit DB Packet Storm

228179	4.4	警告	rssh	-	rssh におけるシェルのアクセス制限を回避される脆弱性	CWE-Other その他	CVE-2012-2252	2013-01-15 14:59	2012-11-27	Show	GitHub Exploit DB Packet Storm

228180	4.4	警告	rssh	-	Debian および Fedora で使用される rssh におけるシェルのアクセス制限を回避される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2251	2013-01-15 14:58	2013-01-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194431	7.5	HIGH Network	microsoft	visual_studio_2017 visual_studio_2019 .net .net_core powershell_core	.NET Core and Visual Studio Denial of Service Vulnerability	NVD-CWE-noinfo	CVE-2021-26423	2024-11-21 14:56	2021-08-13	Show	GitHub Exploit DB Packet Storm

194432	9.8	CRITICAL Network	dreamsecurity	magicline4nx.exe	A vulnerability in PKI Security Solution of Dream Security could allow arbitrary command execution. This vulnerability is due to insufficient validation of the authorization certificate. An attacker …	CWE-20 CWE-120 Improper Input Validation Classic Buffer Overflow	CVE-2021-26606	2024-11-21 14:56	2021-08-7	Show	GitHub Exploit DB Packet Storm

194433	9.8	CRITICAL Network	unidocs	ezpdfreader	An improper input validation vulnerability in the service of ezPDFReader allows attacker to execute arbitrary command. This issue occurred when the ezPDF launcher received and executed crafted input …	CWE-20 Improper Input Validation	CVE-2021-26605	2024-11-21 14:56	2021-08-6	Show	GitHub Exploit DB Packet Storm

194434	7.5	HIGH Network	hp	edgeline_infrastructure_management	A potential security vulnerability has been identified in the HPE Edgeline Infrastructure Manager, also known as HPE Edgeline Infrastructure Management Software. The vulnerability could be remotely e…	NVD-CWE-noinfo	CVE-2021-26586	2024-11-21 14:56	2021-08-6	Show	GitHub Exploit DB Packet Storm

194435	7.1	HIGH Local	dm_fingertool_project	dm_fingertool	DM FingerTool v1.19 in the DM PD065 Secure USB is susceptible to improper authentication by a replay attack, allowing local attackers to bypass user authentication and access all features and data on…	CWE-294 Authentication Bypass by Capture-replay	CVE-2021-26824	2024-11-21 14:56	2021-07-26	Show	GitHub Exploit DB Packet Storm

194436	6.1	MEDIUM Network	omeka	omeka	Cross Site Scripting (XSS) vulnerability in admin/files/edit in Omeka Classic <=2.7 allows remote attackers to inject arbitrary web script or HTML.	CWE-79 Cross-site Scripting	CVE-2021-26799	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

194437	5.4	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite before 7.10.3-rev4 and 7.10.4 before 7.10.4-rev4 allows SSRF via a shared SVG document that is mishandled by the imageconverter component when the .png extension is used.	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2021-26699	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

194438	6.1	MEDIUM Network	open-xchange	open-xchange_appsuite	OX App Suite before 7.10.3-rev32 and 7.10.4 before 7.10.4-rev18 allows XSS via a code snippet (user-generated content) when a sharing link is created and the dl parameter is used.	CWE-79 Cross-site Scripting	CVE-2021-26698	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

194439	9.8	CRITICAL Network	phpgurukul	student_record_system	SQL injection vulnerability in PHPGurukul Student Record System 4.0 allows remote attackers to execute arbitrary SQL statements, via the sid parameter to edit-sub.php.	CWE-89 SQL Injection	CVE-2021-26765	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

194440	8.8	HIGH Network	phpgurukul	student_record_system	SQL injection vulnerability in PHPGurukul Student Record System v 4.0 allows remote attackers to execute arbitrary SQL statements, via the id parameter to edit-std.php.	CWE-89 SQL Injection	CVE-2021-26764	2024-11-21 14:56	2021-07-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed