Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 6, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228201 7.5 危険 shopex - ECShop の search.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2042 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
228202 4.3 警告 php-calendar project - PHP-Calendar の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2041 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
228203 4.3 警告 V-EVA - V-EVA Shopzilla Affiliate Script PHP の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2040 2012-12-20 19:29 2010-05-25 Show GitHub Exploit DB Packet Storm
228204 1.9 注意 wolfram research - Mathematica における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2027 2012-12-20 19:29 2010-05-24 Show GitHub Exploit DB Packet Storm
228205 6.8 警告 sebrac.webcindario - MigasCMS の function.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2012 2012-12-20 19:29 2010-05-24 Show GitHub Exploit DB Packet Storm
228206 4.3 警告 proxy2 - Advanced Poll の misc/get_admin.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2003 2012-12-20 19:29 2010-05-20 Show GitHub Exploit DB Packet Storm
228207 2.1 注意 ron jerome - Drupal 用の Bibliography モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2000 2012-12-20 19:29 2010-05-12 Show GitHub Exploit DB Packet Storm
228208 2.1 注意 Saurused Ltd. - Saurus CMS の admin/edit.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1997 2012-12-20 19:29 2010-05-20 Show GitHub Exploit DB Packet Storm
228209 2.1 注意 tomatocms - TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1996 2012-12-20 19:29 2010-05-20 Show GitHub Exploit DB Packet Storm
228210 2.1 注意 tomatocms - TomatoCMS の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1995 2012-12-20 19:29 2010-05-20 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 6, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194561 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability in the markdown editor. It can be exploited by making a victim a Leader of a group which triggers the payload for … CWE-79
Cross-site Scripting 		CVE-2021-25989 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
194562 5.4 MEDIUM
Network 		if-me ifme In “ifme”, versions 1.0.0 to v7.31.4 are vulnerable against stored XSS vulnerability (notifications section) which can be directly triggered by sending an ally request to the admin. CWE-79
Cross-site Scripting 		CVE-2021-25988 2024-11-21 14:55 2021-12-29 Show GitHub Exploit DB Packet Storm
194563 3.3 LOW
Local 		samsung pay Improper export of Android application components vulnerability in Samsung Pay (India only) prior to version 4.1.77 allows attacker to access Bill Pay and Recharge menu without authentication. NVD-CWE-Other
CVE-2021-25527 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194564 5.5 MEDIUM
Local 		samsung blockchain_wallet Intent redirection vulnerability in Samsung Blockchain Wallet prior to version 1.3.02.8 allows attacker to execute privileged action. NVD-CWE-Other
CVE-2021-25526 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194565 6.5 MEDIUM
Adjacent 		samsung pay Improper check or handling of exception conditions vulnerability in Samsung Pay (US only) prior to version 4.0.65 allows attacker to use NFC without user recognition. CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-25525 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194566 3.3 LOW
Local 		samsung contacts Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25524 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194567 3.3 LOW
Local 		samsung dialer Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25523 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194568 3.3 LOW
Local 		samsung smart_capture Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission. CWE-922
 Insecure Storage of Sensitive Information 		CVE-2021-25522 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194569 3.3 LOW
Local 		samsung internet Insecure caller check in sharevia deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to get current tab URL in Samsung Internet. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2021-25521 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm
194570 6.1 MEDIUM
Network 		samsung internet Insecure caller check and input validation vulnerabilities in SearchKeyword deeplink logic prior to Samsung Internet 16.0.2 allows unstrusted applications to execute script codes in Samsung Internet. CWE-79
Cross-site Scripting 		CVE-2021-25520 2024-11-21 14:55 2021-12-9 Show GitHub Exploit DB Packet Storm