Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228271 3.5 注意 Net Genius - Drupal 用 MultiLink モジュールにおける任意のノードタイトルを読まれる脆弱性 CWE-200
情報漏えい 		CVE-2012-5589 2012-12-28 16:04 2012-11-28 Show GitHub Exploit DB Packet Storm
228272 2.6 注意 Matthias Hutterer - Drupal 用 Email Field モジュールにおける電子メールを送信される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5588 2012-12-28 16:02 2012-11-28 Show GitHub Exploit DB Packet Storm
228273 4.3 警告 Matthias Hutterer - Drupal 用 Email Field モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5587 2012-12-28 15:58 2012-11-28 Show GitHub Exploit DB Packet Storm
228274 2.1 注意 Marc Ingram - Drupal 用 Services モジュールにおける任意のユーザの電子メールにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5586 2012-12-28 15:57 2012-11-28 Show GitHub Exploit DB Packet Storm
228275 2.1 注意 Mixpanel Project - Drupal 用 Mixpanel モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-5585 2012-12-28 15:50 2012-11-28 Show GitHub Exploit DB Packet Storm
228276 4.3 警告 Made to Order Software - Drupal 用 Table of Contents モジュールにおけるノードのヘッダを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5584 2012-12-28 15:49 2012-11-14 Show GitHub Exploit DB Packet Storm
228277 6.8 警告 Sensio Labs - Symfony における任意のサービスにアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6432 2012-12-28 15:20 2012-12-20 Show GitHub Exploit DB Packet Storm
228278 6.4 警告 Sensio Labs - Symfony における URI の制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-6431 2012-12-28 15:18 2012-12-20 Show GitHub Exploit DB Packet Storm
228279 4.3 警告 Sebastian Heinlein
Canonical		 - Ubuntu の Aptdaemon における任意のパッケージレポジトリの GPG キーをインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0962 2012-12-28 15:03 2012-12-17 Show GitHub Exploit DB Packet Storm
228280 2.1 注意 Debian - Ubuntu で使用される APT における重要なシェル情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-0961 2012-12-28 14:59 2012-12-12 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194381 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.7 and 2.67.x before 2.67.4. If g_byte_array_new_take() was called with a buffer of 4GB or more on a 64-bit platform, the length would be truncated mo… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27218 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194382 9.8 CRITICAL
Network 		pystemon_project pystemon config.py in pystemon before 2021-02-13 allows code execution via YAML deserialization because SafeLoader and safe_load are not used. CWE-502
 Deserialization of Untrusted Data 		CVE-2021-27213 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
194383 6.1 MEDIUM
Network 		horde
debian 		groupware
debian_linux 		An XSS issue was discovered in Horde Groupware Webmail Edition through 5.2.22 (where the Horde_Text_Filter library before 2.3.7 is used). The attacker can send a plain text e-mail message, with JavaS… CWE-79
Cross-site Scripting 		CVE-2021-26929 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
194384 7.5 HIGH
Network 		openldap
debian 		openldap
debian_linux 		In OpenLDAP through 2.4.57 and 2.5.x through 2.5.1alpha, an assertion failure in slapd can occur in the issuerAndThisUpdateCheck function via a crafted packet, resulting in a denial of service (daemo… CWE-617
 Reachable Assertion 		CVE-2021-27212 2024-11-21 14:57 2021-02-14 Show GitHub Exploit DB Packet Storm
194385 6.5 MEDIUM
Network 		tp-link archer_c5v_firmware TP-Link Archer C5v 1.7_181221 devices allows remote attackers to retrieve cleartext credentials via [USER_CFG#0,0,0,0,0,0#0,0,0,0,0,0]0,0 to the /cgi?1&5 URI. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27210 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
194386 7.1 HIGH
Local 		tp-link archer_c5v_firmware In the management interface on TP-Link Archer C5v 1.7_181221 devices, credentials are sent in a base64 format over cleartext HTTP. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-27209 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
194387 8.1 HIGH
Network 		pelco digital_sentry_server DSUtility.dll in Pelco Digital Sentry Server before 7.19.67 has an arbitrary file write vulnerability. The AppendToTextFile method doesn't check if it's being called from the application or from a ma… CWE-346
 Origin Validation Error 		CVE-2021-27197 2024-11-21 14:57 2021-02-13 Show GitHub Exploit DB Packet Storm
194388 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local copy of self-destructed messages in a sandbox path, leading to sensitive information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27205 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
194389 5.5 MEDIUM
Local 		telegram telegram Telegram before 7.4 (212543) Stable on macOS stores the local passcode in cleartext, leading to information disclosure. CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27204 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm
194390 7.5 HIGH
Network 		xn--b1agzlht fx_aggregator_terminal_client The Sovremennye Delovye Tekhnologii FX Aggregator terminal client 1 allows attackers to cause a denial of service (access suspended for five hours) by making five invalid login attempts to a victim's… CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-27188 2024-11-21 14:57 2021-02-12 Show GitHub Exploit DB Packet Storm