Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 7, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228331 | 4 | 警告 | PulseCMS | - | Pulse CMS の view.php におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2010-1298 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228332 | 7.5 | 危険 | Zabbix | - | Zabbix の API における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1277 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228333 | 4.3 | 警告 | webtoolkit | - | Emweb Wt におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-1274 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228334 | 7.5 | 危険 | smart-plugs | - | smartplugs の showplugs.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1271 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228335 | 7.5 | 危険 | phpscripte24 | - | Multi Auktions Komplett System の auktion.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1270 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228336 | 7.5 | 危険 | phpscripte24 | - | phpscripte24 Niedrig Gebote Pro Auktions System II の auktion.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-1269 | 2012-12-20 19:29 | 2010-04-6 | Show | GitHub Exploit DB Packet Storm |
| 228337 | 6.8 | 警告 | stafford.uklinux | - | libESMTP の smtp-tls.c における信頼済み証明書を偽装される脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-1194 | 2012-12-20 19:29 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 228338 | 6.8 | 警告 | stafford.uklinux | - | libESMTP における任意の SSL サーバになりすまされる脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-1192 | 2012-12-20 19:29 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 228339 | 6.4 | 警告 | sahanafoundation | - | Sahana 災害管理システムにおけるアクセス制限を回避される脆弱性 |
CWE-287
不適切な認証 |
CVE-2010-1191 | 2012-12-20 19:29 | 2010-03-31 | Show | GitHub Exploit DB Packet Storm |
| 228340 | 10 | 危険 | SAP | - | SAP MaxDB の serv.exe におけるスタックベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-1185 | 2012-12-20 19:29 | 2010-03-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194371 | 7.8 |
HIGH
Local |
amd |
epyc_7003_firmware epyc_72f3_firmware epyc_7313_firmware epyc_7313p_firmware epyc_7343_firmware epyc_73f3_firmware epyc_7413_firmware epyc_7443_firmware epyc_7443p_firmware
When the AMD Platform Security Processor (PSP) boot rom loads, authenticates, and subsequently decrypts an encrypted FW, due to insufficient verification of the integrity of decrypted image, arbitrar…
|
CWE-345
|
Insufficient Verification of Data Authenticity
CVE-2021-26315
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194372 | 7.5 |
HIGH
Network |
amd |
epyc_7f72_firmware epyc_7f52_firmware epyc_7f32_firmware epyc_7h12_firmware epyc_7742_firmware epyc_7702_firmware epyc_7702p_firmware epyc_7662_firmware epyc_7642_firmware … |
Improper access controls in System Management Unit (SMU) may allow for an attacker to override performance control tables located in DRAM resulting in a potential lack of system resources. |
NVD-CWE-Other
|
CVE-2021-26338 | 2024-11-21 14:56 | 2021-11-17 | Show | GitHub Exploit DB Packet Storm |
| 194373 | 5.5 |
MEDIUM
Local |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
AMD System Management Unit (SMU) may experience an integer overflow when an invalid length is provided which may result in a potential loss of resources.
|
CWE-190
|
Integer Overflow or Wraparound
CVE-2021-26329
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194374 | 7.8 |
HIGH
Local |
amd |
epyc_7232p_firmware epyc_7763_firmware epyc_7713p_firmware epyc_7713_firmware epyc_7663_firmware epyc_7643_firmware epyc_75f3_firmware epyc_7543p_firmware epyc_7543_firmware
Failure to validate VM_HSAVE_PA during SNP_INIT may result in a loss of memory integrity.
|
CWE-665
|
Improper Initialization
CVE-2021-26326
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194375 | 7.5 |
HIGH
Network |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
Persistent platform private key may not be protected with a random IV leading to a potential “two time pad attack”.
|
CWE-330
|
Use of Insufficiently Random Values
CVE-2021-26322
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194376 | 5.5 |
MEDIUM
Local |
amd |
epyc_7601_firmware epyc_7551p_firmware epyc_7551_firmware epyc_7501_firmware epyc_7451_firmware epyc_7401_firmware epyc_7371_firmware epyc_7351p_firmware epyc_7351_firmware
Failure to flush the Translation Lookaside Buffer (TLB) of the I/O memory management unit (IOMMU) may lead an IO device to write to memory it should not be able to access, resulting in a potential lo…
|
CWE-668
|
Exposure of Resource to Wrong Sphere
CVE-2021-26312
|
2024-11-21 14:56 |
2021-11-17 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
| 194377 | 8.8 |
HIGH
Network |
talariax | sendquick_alert_plus_server_admin | A SQL Injection vulnerability in /appliance/shiftmgn.php in TalariaX sendQuick Alert Plus Server Admin 4.3 before 8HF11 allows attackers to obtain sensitive information via a Roster Time to Roster Ma… |
CWE-89
SQL Injection |
CVE-2021-26795 | 2024-11-21 14:56 | 2021-11-15 | Show | GitHub Exploit DB Packet Storm |
| 194378 | 7.5 |
HIGH
Network |
apache | shardingsphere-ui | Deserialization of Untrusted Data vulnerability of Apache ShardingSphere-UI allows an attacker to inject outer link resources. This issue affects Apache ShardingSphere-UI Apache ShardingSphere-UI ver… |
CWE-502
Deserialization of Untrusted Data |
CVE-2021-26558 | 2024-11-21 14:56 | 2021-11-11 | Show | GitHub Exploit DB Packet Storm |
| 194379 | 3.3 |
LOW
Local |
microsoft | azure_real_time_operating_system | Azure RTOS Information Disclosure Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26444 | 2024-11-21 14:56 | 2021-11-10 | Show | GitHub Exploit DB Packet Storm |
| 194380 | 9.0 |
CRITICAL
Adjacent |
microsoft |
windows_server_2019 windows_10 windows_server_2016 windows_server_2022 windows_11 |
Microsoft Virtual Machine Bus (VMBus) Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26443 | 2024-11-21 14:56 | 2021-11-10 | Show | GitHub Exploit DB Packet Storm |