Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228421 | 7.5 | 危険 | webmastersite | - | WSN Guest の index.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0672 | 2012-12-20 19:28 | 2010-02-22 | Show | GitHub Exploit DB Packet Storm |
| 228422 | 5 | 警告 | xs4all | - | JAG における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2010-0665 | 2012-12-20 19:28 | 2010-02-19 | Show | GitHub Exploit DB Packet Storm |
| 228423 | 7.5 | 危険 | flex project | - | Fast Lexical Analyzer Generator における脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0634 | 2012-12-20 19:28 | 2010-02-12 | Show | GitHub Exploit DB Packet Storm |
| 228424 | 7.5 | 危険 | webguerilla | - | Joomla! 用の Photoblog コンポーネントにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0610 | 2012-12-20 19:28 | 2010-02-11 | Show | GitHub Exploit DB Packet Storm |
| 228425 | 4.3 | 警告 | sterlitetechnologies | - | Sterlite SAM300 AX Router の Forms/status_statistics_1 におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0607 | 2012-12-20 19:28 | 2010-02-11 | Show | GitHub Exploit DB Packet Storm |
| 228426 | 7.5 | 危険 | サン・マイクロシステムズ | - | Oracle OpenSolaris のデフォルト設定における脆弱性 |
CWE-16
環境設定 |
CVE-2010-0559 | 2012-12-20 19:28 | 2010-01-25 | Show | GitHub Exploit DB Packet Storm |
| 228427 | 7.5 | 危険 | サン・マイクロシステムズ | - | Oracle OpenSolaris のデフォルト設定における脆弱性 |
CWE-16
環境設定 |
CVE-2010-0558 | 2012-12-20 19:28 | 2010-01-25 | Show | GitHub Exploit DB Packet Storm |
| 228428 | 5 | 警告 | Xerox | - | Xerox WorkCentre 6400 System Software および Net Controller の Network Controller における "ディレクトリ構造" へアクセスされる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0549 | 2012-12-20 19:28 | 2010-01-22 | Show | GitHub Exploit DB Packet Storm |
| 228429 | 5 | 警告 | Xerox | - | Xerox WorkCentre 5632 などにおけるメールボックスへアクセスされる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-0548 | 2012-12-20 19:28 | 2010-01-22 | Show | GitHub Exploit DB Packet Storm |
| 228430 | 4.3 | 警告 | SugarCRM | - | SugarCRM のオンライン Documents 機能におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0465 | 2012-12-20 19:28 | 2010-03-19 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194431 | 6.1 |
MEDIUM
Network |
zettlr | zettlr | No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file. |
CWE-79
Cross-site Scripting |
CVE-2021-26835 | 2024-11-21 14:56 | 2021-06-18 | Show | GitHub Exploit DB Packet Storm |
| 194432 | 5.4 |
MEDIUM
Network |
znote | znote | A cross-site scripting (XSS) vulnerability exists in Znote 0.5.2. An attacker can insert payloads, and the code execution will happen immediately on markdown view mode. |
CWE-79
Cross-site Scripting |
CVE-2021-26834 | 2024-11-21 14:56 | 2021-06-18 | Show | GitHub Exploit DB Packet Storm |
| 194433 | 7.5 |
HIGH
Network |
hitachienergy | esoms | Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain access to report data if the URL used to access the report is discovered. This issue affects: Hita… |
CWE-863
Incorrect Authorization |
CVE-2021-26845 | 2024-11-21 14:56 | 2021-06-15 | Show | GitHub Exploit DB Packet Storm |
| 194434 | 5.4 |
MEDIUM
Network |
openplcproject | scadabr | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system_settings.shtm. |
CWE-79
Cross-site Scripting |
CVE-2021-26829 | 2024-11-21 14:56 | 2021-06-11 | Show | GitHub Exploit DB Packet Storm |
| 194435 | 8.8 |
HIGH
Network |
openplcproject | scadabr | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm. |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2021-26828 | 2024-11-21 14:56 | 2021-06-11 | Show | GitHub Exploit DB Packet Storm |
| 194436 | 9.8 |
CRITICAL
Network |
apache debian fedoraproject oracle netapp |
http_server debian_linux fedora instantis_enterprisetrack enterprise_manager_ops_center zfs_storage_appliance_kit secure_backup cloud_backup |
In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow |
CWE-787
Out-of-bounds Write |
CVE-2021-26691 | 2024-11-21 14:56 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 194437 | 7.5 |
HIGH
Network |
apache debian fedoraproject oracle |
http_server debian_linux fedora instantis_enterprisetrack enterprise_manager_ops_center zfs_storage_appliance_kit |
Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Cookie header handled by mod_session can cause a NULL pointer dereference and crash, leading to a possible Denial Of Service |
CWE-476
NULL Pointer Dereference |
CVE-2021-26690 | 2024-11-21 14:56 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 194438 | 5.5 |
MEDIUM
Local |
xen arm broadcom intel fedoraproject |
xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k fedora |
Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2021-26314 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 194439 | 5.5 |
MEDIUM
Local |
xen arm broadcom intel debian |
xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k debian_linux |
Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorre… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2021-26313 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 194440 | 7.1 |
HIGH
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Server Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26420 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |