Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 22, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228421 9.3 危険 SopCast - sopocx.ocx の SopCast SopCore ActiveX コントロールにおける任意のプログラムを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-0811 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228422 7.5 危険 xatrix - xGuestbook の login.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0810 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228423 7.5 危険 simple cmms - SimpleCMMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0808 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228424 7.5 危険 zfeeder - zFeeder における管理アクセス権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0807 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228425 5.4 警告 ziproxy - Ziproxy における Flash のアクセスコントロールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0804 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228426 5.4 警告 Smoothwall - SmoothWall Firewall などで使用されている SmoothWall SmoothGuardian における Flash などに対するアクセスコントロールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0803 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228427 5.4 警告 qbik - Qbik WinGate におけるアクセスコントロールを回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-0802 2012-12-20 19:10 2009-03-4 Show GitHub Exploit DB Packet Storm
228428 5 警告 サン・マイクロシステムズ - OpenJDK などの製品で使用されている Pulse-Java の src/java/org/classpath/icedtea/pulseaudio/PulseAudioTargetDataLine.java における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0794 2012-12-20 19:10 2009-04-7 Show GitHub Exploit DB Packet Storm
228429 4.3 警告 qip - QIP におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0769 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
228430 7.5 危険 yapbb - YapBB の forumhop.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-0768 2012-12-20 19:10 2009-03-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 23, 2026, 4:08 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195241 9.8 CRITICAL
Network 		gnu
redhat
fedoraproject
netapp 		gnutls
enterprise_linux
fedora
active_iq_unified_manager
e-series_performance_analyzer 		A flaw was found in gnutls. A use after free issue in client sending key_share extension may lead to memory corruption and other consequences. - CVE-2021-20231 2024-11-21 14:46 2021-03-13 Show GitHub Exploit DB Packet Storm
195242 7.8 HIGH
Local 		ntt-tx magicconnect Untrusted search path vulnerability in Installer of MagicConnect Client program distributed before 2021 March 1 allows an attacker to gain privileges and via a Trojan horse DLL in an unspecified dire… CWE-427
 Uncontrolled Search Path Element 		CVE-2021-20674 2024-11-21 14:46 2021-03-12 Show GitHub Exploit DB Packet Storm
195243 6.4 MEDIUM
Local 		linux
redhat 		linux_kernel
enterprise_linux 		A race condition was found in the Linux kernels implementation of the floppy disk drive controller driver software. The impact of this issue is lessened by the fact that the default permissions on th… - CVE-2021-20261 2024-11-21 14:46 2021-03-12 Show GitHub Exploit DB Packet Storm
195244 5.4 MEDIUM
Network 		ibm tivoli_netcool\/omnibus_webgui IBM Tivoli Netcool/OMNIbus_GUI 8.1.0 is vulnerable to stored cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended function… CWE-79
Cross-site Scripting 		CVE-2021-20336 2024-11-21 14:46 2021-03-12 Show GitHub Exploit DB Packet Storm
195245 6.5 MEDIUM
Network 		libjpeg-turbo
fedoraproject 		libjpeg-turbo
fedora 		Libjpeg-turbo versions 2.0.91 and 2.0.90 is vulnerable to a denial of service vulnerability caused by a divide by zero when processing a crafted GIF image. CWE-369
 Divide By Zero 		CVE-2021-20205 2024-11-21 14:46 2021-03-11 Show GitHub Exploit DB Packet Storm
195246 5.5 MEDIUM
Local 		linux
oracle 		linux_kernel
tekelec_platform_distribution 		A flaw was found in the way memory resources were freed in the unix_stream_recvmsg function in the Linux kernel when a signal was pending. This flaw allows an unprivileged local user to crash the sys… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-20265 2024-11-21 14:46 2021-03-11 Show GitHub Exploit DB Packet Storm
195247 4.8 MEDIUM
Network 		weseek growi Stored cross-site scripting vulnerability in Admin Page of GROWI (v4.2 Series) versions from v4.2.0 to v4.2.7 allows remote authenticated attackers to inject an arbitrary script via unspecified vecto… CWE-79
Cross-site Scripting 		CVE-2021-20673 2024-11-21 14:46 2021-03-10 Show GitHub Exploit DB Packet Storm
195248 6.1 MEDIUM
Network 		weseek growi Reflected cross-site scripting vulnerability due to insufficient verification of URL query parameters in GROWI (v4.2 Series) versions from v4.2.0 to v4.2.7 allows remote attackers to inject an arbitr… CWE-79
Cross-site Scripting 		CVE-2021-20672 2024-11-21 14:46 2021-03-10 Show GitHub Exploit DB Packet Storm
195249 7.2 HIGH
Network 		weseek growi Invalid file validation on the upload feature in GROWI versions v4.2.2 allows a remote attacker with administrative privilege to overwrite the files on the server, which may lead to arbitrary code ex… CWE-20
 Improper Input Validation  		CVE-2021-20671 2024-11-21 14:46 2021-03-10 Show GitHub Exploit DB Packet Storm
195250 7.5 HIGH
Network 		weseek growi Improper access control vulnerability in GROWI versions v4.2.2 and earlier allows a remote unauthenticated attacker to read the user's personal information and/or server's internal information via un… NVD-CWE-Other
CVE-2021-20670 2024-11-21 14:46 2021-03-10 Show GitHub Exploit DB Packet Storm