Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 9, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228441 6.8 警告 オラクル - Oracle MySQL の MySQL Server における Server Optimizer の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2012-1703 2013-01-11 15:06 2012-04-17 Show GitHub Exploit DB Packet Storm
228442 6.4 警告 マイクロソフト - Microsoft Windows の SSL プロバイダコンポーネントにおける SSLv2 ダウングレード攻撃を実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-0013 2013-01-11 14:05 2013-01-8 Show GitHub Exploit DB Packet Storm
228443 10 危険 マイクロソフト - Microsoft Windows Server 2008 R2 および Windows 7 における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-0011 2013-01-11 14:05 2013-01-8 Show GitHub Exploit DB Packet Storm
228444 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0010 2013-01-11 14:04 2013-01-8 Show GitHub Exploit DB Packet Storm
228445 4.3 警告 マイクロソフト - Microsoft System Center Operations Manager におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0009 2013-01-11 14:02 2013-01-8 Show GitHub Exploit DB Packet Storm
228446 10 危険 マイクロソフト - Microsoft XML コアサービスにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-0007 2013-01-11 13:48 2013-01-8 Show GitHub Exploit DB Packet Storm
228447 6.8 警告 Maxtom - Atomymaxsite の index.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2012-6498 2013-01-9 11:59 2012-10-17 Show GitHub Exploit DB Packet Storm
228448 6.4 警告 レッドハット - JBoss Enterprise Application Platform における EJB へアクセスされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4550 2013-01-8 16:39 2012-12-18 Show GitHub Exploit DB Packet Storm
228449 5.8 警告 レッドハット - JBoss Enterprise Application Platform におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4549 2013-01-8 16:38 2012-12-18 Show GitHub Exploit DB Packet Storm
228450 5 警告 Apache Software Foundation - Apache CXF における子ポリシーを回避される脆弱性 CWE-200
情報漏えい 		CVE-2012-2378 2013-01-8 16:37 2012-12-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194291 9.8 CRITICAL
Network 		lucysecurity security_awareness LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file… CWE-78
OS Command  		CVE-2021-28132 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194292 9.8 CRITICAL
Network 		clipper_project clipper Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal AP… NVD-CWE-noinfo
CVE-2021-28134 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194293 9.8 CRITICAL
Network 		open5gs open5gs A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. The WebUI component allows an unauthenticated user to use a crafted HTTP API request to create, read, update, or… CWE-306
Missing Authentication for Critical Function 		CVE-2021-28122 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194294 9.8 CRITICAL
Network 		twinkletray twinkle_tray Twinkle Tray (aka twinkle-tray) through 1.13.3 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the… NVD-CWE-noinfo
CVE-2021-28119 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194295 5.3 MEDIUM
Network 		squid-cache
fedoraproject
debian 		squid
fedora
debian_linux 		Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for re… CWE-125
Out-of-bounds Read 		CVE-2021-28116 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194296 6.1 MEDIUM
Network 		ougc_feedback_project ougc_feedback The OUGC Feedback plugin before 1.8.23 for MyBB allows XSS via the comment field of feedback during an edit operation. CWE-79
Cross-site Scripting 		CVE-2021-28115 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194297 7.8 HIGH
Local 		deutschepost mailoptimizer Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution. CWE-22
Path Traversal 		CVE-2021-28042 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194298 7.1 HIGH
Network 		openbsd
fedoraproject
netapp
oracle 		openssh
fedora
cloud_backup
solidfire
hci_management_node
hci_compute_node_firmware
hci_storage_node_firmware
zfs_storage_appliance
communications_offline_mediation_controller 		ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an … CWE-415
 Double Free 		CVE-2021-28041 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194299 7.5 HIGH
Network 		ossec ossec An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem … CWE-674
 Uncontrolled Recursion 		CVE-2021-28040 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194300 6.5 MEDIUM
Local 		netapp cloud_backup
solidfire_baseboard_management_controller_firmware 		An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less-common configurations, an x86 PV guest OS user can crash a Dom0 or driver domain via a large amount of… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2021-28039 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm