Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 6, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228461 | 7.5 | 危険 | TYPO3 Association | - | TYPO3 用の User Links エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0339 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228462 | 7.5 | 危険 | TYPO3 Association | - | TYPO3 用の TT_Products エディタ エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0338 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228463 | 7.5 | 危険 | TYPO3 Association | - | TYPO3 用の tt_news Mail alert エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0337 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228464 | 5 | 警告 | TYPO3 Association | - | TYPO3 用の kiddog_mysqldumper エクステンションにおける重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0336 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228465 | 7.5 | 危険 | stefan tannhaeuser | - | TYPO3 用の tv21_talkshow エクステンションにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2010-0332 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228466 | 4.3 | 警告 | stefan tannhaeuser | - | TYPO3 用の tv21_talkshow エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0331 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228467 | 4.3 | 警告 | rastislav birka | - | TYPO3 用の cs2_unitconv エクステンションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0328 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228468 | 5 | 警告 | sebastian baumann | - | TYPO3 用の SB Folderdownload エクステンションにおける重要な情報を取得される脆弱性 |
CWE-noinfo
情報不足 |
CVE-2010-0325 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228469 | 4.3 | 警告 | x10media | - | Glitter Central Script の submitlink.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2010-0320 | 2012-12-20 19:28 | 2010-01-15 | Show | GitHub Exploit DB Packet Storm |
| 228470 | 5 | 警告 | サン・マイクロシステムズ | - | Sun Java System Directory Server Enterprise Edition の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-0313 | 2012-12-20 19:28 | 2010-01-14 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 7, 2026, 4:13 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194431 | 6.1 |
MEDIUM
Network |
zettlr | zettlr | No filtering of cross-site scripting (XSS) payloads in the markdown-editor in Zettlr 1.8.7 allows attackers to perform remote code execution via a crafted file. |
CWE-79
Cross-site Scripting |
CVE-2021-26835 | 2024-11-21 14:56 | 2021-06-18 | Show | GitHub Exploit DB Packet Storm |
| 194432 | 5.4 |
MEDIUM
Network |
znote | znote | A cross-site scripting (XSS) vulnerability exists in Znote 0.5.2. An attacker can insert payloads, and the code execution will happen immediately on markdown view mode. |
CWE-79
Cross-site Scripting |
CVE-2021-26834 | 2024-11-21 14:56 | 2021-06-18 | Show | GitHub Exploit DB Packet Storm |
| 194433 | 7.5 |
HIGH
Network |
hitachienergy | esoms | Information Exposure vulnerability in Hitachi ABB Power Grids eSOMS allows unauthorized user to gain access to report data if the URL used to access the report is discovered. This issue affects: Hita… |
CWE-863
Incorrect Authorization |
CVE-2021-26845 | 2024-11-21 14:56 | 2021-06-15 | Show | GitHub Exploit DB Packet Storm |
| 194434 | 5.4 |
MEDIUM
Network |
openplcproject | scadabr | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows stored XSS via system_settings.shtm. |
CWE-79
Cross-site Scripting |
CVE-2021-26829 | 2024-11-21 14:56 | 2021-06-11 | Show | GitHub Exploit DB Packet Storm |
| 194435 | 8.8 |
HIGH
Network |
openplcproject | scadabr | OpenPLC ScadaBR through 0.9.1 on Linux and through 1.12.4 on Windows allows remote authenticated users to upload and execute arbitrary JSP files via view_edit.shtm. |
CWE-434
Unrestricted Upload of File with Dangerous Type |
CVE-2021-26828 | 2024-11-21 14:56 | 2021-06-11 | Show | GitHub Exploit DB Packet Storm |
| 194436 | 9.8 |
CRITICAL
Network |
apache debian fedoraproject oracle netapp |
http_server debian_linux fedora instantis_enterprisetrack enterprise_manager_ops_center zfs_storage_appliance_kit secure_backup cloud_backup |
In Apache HTTP Server versions 2.4.0 to 2.4.46 a specially crafted SessionHeader sent by an origin server could cause a heap overflow |
CWE-787
Out-of-bounds Write |
CVE-2021-26691 | 2024-11-21 14:56 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 194437 | 7.5 |
HIGH
Network |
apache debian fedoraproject oracle |
http_server debian_linux fedora instantis_enterprisetrack enterprise_manager_ops_center zfs_storage_appliance_kit |
Apache HTTP Server versions 2.4.0 to 2.4.46 A specially crafted Cookie header handled by mod_session can cause a NULL pointer dereference and crash, leading to a possible Denial Of Service |
CWE-476
NULL Pointer Dereference |
CVE-2021-26690 | 2024-11-21 14:56 | 2021-06-10 | Show | GitHub Exploit DB Packet Storm |
| 194438 | 5.5 |
MEDIUM
Local |
xen arm broadcom intel fedoraproject |
xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k fedora |
Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2021-26314 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 194439 | 5.5 |
MEDIUM
Local |
xen arm broadcom intel debian |
xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k debian_linux |
Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorre… |
CWE-203
Information Exposure Through Discrepancy |
CVE-2021-26313 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |
| 194440 | 7.1 |
HIGH
Network |
microsoft |
sharepoint_foundation sharepoint_enterprise_server sharepoint_server |
Microsoft SharePoint Server Remote Code Execution Vulnerability |
NVD-CWE-noinfo
|
CVE-2021-26420 | 2024-11-21 14:56 | 2021-06-9 | Show | GitHub Exploit DB Packet Storm |