Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 7, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228461	7.5	危険	TYPO3 Association	-	TYPO3 用の User Links エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0339	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228462	7.5	危険	TYPO3 Association	-	TYPO3 用の TT_Products エディタエクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0338	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228463	7.5	危険	TYPO3 Association	-	TYPO3 用の tt_news Mail alert エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0337	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228464	5	警告	TYPO3 Association	-	TYPO3 用の kiddog_mysqldumper エクステンションにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-0336	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228465	7.5	危険	stefan tannhaeuser	-	TYPO3 用の tv21_talkshow エクステンションにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-0332	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228466	4.3	警告	stefan tannhaeuser	-	TYPO3 用の tv21_talkshow エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0331	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228467	4.3	警告	rastislav birka	-	TYPO3 用の cs2_unitconv エクステンションにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0328	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228468	5	警告	sebastian baumann	-	TYPO3 用の SB Folderdownload エクステンションにおける重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2010-0325	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228469	4.3	警告	x10media	-	Glitter Central Script の submitlink.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0320	2012-12-20 19:28	2010-01-15	Show	GitHub Exploit DB Packet Storm

228470	5	警告	サン・マイクロシステムズ	-	Sun Java System Directory Server Enterprise Edition の ns-slapd におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2010-0313	2012-12-20 19:28	2010-01-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194451	7.5	HIGH Network	microsoft	internet_explorer	Scripting Engine Memory Corruption Vulnerability	CWE-787 Out-of-bounds Write	CVE-2021-26419	2024-11-21 14:56	2021-05-12	Show	GitHub Exploit DB Packet Storm

194452	7.5	HIGH Network	jetbrains	teamcity	In the TeamCity IntelliJ plugin before 2020.2.2.85899, DoS was possible.	NVD-CWE-noinfo	CVE-2021-26310	2024-11-21 14:56	2021-05-11	Show	GitHub Exploit DB Packet Storm

194453	3.3	LOW Local	jetbrains	teamcity	Information disclosure in the TeamCity plugin for IntelliJ before 2020.2.2.85899 was possible because a local temporary file had Insecure Permissions.	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-26309	2024-11-21 14:56	2021-05-11	Show	GitHub Exploit DB Packet Storm

194454	9.8	CRITICAL Network	hp	ilo_amplifier_pack	A potential security vulnerability was identified in HPE iLO Amplifier Pack. The vulnerabilities could be remotely exploited to allow remote code execution.	NVD-CWE-noinfo	CVE-2021-26583	2024-11-21 14:56	2021-05-10	Show	GitHub Exploit DB Packet Storm

194455	8.8	HIGH Network	wayfair	git-parse	The "gitDiff" function in Wayfair git-parse <=1.0.4 has a command injection vulnerability. Clients of the git-parse library are unlikely to be aware of this, so they might unwittingly write code that…	CWE-78 OS Command	CVE-2021-26543	2024-11-21 14:56	2021-05-6	Show	GitHub Exploit DB Packet Storm

194456	6.5	MEDIUM Network	centreon	centreon_web	Insecure Permissions in Centreon Web versions 19.10.18, 20.04.8, and 20.10.2 allows remote attackers to bypass validation by changing any file extension to ".gif", then uploading it in the "Administr…	CWE-276 Incorrect Default Permissions	CVE-2021-26804	2024-11-21 14:56	2021-05-5	Show	GitHub Exploit DB Packet Storm

194457	7.8	HIGH Local	gog	galaxy	GalaxyClient version 2.0.28.9 loads unsigned DLLs such as zlib1.dll, libgcc_s_dw2-1.dll and libwinpthread-1.dll from PATH, which allows an attacker to potentially run code locally through unsigned DL…	CWE-426 Untrusted Search Path	CVE-2021-26807	2024-11-21 14:56	2021-04-30	Show	GitHub Exploit DB Packet Storm

194458	9.8	CRITICAL Network	hametech	hame_sd1_wi-fi_firmware	An access control vulnerability in Hame SD1 Wi-Fi firmware <=V.20140224154640 allows an attacker to get system administrator through an open Telnet service.	CWE-521 Weak Password Requirements	CVE-2021-26797	2024-11-21 14:56	2021-04-26	Show	GitHub Exploit DB Packet Storm

194459	9.1	CRITICAL Network	apache quarkus oracle	maven quarkus financial_services_analytical_applications_infrastructure goldengate_big_data_and_application_adapters	Apache Maven will follow repositories that are defined in a dependency’s Project Object Model (pom) which may be surprising to some users, resulting in potential risk if a malicious actor takes over …	CWE-346 Origin Validation Error	CVE-2021-26291	2024-11-21 14:56	2021-04-24	Show	GitHub Exploit DB Packet Storm

194460	9.1	CRITICAL Network	tribalsystems	zenario	SQL Injection in Tribalsystems Zenario CMS 8.8.52729 allows remote attackers to access the database or delete the plugin. This is accomplished via the `ID` input field of ajax.php in the `Pugin libra…	CWE-89 SQL Injection	CVE-2021-26830	2024-11-21 14:56	2021-04-17	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed