Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228491 5 警告 Steven Jones - Drupal 用 Context モジュールにおける重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5655 2013-01-7 15:35 2012-12-19 Show GitHub Exploit DB Packet Storm
228492 4.3 警告 Nodewords - Drupal 用 Nodewords: D6 Meta Tags モジュールにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5654 2013-01-7 15:22 2012-12-5 Show GitHub Exploit DB Packet Storm
228493 6 警告 Drupal - Drupal のファイルアップロード機能における保護メカニズムを回避される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-5653 2013-01-7 15:14 2012-12-19 Show GitHub Exploit DB Packet Storm
228494 5 警告 Drupal - Drupal におけるアップロードされたファイルに関する重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-5652 2013-01-7 15:09 2012-12-19 Show GitHub Exploit DB Packet Storm
228495 5 警告 Drupal - Drupal における重要な情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5651 2013-01-7 15:09 2012-12-19 Show GitHub Exploit DB Packet Storm
228496 5.1 警告 ELinks - ELinks の protocol/http/http_negotiate.c におけるクライアントとして認証される脆弱性 CWE-287
不適切な認証 		CVE-2012-4545 2013-01-7 11:45 2012-10-28 Show GitHub Exploit DB Packet Storm
228497 5 警告 WP PHP widget - WordPress 用 WP PHP widget プラグインにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-0721 2013-01-7 11:38 2013-01-2 Show GitHub Exploit DB Packet Storm
228498 5 警告 Charybdis
ircd-ratbox		 - ircd-ratbox および Charybdis の modules/m_capab.c おけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2012-6084 2013-01-7 11:37 2012-12-31 Show GitHub Exploit DB Packet Storm
228499 5 警告 The Tor Project - Tor の or/relay.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-5573 2013-01-7 11:35 2012-06-28 Show GitHub Exploit DB Packet Storm
228500 7.5 危険 Fail2ban - Fail2ban の server/action.py における安全でない動作を誘発される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5642 2013-01-7 11:34 2012-12-6 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194291 9.8 CRITICAL
Network 		lucysecurity security_awareness LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file… CWE-78
OS Command  		CVE-2021-28132 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194292 9.8 CRITICAL
Network 		clipper_project clipper Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal AP… NVD-CWE-noinfo
CVE-2021-28134 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194293 9.8 CRITICAL
Network 		open5gs open5gs A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. The WebUI component allows an unauthenticated user to use a crafted HTTP API request to create, read, update, or… CWE-306
Missing Authentication for Critical Function 		CVE-2021-28122 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194294 9.8 CRITICAL
Network 		twinkletray twinkle_tray Twinkle Tray (aka twinkle-tray) through 1.13.3 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the… NVD-CWE-noinfo
CVE-2021-28119 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194295 5.3 MEDIUM
Network 		squid-cache
fedoraproject
debian 		squid
fedora
debian_linux 		Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for re… CWE-125
Out-of-bounds Read 		CVE-2021-28116 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194296 6.1 MEDIUM
Network 		ougc_feedback_project ougc_feedback The OUGC Feedback plugin before 1.8.23 for MyBB allows XSS via the comment field of feedback during an edit operation. CWE-79
Cross-site Scripting 		CVE-2021-28115 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194297 7.8 HIGH
Local 		deutschepost mailoptimizer Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution. CWE-22
Path Traversal 		CVE-2021-28042 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194298 7.1 HIGH
Network 		openbsd
fedoraproject
netapp
oracle 		openssh
fedora
cloud_backup
solidfire
hci_management_node
hci_compute_node_firmware
hci_storage_node_firmware
zfs_storage_appliance
communications_offline_mediation_controller 		ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an … CWE-415
 Double Free 		CVE-2021-28041 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194299 7.5 HIGH
Network 		ossec ossec An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem … CWE-674
 Uncontrolled Recursion 		CVE-2021-28040 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194300 6.5 MEDIUM
Local 		netapp cloud_backup
solidfire_baseboard_management_controller_firmware 		An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less-common configurations, an x86 PV guest OS user can crash a Dom0 or driver domain via a large amount of… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2021-28039 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm