Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228501	4.3	警告	Polycom	-	Polycom HDX Video End Points におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4970	2013-01-4 16:45	2012-12-31	Show	GitHub Exploit DB Packet Storm

228502	3.3	注意	Belkin International	-	Belkin N900 ルータの WPA2 の実装における Wi-Fi ネットワークにアクセスされる脆弱性	CWE-310 暗号の問題	CVE-2012-6371	2013-01-4 16:44	2012-12-31	Show	GitHub Exploit DB Packet Storm

228503	7.5	危険	LemonLDAP::NG	-	LemonLDAP::NG におけるアクセスコントロール制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-6426	2013-01-4 16:39	2012-12-18	Show	GitHub Exploit DB Packet Storm

228504	5.8	警告	IBM	-	IBM SPSS Modeler における任意のファイルを読まれる脆弱性	CWE-Other その他	CVE-2012-5769	2013-01-4 16:38	2012-12-28	Show	GitHub Exploit DB Packet Storm

228505	7.5	危険	i-GEN Solutions	-	i-GEN opLYNX の Central アプリケーションにおける認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2012-4688	2013-01-4 16:31	2012-12-27	Show	GitHub Exploit DB Packet Storm

228506	5.8	警告	vBulletin Solutions, Inc.	-	vBulletin の forum/login.php におけるオープンリダイレクトの脆弱性	CWE-20 不適切な入力確認	CVE-2011-5251	2013-01-4 16:23	2011-06-2	Show	GitHub Exploit DB Packet Storm

228507	4.3	警告	AgileBits	-	AgileBits 1Password におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6369	2013-01-4 16:20	2012-12-28	Show	GitHub Exploit DB Packet Storm

228508	4.3	警告	Simple Invoices	-	SimpleInvoices におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-4932	2013-01-4 16:16	2012-12-28	Show	GitHub Exploit DB Packet Storm

228509	5	警告	ModSecurity	-	Apache HTTP Server 用 mod_security2 モジュールにおけるルールを回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-4528	2013-01-4 16:14	2012-10-15	Show	GitHub Exploit DB Packet Storm

228510	4.3	警告	MediaWiki	-	MediaWiki 用 RSS Reader 拡張機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6453	2013-01-4 14:54	2012-12-31	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194351	7.5	HIGH Network	opener_project	opener	A specifically crafted packet sent by an attacker to EIPStackGroup OpENer EtherNet/IP commits and versions prior to Feb 10, 2021 may cause a denial-of-service condition.	CWE-681 Incorrect Conversion between Numeric Types	CVE-2021-27478	2024-11-21 14:58	2022-05-13	Show	GitHub Exploit DB Packet Storm

194352	7.8	HIGH Local	hcltech	bigfix_platform	The BigFix Console installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability w…	CWE-269 Improper Privilege Management	CVE-2021-27767	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194353	7.8	HIGH Local	hcltech	bigfix_platform	The BigFix Client installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerability wa…	CWE-269 Improper Privilege Management	CVE-2021-27766	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194354	7.8	HIGH Local	hcltech	bigfix_platform	The BigFix Server API installer is created with InstallShield, which was affected by CVE-2021-41526, a vulnerability that could allow a local user to perform a privilege escalation. This vulnerabilit…	CWE-269 Improper Privilege Management	CVE-2021-27765	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194355	6.5	MEDIUM Network	hcltech	bigfix_webui	Cookie without HTTPONLY flag set. NUMBER cookie(s) was set without Secure or HTTPOnly flags. The images show the cookie with the missing flag. (WebUI)	CWE-311 CWE-732 Missing Encryption of Sensitive Data Incorrect Permission Assignment for Critical Resource	CVE-2021-27764	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194356	9.8	CRITICAL Network	hcltech	bigfix_platform	Misconfigured security-related HTTP headers: Several security-related headers were missing or mis-configured on the web responses	NVD-CWE-noinfo	CVE-2021-27762	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194357	7.5	HIGH Network	hcltech	bigfix_platform	Weak web transport security (Weak TLS): An attacker may be able to decrypt the data using attacks	CWE-326 Inadequate Encryption Strength	CVE-2021-27761	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194358	5.5	MEDIUM Network	hcltech	hcl_inotes	An issue was discovered in the Sametime chat feature in the Notes 11.0 - 11.0.1 FP4 clients. An authenticated Sametime chat user could cause Remote Code Execution on another chat client by sending a …	NVD-CWE-noinfo	CVE-2021-27760	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194359	6.5	MEDIUM Network	hcltech	bigfix_inventory	This vulnerability arises because the application allows the user to perform some sensitive action without verifying that the request was sent intentionally. An attacker can cause a victim's browser …	CWE-345 Insufficient Verification of Data Authenticity	CVE-2021-27759	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

194360	6.5	MEDIUM Network	hcltech	bigfix_inventory	There is a security vulnerability in login form related to Cross-site Request Forgery which prevents user to login after attacker spam to login and system blocked victim's account.	CWE-352 Origin Validation Error	CVE-2021-27758	2024-11-21 14:58	2022-05-7	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed