Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228741	6.8	警告	NetArt Media	-	NetArt Media Car Portal におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-6508	2013-01-25 14:24	2013-01-24	Show	GitHub Exploit DB Packet Storm

228742	7.5	危険	Jason Sexauer	-	ChurchCMS の admin.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6507	2013-01-25 14:23	2013-01-24	Show	GitHub Exploit DB Packet Storm

228743	4.3	警告	Zingiri	-	WordPress 用 Zingiri Web Shop プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6506	2013-01-25 14:22	2012-04-28	Show	GitHub Exploit DB Packet Storm

228744	4.3	警告	Shawn Bradley	-	PHP Volunteer Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6505	2013-01-25 14:20	2013-01-24	Show	GitHub Exploit DB Packet Storm

228745	7.5	危険	Shawn Bradley	-	PHP Volunteer Management における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2012-6504	2013-01-25 14:20	2013-01-24	Show	GitHub Exploit DB Packet Storm

228746	10	危険	Ninja Forge	-	Joomla! 用 NinjaXplorer コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2012-6503	2013-01-25 14:19	2012-04-26	Show	GitHub Exploit DB Packet Storm

228747	5.8	警告	GNU Project	-	GnuPG の g10/import.c における公開鍵リングのデータベースを破壊される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6085	2013-01-25 14:18	2012-12-6	Show	GitHub Exploit DB Packet Storm

228748	4.3	警告	Cenango Financial LLC	-	WikidForum におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-2099	2013-01-25 14:17	2012-04-12	Show	GitHub Exploit DB Packet Storm

228749	6.8	警告	Sitecom	-	Sitecom WLM-2501 におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-1922	2013-01-25 14:16	2013-01-24	Show	GitHub Exploit DB Packet Storm

228750	4.3	警告	Simple Realty Themes	-	WordPress 用 Advanced Text Widget プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4618	2013-01-25 14:15	2013-01-24	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194191	7.5	HIGH Network	tp-link	tl-wpa4220_firmware	TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 username and password are sent via the cookie.	CWE-522 Insufficiently Protected Credentials	CVE-2021-28857	2024-11-21 15:00	2021-06-16	Show	GitHub Exploit DB Packet Storm

194192	5.5	MEDIUM Local	xen	xen	x86: Speculative vulnerabilities with bare (non-shim) 32-bit PV guests 32-bit x86 PV guest kernels run in ring 1. At the time when Xen was developed, this area of the i386 architecture was rarely use…	CWE-212 Improper Removal of Sensitive Information Before Storage or Transfer	CVE-2021-28689	2024-11-21 15:00	2021-06-12	Show	GitHub Exploit DB Packet Storm

194193	5.5	MEDIUM Local	xen	xen	HVM soft-reset crashes toolstack libxl requires all data structures passed across its public interface to be initialized before use and disposed of afterwards by calling a specific set of functions. …	CWE-909 Missing Initialization of Resource	CVE-2021-28687	2024-11-21 15:00	2021-06-12	Show	GitHub Exploit DB Packet Storm

194194	8.8	HIGH Network	qnap	helpdesk	An improper access control vulnerability has been reported to affect QNAP NAS. If exploited, this vulnerability allows remote attackers to compromise the security of the software. This issue affects:…	NVD-CWE-Other	CVE-2021-28814	2024-11-21 15:00	2021-06-11	Show	GitHub Exploit DB Packet Storm

194195	5.5	MEDIUM Local	qnap	qss	Inclusion of sensitive information in the source code has been reported to affect certain QNAP switches running QSS. If exploited, this vulnerability allows attackers to read application data. This i…	CWE-200 Information Exposure	CVE-2021-28805	2024-11-21 15:00	2021-06-11	Show	GitHub Exploit DB Packet Storm

194196	7.5	HIGH Network	qnap	qss	An out-of-bounds read vulnerability has been reported to affect certain QNAP switches running QSS. If exploited, this vulnerability allows attackers to read sensitive information on the system. This …	-	CVE-2021-28801	2024-11-21 15:00	2021-06-11	Show	GitHub Exploit DB Packet Storm

194197	6.1	MEDIUM Network	liferay	dxp	Cross-site scripting (XSS) vulnerability in the Portal Workflow module's edit process page in Liferay DXP 7.0 before fix pack 99, 7.1 before fix pack 23, 7.2 before fix pack 12 and 7.3 before fix pac…	CWE-79 Cross-site Scripting	CVE-2021-29049	2024-11-21 15:00	2021-06-10	Show	GitHub Exploit DB Packet Storm

194198	7.2	HIGH Network	roonlabs	roon_server	If exploited, this command injection vulnerability could allow remote attackers to run arbitrary commands. Roon Labs has already fixed this vulnerability in the following versions: Roon Server 2021-0…	CWE-77 Command Injection	CVE-2021-28811	2024-11-21 15:00	2021-06-8	Show	GitHub Exploit DB Packet Storm

194199	7.5	HIGH Network	qnap	roon_server	If exploited, this vulnerability allows an attacker to access resources which are not otherwise accessible without proper authentication. Roon Labs has already fixed this vulnerability in the followi…	-	CVE-2021-28810	2024-11-21 15:00	2021-06-8	Show	GitHub Exploit DB Packet Storm

194200	5.3	MEDIUM Network	esri	arcgis_server	A SQL injection vulnerability exists in some configurations of ArcGIS Server versions 10.8.1 and earlier. Specially crafted web requests can expose information that is not intended to be disclosed (n…	CWE-89 SQL Injection	CVE-2021-29099	2024-11-21 15:00	2021-06-7	Show	GitHub Exploit DB Packet Storm