Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228751 4 警告 PulseCMS - Pulse CMS の view.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-1298 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228752 7.5 危険 Zabbix - Zabbix の API における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1277 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228753 4.3 警告 webtoolkit - Emweb Wt におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1274 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228754 7.5 危険 smart-plugs - smartplugs の showplugs.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1271 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228755 7.5 危険 phpscripte24 - Multi Auktions Komplett System の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1270 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228756 7.5 危険 phpscripte24 - phpscripte24 Niedrig Gebote Pro Auktions System II の auktion.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1269 2012-12-20 19:29 2010-04-6 Show GitHub Exploit DB Packet Storm
228757 6.8 警告 stafford.uklinux - libESMTP の smtp-tls.c における信頼済み証明書を偽装される脆弱性 CWE-310
暗号の問題 		CVE-2010-1194 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228758 6.8 警告 stafford.uklinux - libESMTP における任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2010-1192 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228759 6.4 警告 sahanafoundation - Sahana 災害管理システムにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2010-1191 2012-12-20 19:29 2010-03-31 Show GitHub Exploit DB Packet Storm
228760 10 危険 SAP - SAP MaxDB の serv.exe におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1185 2012-12-20 19:29 2010-03-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194371 8.8 HIGH
Network 		pelco digital_sentry_server The RTSPLive555.dll ActiveX control in Pelco Digital Sentry Server 7.18.72.11464 has a SetCameraConnectionParameter stack-based buffer overflow. This can be exploited by a remote attacker to potentia… CWE-787
 Out-of-bounds Write 		CVE-2021-27232 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194372 9.8 CRITICAL
Network 		mutare voice An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. getfile.asp allows Unauthenticated Local File Inclusion, which can be leveraged to achieve Remote Code Execution. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-27236 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194373 4.9 MEDIUM
Network 		mutare voice An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, there is a functionality at diagzip.asp that allows anyone to export tables of a database. NVD-CWE-noinfo
CVE-2021-27235 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194374 9.8 CRITICAL
Network 		mutare voice An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. The web application suffers from SQL injection on Adminlog.asp, Archivemsgs.asp, Deletelog.asp, Eventlog.asp, and Evmlog.asp. CWE-89
SQL Injection 		CVE-2021-27234 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194375 4.9 MEDIUM
Network 		mutare voice An issue was discovered in Mutare Voice (EVM) 3.x before 3.3.8. On the admin portal of the web application, password information for external systems is visible in cleartext. The Settings.asp page is… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-27233 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194376 5.4 MEDIUM
Network 		hestiacp control_panel Hestia Control Panel 1.3.5 and below, in a shared-hosting environment, sometimes allows remote authenticated users to create a subdomain for a different customer's domain name, leading to spoofing of… NVD-CWE-noinfo
CVE-2021-27231 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194377 8.8 HIGH
Network 		mumble
debian 		mumble
debian_linux 		Mumble before 1.3.4 allows remote code execution if a victim navigates to a crafted URL on a server list and clicks on the Open Webpage text. CWE-59
Link Following 		CVE-2021-27229 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194378 7.5 HIGH
Network 		steghide_project steghide steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data. CWE-335
 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) 		CVE-2021-27211 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194379 8.8 HIGH
Network 		endian firewall_community Endian Firewall Community (aka EFW) 3.3.2 allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in a backup comment. CWE-78
OS Command  		CVE-2021-27201 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm
194380 7.5 HIGH
Network 		gnome
fedoraproject
debian
netapp
broadcom 		glib
fedora
debian_linux
cloud_backup
active_iq_unified_manager
e-series_performance_analyzer
brocade_fabric_operating_system_firmware 		An issue was discovered in GNOME GLib before 2.66.6 and 2.67.x before 2.67.3. The function g_bytes_new has an integer overflow on 64-bit platforms due to an implicit cast from 64 bits to 32 bits. The… CWE-681
 Incorrect Conversion between Numeric Types 		CVE-2021-27219 2024-11-21 14:57 2021-02-16 Show GitHub Exploit DB Packet Storm