Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228761	6.8	警告	OrangeHRM	-	OrangeHRM における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2011-5259	2013-02-15 18:59	2013-02-12	Show	GitHub Exploit DB Packet Storm

228762	4.3	警告	OrangeHRM	-	OrangeHRM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5258	2013-02-15 18:58	2013-02-12	Show	GitHub Exploit DB Packet Storm

228763	4.3	警告	AppThemes	-	WordPress 用 Classipress テーマにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5257	2013-02-15 18:57	2011-10-7	Show	GitHub Exploit DB Packet Storm

228764	2.6	注意	LimeSurvey	-	LimeSurvey におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-5256	2013-02-15 18:56	2012-02-9	Show	GitHub Exploit DB Packet Storm

228765	5	警告	Joomla!	-	Joomla! における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-1455	2013-02-15 16:51	2013-02-4	Show	GitHub Exploit DB Packet Storm

228766	2.1	注意	Bitbucket	-	xNBD の xnbd-server および xndb-wrapperr における任意のファイルを上書きされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0265	2013-02-15 16:48	2013-02-13	Show	GitHub Exploit DB Packet Storm

228767	5	警告	LSIロジック株式会社	-	3DM (3ware Disk Manager) におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-0705	2013-02-15 12:00	2013-02-15	Show	GitHub Exploit DB Packet Storm

228768	9.3	危険	Fabrice Bellard	-	Qemu の e1000 デバイスドライバにおけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-6075	2013-02-15 11:56	2013-02-13	Show	GitHub Exploit DB Packet Storm

228769	10	危険	アドビシステムズ	-	Adobe Shockwave Player におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-0636	2013-02-15 11:09	2013-02-12	Show	GitHub Exploit DB Packet Storm

228770	10	危険	アドビシステムズ	-	Adobe Shockwave Player における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2013-0635	2013-02-15 11:08	2013-02-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194181	7.5	HIGH Network	mpmath fedoraproject	mpmath fedora	A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Mpmath v1.0.0 through v1.2.1 when the mpmathify function is called.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-29063	2024-11-21 15:00	2021-06-22	Show	GitHub Exploit DB Packet Storm

194182	7.5	HIGH Network	vfsjfilechooser2_project	vfsjfilechooser2	A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Vfsjfilechooser2 version 0.2.9 and below which occurs when the application attempts to validate crafted URIs.	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-29061	2024-11-21 15:00	2021-06-22	Show	GitHub Exploit DB Packet Storm

194183	5.3	MEDIUM Network	color-string_project	color-string	A Regular Expression Denial of Service (ReDOS) vulnerability was discovered in Color-String version 1.5.5 and below which occurs when the application is provided and checks a crafted invalid HWB stri…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-29060	2024-11-21 15:00	2021-06-22	Show	GitHub Exploit DB Packet Storm

194184	7.5	HIGH Network	is-svg_project	is-svg	A vulnerability was discovered in IS-SVG version 2.1.0 to 4.2.2 and below where a Regular Expression Denial of Service (ReDOS) occurs if the application is provided and checks a crafted invalid SVG s…	CWE-770 Allocation of Resources Without Limits or Throttling	CVE-2021-29059	2024-11-21 15:00	2021-06-22	Show	GitHub Exploit DB Packet Storm

194185	6.1	MEDIUM Network	increments	qiita\	Increments Qiita::Markdown before 0.34.0 allows XSS via a crafted gist link, a different vulnerability than CVE-2021-28796.	CWE-79 Cross-site Scripting	CVE-2021-28833	2024-11-21 15:00	2021-06-21	Show	GitHub Exploit DB Packet Storm

194186	4.3	MEDIUM Network	powerarchiver	powerarchiver	The XML parser used in ConeXware PowerArchiver before 20.10.02 allows processing of external entities, which might lead to exfiltration of local files over the network (via an XXE attack).	CWE-611 XXE	CVE-2021-28684	2024-11-21 15:00	2021-06-21	Show	GitHub Exploit DB Packet Storm

194187	7.8	HIGH Local	msi	dragon_center	MODAPI.sys in MSI Dragon Center 2.0.104.0 allows low-privileged users to access kernel memory and potentially escalate privileges via a crafted IOCTL 0x9c406104 call. This IOCTL provides the MmMapIoS…	NVD-CWE-Other	CVE-2021-29337	2024-11-21 15:00	2021-06-21	Show	GitHub Exploit DB Packet Storm

194188	6.5	MEDIUM Network	thalesgroup	safenet_keysecure	SafeNet KeySecure Management Console 8.12.0 is vulnerable to HTTP response splitting attacks. A remote attacker could exploit this vulnerability using specially-crafted URL to cause the server to ret…	CWE-74 Injection	CVE-2021-28979	2024-11-21 15:00	2021-06-16	Show	GitHub Exploit DB Packet Storm

194189	4.9	MEDIUM Network	qnap	myqnapcloud_link	Insecure storage of sensitive information has been reported to affect QNAP NAS running myQNAPcloud Link. If exploited, this vulnerability allows remote attackers to read sensitive information by acce…	-	CVE-2021-28815	2024-11-21 15:00	2021-06-16	Show	GitHub Exploit DB Packet Storm

194190	5.5	MEDIUM Local	tp-link	tl-wpa4220_firmware	TP-Link's TL-WPA4220 4.0.2 Build 20180308 Rel.37064 does not use SSL by default. Attacker on the local network can monitor traffic and capture the cookie and other sensitive information.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-28858	2024-11-21 15:00	2021-06-16	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed