Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228761 7.5 危険 prasanna - Joomla! 用の YouTube コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2923 2012-12-20 19:29 2010-07-30 Show GitHub Exploit DB Packet Storm
228762 7.5 危険 visocrea - Joomla! 用の Visites コンポーネントにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2918 2012-12-20 19:29 2010-07-30 Show GitHub Exploit DB Packet Storm
228763 7.5 危険 toughtomato - Joomla! 用の TTVideo コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2909 2012-12-20 19:29 2010-07-28 Show GitHub Exploit DB Packet Storm
228764 4.3 警告 SAP - SAP NetWeaver の SLD コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2904 2012-12-20 19:29 2010-07-28 Show GitHub Exploit DB Packet Storm
228765 2.6 注意 runcms - RunCMS の modules/headlines/magpierss/scripts/magpie_debug.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2852 2012-12-20 19:29 2010-07-24 Show GitHub Exploit DB Packet Storm
228766 7.5 危険 schlu.net - Joomla! 用の QuickFAQ コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2845 2012-12-20 19:29 2010-07-24 Show GitHub Exploit DB Packet Storm
228767 5 警告 SquirrelMail Project - SquirrelMail の functions/imap_general.php におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-2813 2012-12-20 19:29 2010-08-19 Show GitHub Exploit DB Packet Storm
228768 5 警告 ZNC - ZNC の Client.cpp におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-2812 2012-12-20 19:29 2010-08-3 Show GitHub Exploit DB Packet Storm
228769 5.7 警告 レッドハット - RHEV の VDSM におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2010-2811 2012-12-20 19:29 2010-08-19 Show GitHub Exploit DB Packet Storm
228770 6.8 警告 uzbl - Uzbl の バインディングのデフォルト設定における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2809 2012-12-20 19:29 2010-08-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194321 7.5 HIGH
Network 		mercurycom mac1200r_firmware A directory traversal vulnerability on Mercury MAC1200R devices allows attackers to read arbitrary files via a web-static/ URL. CWE-22
Path Traversal 		CVE-2021-27825 2024-11-21 14:58 2023-05-30 Show GitHub Exploit DB Packet Storm
194322 7.5 HIGH
Network 		hcltech hcl_launch_container_image The provided HCL Launch Container images contain non-unique HTTPS certificates and a database encryption key. The fix provides directions and tools to replace the non-unique keys and certificates. Th… CWE-327
 Use of a Broken or Risky Cryptographic Algorithm 		CVE-2021-27784 2024-11-21 14:58 2022-11-1 Show GitHub Exploit DB Packet Storm
194323 4.7 MEDIUM
Adjacent 		ieee
ietf 		ieee_802.2
p802.1q 		Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length and Ethernet to Wifi frame conversion (and optionally VLAN0 headers). CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-27862 2024-11-21 14:58 2022-09-28 Show GitHub Exploit DB Packet Storm
194324 4.7 MEDIUM
Adjacent 		ieee
ietf 		ieee_802.2
p802.1q 		Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using LLC/SNAP headers with invalid length (and optionally VLAN0 headers) CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-27861 2024-11-21 14:58 2022-09-28 Show GitHub Exploit DB Packet Storm
194325 4.7 MEDIUM
Adjacent 		ieee
ietf 		ieee_802.2
p802.1q 		Layer 2 network filtering capabilities such as IPv6 RA guard can be bypassed using combinations of VLAN 0 headers, LLC/SNAP headers, and converting frames from Ethernet to Wifi and its reverse. CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-27854 2024-11-21 14:58 2022-09-28 Show GitHub Exploit DB Packet Storm
194326 4.7 MEDIUM
Adjacent 		ieee
ietf
cisco 		ieee_802.2
p802.1q
catalyst_6503-e_firmware
catalyst_6504-e_firmware
catalyst_6506-e_firmware
catalyst_6509-e_firmware
catalyst_6509-neb-a_firmware
catalyst_6509-v-e_firmware
 Layer 2 network filtering capabilities such as IPv6 RA guard or ARP inspection can be bypassed using combinations of VLAN 0 headers and LLC/SNAP headers. CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-27853 2024-11-21 14:58 2022-09-28 Show GitHub Exploit DB Packet Storm
194327 5.4 MEDIUM
Network 		hcltech hcl_digital_experience User input included in error response, which could be used in a phishing attack. CWE-20
 Improper Input Validation  		CVE-2021-27774 2024-11-21 14:58 2022-09-23 Show GitHub Exploit DB Packet Storm
194328 9.8 CRITICAL
Network 		publiccms publiccms Server-side Request Forgery (SSRF) vulnerability in PublicCMS before 4.0.202011.b via /publiccms/admin/ueditor when the action is catchimage. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-27693 2024-11-21 14:58 2022-09-3 Show GitHub Exploit DB Packet Storm
194329 5.5 MEDIUM
Local 		broadcom fabric_operating_system A vulnerability in Brocade Fabric OS versions v7.4.1b and v7.3.1d could allow local users to conduct privileged directory transversal. Brocade Fabric OS versions v7.4.1.x and v7.3.x have reached end … CWE-22
Path Traversal 		CVE-2021-27798 2024-11-21 14:58 2022-08-6 Show GitHub Exploit DB Packet Storm
194330 5.0 MEDIUM
Local 		hcltechsw hcl_commerce HCL Commerce's Remote Store server could allow a local attacker to obtain sensitive personal information. The vulnerability requires the victim to first perform a particular operation on the website. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-27785 2024-11-21 14:58 2022-07-30 Show GitHub Exploit DB Packet Storm