Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228781 5.1 警告 tufat - osDate における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1055 2012-12-20 19:29 2010-03-23 Show GitHub Exploit DB Packet Storm
228782 6.8 警告 zentracking - Zen Time Tracking における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1053 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
228783 7.5 危険 Uiga - Uiga Business Portal における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1049 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
228784 4.3 警告 Uiga - Uiga Business Portal の blog/index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1048 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
228785 7.5 危険 ryan marshall - Rostermain の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1046 2012-12-20 19:29 2010-03-22 Show GitHub Exploit DB Packet Storm
228786 4.3 警告 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1020 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
228787 7.5 危険 sk-typo3 - TYPO3 用の Simple Gallery エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1019 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
228788 4.3 警告 steffen kamper - TYPO3 用の reports_logview エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1014 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
228789 4.3 警告 tim lochmueller - TYPO3 用の myDashboard エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1011 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
228790 7.5 危険 TYPO3 Association - TYPO3 用の Brainstorming エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-1006 2012-12-20 19:28 2010-03-19 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 9, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194361 5.5 MEDIUM
Local 		xen
fedoraproject
debian 		xen
fedora
debian_linux 		An issue was discovered in Xen 4.9 through 4.14.x. On Arm, a guest is allowed to control whether memory accesses are bypassing the cache. This means that Xen needs to ensure that all writes (such as … NVD-CWE-noinfo
CVE-2021-26933 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194362 5.5 MEDIUM
Local 		linux
fedoraproject
debian
netapp 		linux_kernel
fedora
debian_linux
cloud_backup
solidfire_\&_hci_management_node
solidfire\
_enterprise_sds_\&_hci_storage_node
hci_compute_node
hci_h410c_firmware 		An issue was discovered in the Linux kernel 3.2 through 5.10.16, as used by Xen. Grant mapping operations often occur in batch hypercalls, where a number of operations are done in a single hypercall,… NVD-CWE-noinfo
CVE-2021-26932 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194363 5.5 MEDIUM
Local 		linux
fedoraproject
debian 		linux_kernel
fedora
debian_linux 		An issue was discovered in the Linux kernel 2.6.39 through 5.10.16, as used in Xen. Block, net, and SCSI backends consider certain errors a plain bug, deliberately causing a kernel crash. For errors … CWE-770
 Allocation of Resources Without Limits or Throttling 		CVE-2021-26931 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194364 7.8 HIGH
Local 		linux
fedoraproject
debian 		linux_kernel
fedora
debian_linux 		An issue was discovered in the Linux kernel 3.11 through 5.10.16, as used by Xen. To service requests to the PV backend, the driver maps grant references provided by the frontend. In this process, er… NVD-CWE-noinfo
CVE-2021-26930 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194365 9.8 CRITICAL
Network 		accellion fta Accellion FTA 9_12_370 and earlier is affected by OS command execution via a crafted POST request to various admin endpoints. The fixed version is FTA_9_12_380 and later. CWE-78
OS Command  		CVE-2021-27104 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194366 9.8 CRITICAL
Network 		accellion fta Accellion FTA 9_12_411 and earlier is affected by SSRF via a crafted POST request to wmProgressstat.html. The fixed version is FTA_9_12_416 and later. CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-27103 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194367 7.8 HIGH
Local 		accellion fta Accellion FTA 9_12_411 and earlier is affected by OS command execution via a local web service call. The fixed version is FTA_9_12_416 and later. CWE-78
OS Command  		CVE-2021-27102 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194368 9.8 CRITICAL
Network 		accellion fta Accellion FTA 9_12_370 and earlier is affected by SQL injection via a crafted Host header in a request to document_root.html. The fixed version is FTA_9_12_380 and later. NVD-CWE-Other
CVE-2021-27101 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194369 5.5 MEDIUM
Local 		dekart private_disk In Dekart Private Disk 2.15, invalid use of the Type3 user buffer for IOCTL codes using METHOD_NEITHER results in arbitrary memory dereferencing. CWE-476
 NULL Pointer Dereference 		CVE-2021-27203 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm
194370 4.8 MEDIUM
Network 		blackcat-cms blackcat_cms The admin panel in BlackCat CMS 1.3.6 allows stored XSS (by an admin) via the Display Name field to backend/preferences/ajax_save.php. CWE-79
Cross-site Scripting 		CVE-2021-27237 2024-11-21 14:57 2021-02-17 Show GitHub Exploit DB Packet Storm