Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228891	4.3	警告	Rapid Leech	-	Rapidleech の upload.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1091	2012-12-20 19:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

228892	6.8	警告	Rapid Leech	-	Rapidleech の upload.php におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-1090	2012-12-20 19:10	2009-03-25	Show	GitHub Exploit DB Packet Storm

228893	9	危険	サン・マイクロシステムズ	-	Sun Java System IdM における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-1083	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228894	9	危険	サン・マイクロシステムズ	-	Sun Java System IdM における権限を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2009-1082	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228895	4.3	警告	サン・マイクロシステムズ	-	Sun Java System IdM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1081	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228896	4.3	警告	サン・マイクロシステムズ	-	Sun Java System IdM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1080	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228897	4.3	警告	サン・マイクロシステムズ	-	Sun Java System IdM におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2009-1079	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228898	4	警告	サン・マイクロシステムズ	-	Sun Java System IdM における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1078	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228899	6.5	警告	サン・マイクロシステムズ	-	Sun Java System IdM の Change My Password 実装における他のユーザのパスワードを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-1077	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

228900	5	警告	サン・マイクロシステムズ	-	Sun Java System Identity Manager IdM における有効なユーザ名を列挙される脆弱性	CWE-200 情報漏えい	CVE-2009-1076	2012-12-20 19:10	2009-03-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194961	7.8	HIGH Local	we-con	levistudiou	WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.	CWE-787 Out-of-bounds Write	CVE-2021-23157	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

194962	7.8	HIGH Local	we-con	levistudiou	WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code.	CWE-787 Out-of-bounds Write	CVE-2021-23138	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

194963	8.8	HIGH Network	php_everywhere_project	php_everywhere	Cross-Site Request Forgery (CSRF) vulnerability in Alexander Fuchs PHP Everywhere plugin <= 2.0.2 versions.	-	CVE-2021-23227	2024-11-21 14:51	2022-01-14	Show	GitHub Exploit DB Packet Storm

194964	6.1	MEDIUM Network	crowcpp	crow	This affects the package Crow before 0.3+4. When using attributes without quotes in the template, an attacker can manipulate the input to introduce additional attributes, potentially executing code. …	CWE-79 Cross-site Scripting	CVE-2021-23824	2024-11-21 14:51	2022-01-14	Show	GitHub Exploit DB Packet Storm

194965	7.5	HIGH Network	crowcpp	crow	This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch arbitrary files from the server.	CWE-22 Path Traversal	CVE-2021-23514	2024-11-21 14:51	2022-01-13	Show	GitHub Exploit DB Packet Storm

194966	7.5	HIGH Network	mirantis	mirantis_container_runtime	When running with FIPS mode enabled, Mirantis Container Runtime 20.10.8 leaks memory during TLS Handshakes which could be abused to cause a denial of service.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-23218	2024-11-21 14:51	2022-01-11	Show	GitHub Exploit DB Packet Storm

194967	7.8	HIGH Local	mirantis	lens	In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided wh…	CWE-78 OS Command	CVE-2021-23154	2024-11-21 14:51	2022-01-11	Show	GitHub Exploit DB Packet Storm

194968	10.0	CRITICAL Network	agoric	realms-shim	All versions of package realms-shim are vulnerable to Sandbox Bypass via a Prototype Pollution attack vector.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-23594	2024-11-21 14:51	2022-01-10	Show	GitHub Exploit DB Packet Storm

194969	9.8	CRITICAL Network	eggjs	extend2	The package extend2 before 1.0.1 are vulnerable to Prototype Pollution via the extend function due to unsafe recursive merge.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-23568	2024-11-21 14:51	2022-01-10	Show	GitHub Exploit DB Packet Storm

194970	9.8	CRITICAL Network	agoric	realms-shim	All versions of package realms-shim are vulnerable to Sandbox Bypass via a Prototype Pollution attack vector.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-23543	2024-11-21 14:51	2022-01-10	Show	GitHub Exploit DB Packet Storm