Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 16, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
230991	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Your Account モジュールにおける任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-0673	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

230992	6.5	警告	ravenphpscripts	-	Raven Web Services RavenNuke の Resend_Email モジュールにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2009-0672	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

230993	6	警告	Plone Foundation	-	Plone 用の PlonePAS 製品における任意のユーザの ID を取得される脆弱性	CWE-287 不適切な認証	CVE-2009-0662	2012-12-20 19:10	2009-04-21	Show	GitHub Exploit DB Packet Storm

230994	5	警告	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0659	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

230995	5.1	警告	The Tor Project	-	Tor における送信元および送信先間の通信を特定される脆弱性	CWE-Other その他	CVE-2009-0654	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

230996	10	危険	tptest	-	TPTEST の GetStatsFromLine 関数におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-0650	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

230997	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の HTTP インターフェースにおける昇格したアクセス権を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2009-0644	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

230998	5	警告	swannsecurity	-	Swann DVR4-SecuraNet の管理 Web サーバにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2009-0640	2012-12-20 19:10	2009-02-20	Show	GitHub Exploit DB Packet Storm

230999	7.5	危険	phpyabs	-	phpyabs の moduli/libri/index.php における PHP リモートファイルインクルージョンの脆弱性	CWE-94 コード・インジェクション	CVE-2009-0639	2012-12-20 19:10	2009-02-18	Show	GitHub Exploit DB Packet Storm

231000	7.5	危険	wikkitikkitavi	-	WikkiTikkiTavi の upload.php における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2009-0602	2012-12-20 19:10	2009-02-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 16, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196341	5.5	MEDIUM Local	xen arm broadcom intel fedoraproject	xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k fedora	Potential floating point value injection in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution with incorrect floating point results, may cause…	CWE-203 Information Exposure Through Discrepancy	CVE-2021-26314	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196342	5.5	MEDIUM Local	xen arm broadcom intel debian	xen cortex-a72 bcm2711 core_i7-7700k xeon_silver_4214 core_i9-9900k core_i7-10700k debian_linux	Potential speculative code store bypass in all supported CPU products, in conjunction with software vulnerabilities relating to speculative execution of overwritten instructions, may cause an incorre…	CWE-203 Information Exposure Through Discrepancy	CVE-2021-26313	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196343	7.1	HIGH Network	microsoft	sharepoint_foundation sharepoint_enterprise_server sharepoint_server	Microsoft SharePoint Server Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-26420	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196344	4.8	MEDIUM Network	microsoft	windows_10 windows_server_2008 windows_7 windows_server_2012 windows_8.1 windows_server_2016 windows_rt_8.1 windows_server_2019 windows_server_2022 windows_server	Windows DCOM Server Security Feature Bypass	NVD-CWE-noinfo	CVE-2021-26414	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196345	8.8	HIGH Network	vembu	bdr_suite offsite_dr	Various Vembu products allow an attacker to execute a (non-blind) http-only Cross Site Request Forgery (Other products or versions of products in this family may be affected too.)	CWE-352 Origin Validation Error	CVE-2021-26474	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196346	9.8	CRITICAL Network	vembu	bdr_suite offsite_dr	In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 the http API located at /sgwebservice_o.php action logFilePath allows an attacker to write arbitrary files in the context of the web serve…	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-26473	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196347	9.8	CRITICAL Network	vembu	bdr_suite offsite_dr	In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1 installed on Windows, the http API located at /consumerweb/secure/download.php. Using this command argument an unauthenticated attacker ca…	CWE-78 OS Command	CVE-2021-26472	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196348	9.8	CRITICAL Network	vembu	bdr_suite offsite_dr	In VembuBDR before 4.2.0.1 and VembuOffsiteDR before 4.2.0.1, the http API located at /sgwebservice_o.php accepts a command argument. Using this command argument an unauthenticated attacker can execu…	NVD-CWE-noinfo	CVE-2021-26471	2024-11-21 14:56	2021-06-9	Show	GitHub Exploit DB Packet Storm

196349	6.1	MEDIUM Network	hp	oneview_for_vmware_vcenter	A security vulnerability in HPE OneView for VMware vCenter (OV4VC) could be exploited remotely to allow Cross-Site Scripting. HPE has released the following software update to resolve the vulnerabili…	CWE-79 Cross-site Scripting	CVE-2021-26584	2024-11-21 14:56	2021-06-3	Show	GitHub Exploit DB Packet Storm

196350	9.8	CRITICAL Network	merge-deep_project netapp	merge-deep e-series_performance_analyzer	The merge-deep library before 3.0.3 for Node.js can be tricked into overwriting properties of Object.prototype or adding new properties to it. These properties are then inherited by every object in t…	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-26707	2024-11-21 14:56	2021-06-3	Show	GitHub Exploit DB Packet Storm