Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231211 5.8 警告 RPM - RPM の rpmbuild における home ディレクトリを削除される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2197 2012-12-20 19:29 2010-06-8 Show GitHub Exploit DB Packet Storm
231212 1.9 注意 vincent fourmond - pmount の policy.c における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2192 2012-12-20 19:29 2010-06-18 Show GitHub Exploit DB Packet Storm
231213 2.1 注意 speedtech - Drupal 用の Storm モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2158 2012-12-20 19:29 2010-05-19 Show GitHub Exploit DB Packet Storm
231214 4.3 警告 zonecheck - ZoneCheck の zc/publisher/html.rb におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2155 2012-12-20 19:29 2010-05-26 Show GitHub Exploit DB Packet Storm
231215 6.8 警告 Tecnick.com - TCExam の admin/code/tce_functions_tcecode_editor.php における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-2153 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
231216 7.5 危険 unisoft - Joomla! 用の My Car コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-2148 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
231217 4.3 警告 unisoft - Joomla! 用の My Car コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2147 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
231218 7.5 危険 richrumble - ClearSite における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2145 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
231219 4.3 警告 zeeways - Zeeways eBay Clone Auction Script の signinform.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2144 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
231220 7.5 危険 Symphony CMS - Symphony CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2010-2143 2012-12-20 19:29 2010-06-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196981 5.8 MEDIUM
Network 		jellyfin jellyfin Jellyfin is a free software media system that provides media from a dedicated server to end-user devices via multiple apps. Verions prior to 10.7.3 vulnerable to unauthenticated Server-Side Request F… - CVE-2021-29490 2024-11-21 15:01 2021-05-6 Show GitHub Exploit DB Packet Storm
196982 5.4 MEDIUM
Network 		highcharts
netapp 		highcharts
cloud_backup
snapcenter
oncommand_workflow_automation
oncommand_insight 		Highcharts JS is a JavaScript charting library based on SVG. In Highcharts versions 8 and earlier, the chart options structure was not systematically filtered for XSS vectors. The potential impact wa… - CVE-2021-29489 2024-11-21 15:01 2021-05-6 Show GitHub Exploit DB Packet Storm
196983 8.8 HIGH
Network 		redislabs
fedoraproject 		redis
fedora 		Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An integer overflow bug in Redis 6.2 before 6.2.3 could be exploited to corrupt … CWE-190
 Integer Overflow or Wraparound 		CVE-2021-29478 2024-11-21 15:01 2021-05-5 Show GitHub Exploit DB Packet Storm
196984 8.8 HIGH
Network 		redislabs
fedoraproject 		redis
fedora 		Redis is an open source (BSD licensed), in-memory data structure store, used as a database, cache, and message broker. An integer overflow bug in Redis version 6.0 or newer could be exploited using t… CWE-190
 Integer Overflow or Wraparound 		CVE-2021-29477 2024-11-21 15:01 2021-05-5 Show GitHub Exploit DB Packet Storm
196985 9.8 CRITICAL
Network 		gnuplot_project gnuplot The gnuplot package prior to version 0.1.0 for Node.js allows code execution via shell metacharacters in Gnuplot commands. CWE-78
OS Command  		CVE-2021-29369 2024-11-21 15:01 2021-05-3 Show GitHub Exploit DB Packet Storm
196986 7.8 HIGH
Local 		exiv2
fedoraproject 		exiv2
fedora 		Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. A heap buffer overflow was found in Exiv2 versions v0.27.3 and earlier. The … CWE-787
 Out-of-bounds Write 		CVE-2021-29464 2024-11-21 15:01 2021-05-1 Show GitHub Exploit DB Packet Storm
196987 5.5 MEDIUM
Local 		exiv2
fedoraproject 		exiv2
fedora 		Exiv2 is a command-line utility and C++ library for reading, writing, deleting, and modifying the metadata of image files. An out-of-bounds read was found in Exiv2 versions v0.27.3 and earlier. The o… CWE-125
Out-of-bounds Read 		CVE-2021-29463 2024-11-21 15:01 2021-05-1 Show GitHub Exploit DB Packet Storm
196988 7.5 HIGH
Network 		cumulative-distribution-function_project cumulative-distribution-function cumulative-distribution-function is an open source npm library used which calculates statistical cumulative distribution function from data array of x values. In versions prior to 2.0.0 apps using th… CWE-20
 Improper Input Validation  		CVE-2021-29486 2024-11-21 15:01 2021-05-1 Show GitHub Exploit DB Packet Storm
196989 6.1 MEDIUM
Network 		ghost ghost Ghost is a Node.js CMS. An unused endpoint added during the development of 4.0.0 has left sites vulnerable to untrusted users gaining access to Ghost Admin. Attackers can gain access by getting logge… CWE-79
Cross-site Scripting 		CVE-2021-29484 2024-11-21 15:01 2021-04-30 Show GitHub Exploit DB Packet Storm
196990 8.8 HIGH
Network 		cygwin git Cygwin Git is a patch set for the git command line tool for the cygwin environment. A specially crafted repository that contains symbolic links as well as files with backslash characters in the file … - CVE-2021-29468 2024-11-21 15:01 2021-04-30 Show GitHub Exploit DB Packet Storm