Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 4:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231261 4.6 警告 scandisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおけるデータを読み込まれる脆弱性 CWE-310
暗号の問題 		CVE-2010-0225 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
231262 4.6 警告 SanDisk - SanDisk Cruzer Enterprise USB フラッシュドライブにおける平文のドライブコンテンツをアクセスされる脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0224 2012-12-20 19:28 2010-01-7 Show GitHub Exploit DB Packet Storm
231263 7.2 危険 TIBCO Software - TRA の TIBCO Domain Utility におけるドメイン管理者の資格情報を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0184 2012-12-20 19:28 2010-01-14 Show GitHub Exploit DB Packet Storm
231264 3.3 注意 Puppet - Puppet における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-0156 2012-12-20 19:28 2010-03-3 Show GitHub Exploit DB Packet Storm
231265 9.3 危険 サン・マイクロシステムズ - OOo における任意のマクロを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0136 2012-12-20 19:28 2010-02-16 Show GitHub Exploit DB Packet Storm
231266 2.6 注意 ViewVC - ViewVC におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0132 2012-12-20 19:28 2010-03-29 Show GitHub Exploit DB Packet Storm
231267 2.1 注意 timeclock-software - Employee Timeclock Software における重要な情報を取得される脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0124 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231268 5 警告 timeclock-software - Employee Timeclock Software のデータベースバックアップ実装におけるデータベースをダウンロードされる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0123 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231269 7.5 危険 timeclock-software - Employee Timeclock Software における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-0122 2012-12-20 19:28 2010-03-15 Show GitHub Exploit DB Packet Storm
231270 10 危険 シマンテック - Symantec AntiVirus および Symantec Client Security の Symantec Client Proxy におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0108 2012-12-20 19:28 2010-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196961 7.2 HIGH
Network 		supermicro-cms_project supermicro-cms An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the font_type parameter to setup.php. NVD-CWE-noinfo
CVE-2021-25857 2024-11-21 14:55 2023-08-11 Show GitHub Exploit DB Packet Storm
196962 4.9 MEDIUM
Network 		supermicro-cms_project supermicro-cms An issue was discovered in pcmt superMicro-CMS version 3.11, allows attackers to delete files via crafted image file in images.php. NVD-CWE-noinfo
CVE-2021-25856 2024-11-21 14:55 2023-08-11 Show GitHub Exploit DB Packet Storm
196963 5.3 MEDIUM
Local 		qpdf_project qpdf An issue was discovered in QPDF version 10.0.4, allows remote attackers to execute arbitrary code via crafted .pdf file to Pl_ASCII85Decoder::write parameter in libqpdf. CWE-416
 Use After Free 		CVE-2021-25786 2024-11-21 14:55 2023-08-11 Show GitHub Exploit DB Packet Storm
196964 6.1 MEDIUM
Network 		emby emby Emby Server versions < 4.6.0.50 is vulnerable to Cross Site Scripting (XSS) vulnerability via a crafted GET request to /web. CWE-79
Cross-site Scripting 		CVE-2021-25828 2024-11-21 14:55 2023-06-29 Show GitHub Exploit DB Packet Storm
196965 9.8 CRITICAL
Network 		emby emby Emby Server < 4.7.12.0 is vulnerable to a login bypass attack by setting the X-Forwarded-For header to a local IP-address. CWE-290
 Authentication Bypass by Spoofing 		CVE-2021-25827 2024-11-21 14:55 2023-06-29 Show GitHub Exploit DB Packet Storm
196966 7.8 HIGH
Local 		kubernetes kubernetes Windows workloads can run as ContainerAdministrator even when those workloads set the runAsNonRoot option to true. NVD-CWE-noinfo
CVE-2021-25749 2024-11-21 14:55 2023-05-25 Show GitHub Exploit DB Packet Storm
196967 6.5 MEDIUM
Network 		kubernetes ingress-nginx A security issue was discovered in ingress-nginx where a user that can create or update ingress objects can use a newline character to bypass the sanitization of the `spec.rules[].http.paths[].path` … NVD-CWE-noinfo
CVE-2021-25748 2024-11-21 14:55 2023-05-25 Show GitHub Exploit DB Packet Storm
196968 7.8 HIGH
Local 		avaya ip_office A privilege escalation vulnerability was discovered in Avaya IP Office Admin Lite and USB Creator that may potentially allow a local user to escalate privileges. This issue affects Admin Lite and USB… NVD-CWE-Other
CVE-2021-25657 2024-11-21 14:55 2022-09-2 Show GitHub Exploit DB Packet Storm
196969 8.8 HIGH
Network 		apache hadoop ZKConfigurationStore which is optionally used by CapacityScheduler of Apache Hadoop YARN deserializes data obtained from ZooKeeper without validation. An attacker having access to ZooKeeper can run a… - CVE-2021-25642 2024-11-21 14:55 2022-08-25 Show GitHub Exploit DB Packet Storm
196970 5.5 MEDIUM
Local 		intel killer_ac_1550_firmware
killer_wi-fi_6_ax1650_firmware
killer_wi-fi_6e_ax1690_firmware
killer_wi-fi_6e_ax1675_firmware
proset_wi-fi_6e_ax210_firmware
wi-fi_6e_ax211_firmware
wi-fi_6… 		Out of bounds read for some Intel(R) PROSet/Wireless WiFi and Killer(TM) WiFi products may allow a privileged user to potentially enable denial of service via local access. CWE-125
Out-of-bounds Read 		CVE-2021-26254 2024-11-21 14:55 2022-08-19 Show GitHub Exploit DB Packet Storm