Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
231761 4.3 警告 realestatephp - Real Estate Manager の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4318 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
231762 4.3 警告 Scriptsez.net - ScriptsEz Ez Cart の index.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4317 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
231763 4.3 警告 zeeways - ZeeLyrics の searchresults_main.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4316 2012-12-20 19:28 2009-12-14 Show GitHub Exploit DB Packet Storm
231764 4.4 警告 サン・マイクロシステムズ - Solaris 上で稼動する Sun Ray Server Software におけるセッションへのアクセス権を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2009-4314 2012-12-20 19:28 2009-12-9 Show GitHub Exploit DB Packet Storm
231765 7.8 危険 サン・マイクロシステムズ - Sun Ray Server Software における重要な情報を取得される脆弱性 CWE-310
暗号の問題 		CVE-2009-4295 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
231766 10 危険 サン・マイクロシステムズ - Sun Ray Server Software の Authentication Manager におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2009-4294 2012-12-20 19:28 2009-12-8 Show GitHub Exploit DB Packet Storm
231767 4.3 警告 YABSoft - YABSoft AIH Script の search.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-4266 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
231768 9.3 危険 pointdev - Ideal Administration 2009 におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4265 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
231769 7.5 危険 ptcpay - PTCPay GeN3 forum の main_forum.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-4263 2012-12-20 19:28 2009-12-10 Show GitHub Exploit DB Packet Storm
231770 7.5 危険 Ganeti project - Ganeti の iallocator フレームワークにおけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2009-4261 2012-12-20 19:28 2009-12-21 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
201181 7.4 HIGH
Network 		f5 nginx_controller Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-23018 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
201182 6.1 MEDIUM
Network 		trailing-slash_project trailing-slash The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker… CWE-601
Open Redirect 		CVE-2021-23387 2024-11-21 14:51 2021-05-25 Show GitHub Exploit DB Packet Storm
201183 6.5 MEDIUM
Network 		dns-packet_project dns-packet This affects the package dns-packet before 5.2.2. It creates buffers with allocUnsafe and does not always fill them before forming network packets. This can expose internal application memory over un… CWE-909
 Missing Initialization of Resource 		CVE-2021-23386 2024-11-21 14:51 2021-05-21 Show GitHub Exploit DB Packet Storm
201184 5.4 MEDIUM
Network 		koa-remove-trailing-slashes_project koa-remove-trailing-slashes The package koa-remove-trailing-slashes before 2.0.2 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.… CWE-601
Open Redirect 		CVE-2021-23384 2024-11-21 14:51 2021-05-18 Show GitHub Exploit DB Packet Storm
201185 5.5 MEDIUM
Local 		argoproj argo_cd Exposure of System Data to an Unauthorized Control Sphere vulnerability in web UI of Argo CD allows attacker to cause leaked secret data into web UI error messages and logs. This issue affects Argo C… CWE-209
Information Exposure Through an Error Message 		CVE-2021-23135 2024-11-21 14:51 2021-05-13 Show GitHub Exploit DB Packet Storm
201186 7.8 HIGH
Local 		linux
fedoraproject
debian 		linux_kernel
fedora
debian_linux 		Use After Free vulnerability in nfc sockets in the Linux Kernel before 5.12.4 allows local attackers to elevate their privileges. In typical configurations, the issue can only be triggered by a privi… CWE-416
 Use After Free 		CVE-2021-23134 2024-11-21 14:51 2021-05-13 Show GitHub Exploit DB Packet Storm
201187 7.8 HIGH
Local 		mcafee total_protection Privilege Escalation vulnerability in the File Lock component of McAfee Total Protection (MTP) prior to 16.0.32 allows a local user to gain elevated privileges by manipulating a symbolic link in the … CWE-59
Link Following 		CVE-2021-23872 2024-11-21 14:51 2021-05-12 Show GitHub Exploit DB Packet Storm
201188 5.3 MEDIUM
Network 		f5 big-ip_access_policy_manager On BIG-IP APM versions 15.1.x before 15.1.3, 14.1.x before 14.1.4.1, 13.1.x before 13.1.4, and all versions of 16.0.x, 12.1.x, and 11.6.x, an attacker may be able to bypass APM's internal restriction… NVD-CWE-noinfo
CVE-2021-23016 2024-11-21 14:51 2021-05-11 Show GitHub Exploit DB Packet Storm
201189 7.2 HIGH
Network 		f5 big-ip_access_policy_manager
big-ip_advanced_firewall_manager
big-ip_application_acceleration_manager
big-ip_analytics
big-ip_application_security_manager
big-ip_domain_name_system
 On BIG-IP 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.0.8 through 13.1.3.6, and all versions of 16.0.x, when running in Appliance Mode, an authenticated user assigned the 'Administrator' role … CWE-863
 Incorrect Authorization 		CVE-2021-23015 2024-11-21 14:51 2021-05-11 Show GitHub Exploit DB Packet Storm
201190 8.8 HIGH
Network 		f5 big-ip_application_security_manager
big-ip_advanced_web_application_firewall 		On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the RE… CWE-862
 Missing Authorization 		CVE-2021-23014 2024-11-21 14:51 2021-05-11 Show GitHub Exploit DB Packet Storm