Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250271 1.9 注意 FreeBSD - FreeBSD の crontab における任意のディレクトリの存在を確定される脆弱性 CWE-200
情報漏えい 		CVE-2011-1074 2012-03-27 18:43 2011-03-4 Show GitHub Exploit DB Packet Storm
250272 1.9 注意 アップル
FreeBSD		 - FreeBSD および Apple Mac OS X の crontab.c における任意のファイルを特定する脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-1073 2012-03-27 18:43 2011-03-4 Show GitHub Exploit DB Packet Storm
250273 3.3 注意 The PHP Group - PEAR のインストーラにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2011-1072 2012-03-27 18:43 2011-02-28 Show GitHub Exploit DB Packet Storm
250274 2.6 注意 マイクロソフト - Microsoft Windows Azure SDK における重要な情報を取得される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1068 2012-03-27 18:43 2011-02-23 Show GitHub Exploit DB Packet Storm
250275 5 警告 Fedora Project - 389 Directory Server の slapd におけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2011-1067 2012-03-27 18:43 2011-02-23 Show GitHub Exploit DB Packet Storm
250276 2.6 注意 reyero - Drupal 用の Messaging モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1066 2012-03-27 18:43 2011-02-16 Show GitHub Exploit DB Packet Storm
250277 9.3 危険 pipi - PIPI Player の PIPIWebPlayer ActiveX コントロールにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-1065 2012-03-27 18:43 2011-02-22 Show GitHub Exploit DB Packet Storm
250278 6.8 警告 Qibosoft - qibosoft Qi Bo CMS の member/list.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2011-1064 2012-03-27 18:43 2011-02-22 Show GitHub Exploit DB Packet Storm
250279 4.3 警告 cherry-software - Cherry-Design Photopad におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1063 2012-03-27 18:43 2011-02-22 Show GitHub Exploit DB Packet Storm
250280 4.3 警告 taskfreak - TaskFreak! の include/html/header.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1062 2012-03-27 18:43 2011-02-22 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195891 6.5 MEDIUM
Network 		greenplum greenplum In versions of Greenplum database prior to 5.28.14 and 6.17.0, certain statements execution led to the storage of sensitive(credential) information in the logs of the database. A malicious user with … CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-22030 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
195892 9.1 CRITICAL
Network 		greenplum greenplum In versions of Greenplum database prior to 5.28.6 and 6.14.0, greenplum database contains a file path traversal vulnerability leading to information disclosure from the file system. A malicious user … CWE-22
Path Traversal 		CVE-2021-22028 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
195893 8.8 HIGH
Network 		vmware spring_cloud_netflix Applications using both `spring-cloud-netflix-hystrix-dashboard` and `spring-boot-starter-thymeleaf` expose a way to execute code submitted within the request URI path during the resolution of view t… CWE-94
Code Injection 		CVE-2021-22053 2024-11-21 14:49 2021-11-20 Show GitHub Exploit DB Packet Storm
195894 8.8 HIGH
Network 		vmware vcenter_server
cloud_foundation 		The vCenter Server contains a privilege escalation vulnerability in the IWA (Integrated Windows Authentication) authentication mechanism. A malicious actor with non-administrative access to vCenter S… NVD-CWE-noinfo
CVE-2021-22048 2024-11-21 14:49 2021-11-11 Show GitHub Exploit DB Packet Storm
195895 6.5 MEDIUM
Network 		vmware spring_cloud_gateway Applications using Spring Cloud Gateway are vulnerable to specifically crafted requests that could make an extra request on downstream services. Users of affected versions should apply the following … CWE-863
 Incorrect Authorization 		CVE-2021-22051 2024-11-21 14:49 2021-11-8 Show GitHub Exploit DB Packet Storm
195896 5.4 MEDIUM
Network 		gitlab gitlab A stored Cross-Site Scripting vulnerability in the DataDog integration in all versions of GitLab CE/EE starting from 13.7 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all version… CWE-79
Cross-site Scripting 		CVE-2021-22260 2024-11-21 14:49 2021-11-5 Show GitHub Exploit DB Packet Storm
195897 8.8 HIGH
Network 		vmware installbuilder On Windows, the uninstaller binary copies itself to a fixed temporary location, which is then executed (the originally called uninstaller exits, so it does not block the installation directory). This… CWE-330
 Use of Insufficiently Random Values 		CVE-2021-22038 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
195898 7.8 HIGH
Local 		vmware installbuilder Under certain circumstances, when manipulating the Windows registry, InstallBuilder uses the reg.exe system command. The full path to the command is not enforced, which results in a search in the sea… CWE-427
 Uncontrolled Search Path Element 		CVE-2021-22037 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
195899 6.5 MEDIUM
Network 		vmware spring_advanced_message_queuing_protocol In Spring AMQP versions 2.2.0 - 2.2.18 and 2.3.0 - 2.3.10, the Spring AMQP Message object, in its toString() method, will deserialize a body for a message with content type application/x-java-seriali… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-22097 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm
195900 4.3 MEDIUM
Network 		vmware
netapp
oracle 		spring_framework
snap_creator_framework
snapcenter
active_iq_unified_manager
management_services_for_element_software_and_netapp_hci
metrocluster_tiebreaker
communications_cloud_nat… 		In Spring Framework versions 5.3.0 - 5.3.10, 5.2.0 - 5.2.17, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries. NVD-CWE-Other
CVE-2021-22096 2024-11-21 14:49 2021-10-29 Show GitHub Exploit DB Packet Storm