Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
250651 6 警告 LightNEasy - LightNEasy の LightNEasy.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4751 2012-03-27 18:42 2011-03-1 Show GitHub Exploit DB Packet Storm
250652 6.8 警告 blogcms - BLOG:CMS の admin/libs/ADMIN.php におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4750 2012-03-27 18:42 2011-03-1 Show GitHub Exploit DB Packet Storm
250653 6.8 警告 Zikula Foundation - Zikula におけるクロスサイトリクエストフォージェリ攻撃を誘発される脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2010-4729 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
250654 5 警告 Zikula Foundation - Zikula における乱数化をベースにした保護機能を破られる脆弱性 CWE-310
暗号の問題 		CVE-2010-4728 2012-03-27 18:42 2011-02-8 Show GitHub Exploit DB Packet Storm
250655 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-4727 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250656 10 危険 Smarty - Smarty の math プラグインにおける詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4726 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250657 10 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4725 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250658 10 危険 Smarty - Smarty のパーサー実装における詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4724 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250659 9.3 危険 Smarty - Smarty における詳細不明の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-4723 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
250660 10 危険 Smarty - Smarty の fetch プラグインにおける詳細不明の脆弱性 CWE-noinfo
情報不足 		CVE-2010-4722 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195911 4.9 MEDIUM
Network 		vmware vrealize_suite_lifecycle_manager
cloud_foundation
vrealize_operations_manager 		The vRealize Operations Manager API (8.x prior to 8.5) contains an arbitrary file read vulnerability. A malicious actor with administrative access to vRealize Operations Manager API can read any arbi… CWE-22
Path Traversal 		CVE-2021-22022 2024-11-21 14:49 2021-08-31 Show GitHub Exploit DB Packet Storm
195912 5.4 MEDIUM
Network 		gitlab gitlab Improper authorization in GitLab CE/EE affecting all versions since 12.6 allowed guest users to create issues for Sentry errors and track their status CWE-863
 Incorrect Authorization 		CVE-2021-22256 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195913 5.4 MEDIUM
Network 		gitlab gitlab Improper authorization in GitLab CE/EE affecting all versions since 13.3 allowed users to view and delete impersonation tokens that administrators created for their account NVD-CWE-Other
CVE-2021-22250 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195914 4.3 MEDIUM
Network 		gitlab gitlab Improper authorization in GitLab CE/EE affecting all versions since 13.0 allows guests in private projects to view CI/CD analytics CWE-863
 Incorrect Authorization 		CVE-2021-22247 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195915 2.7 LOW
Network 		gitlab gitlab Improper validation of commit author in GitLab CE/EE affecting all versions allowed an attacker to make several pages in a project impossible to view CWE-20
 Improper Input Validation  		CVE-2021-22245 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195916 6.5 MEDIUM
Network 		gitlab gitlab Improper authorization in the vulnerability report feature in GitLab EE affecting all versions since 13.1 allowed a reporter to access vulnerability data NVD-CWE-Other
CVE-2021-22244 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195917 4.3 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab CE/EE versions starting 7.10 may allow existing GitLab users to use an invite URL meant for another email address to gain access into a group. CWE-863
 Incorrect Authorization 		CVE-2021-22243 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195918 5.4 MEDIUM
Network 		gitlab gitlab Insufficient input sanitization in Mermaid markdown in GitLab CE/EE version 11.4 and up allows an attacker to exploit a stored cross-site scripting vulnerability via a specially-crafted markdown CWE-79
Cross-site Scripting 		CVE-2021-22242 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195919 4.9 MEDIUM
Network 		gitlab gitlab Under specialized conditions, GitLab may allow a user with an impersonation token to perform Git actions even if impersonation is disabled. This vulnerability is present in GitLab CE/EE versions befo… CWE-384
 Session Fixation 		CVE-2021-22237 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm
195920 8.8 HIGH
Network 		gitlab gitlab Due to improper handling of OAuth client IDs, new subscriptions generated OAuth tokens on an incorrect OAuth client application. This vulnerability is present in GitLab CE/EE since version 14.1. CWE-863
 Incorrect Authorization 		CVE-2021-22236 2024-11-21 14:49 2021-08-26 Show GitHub Exploit DB Packet Storm