Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 4:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250691	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4696	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

250692	4.3	警告	XWiki	-	XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4642	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250693	7.5	危険	XWiki	-	XWiki Enterprise における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4641	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250694	4.3	警告	XWiki	-	XWiki Watch におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4640	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250695	7.5	危険	intendance	-	MySource Matrix の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4639	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250696	6.8	警告	iptechinside	-	JQuarks4s コンポーネントの submitSurvey 関数における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4638	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250697	4.3	警告	finalcut	-	WordPress の FeedList プラグインにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4637	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250698	7.5	危険	site2nite	-	Site2Nite Business e-Listings の detail.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4636	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250699	7.5	危険	site2nite	-	Site2Nite VRBO Listings の detail.asp における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4635	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

250700	7.5	危険	sumeffect	-	digiSHOP の cart.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4633	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 1, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195811	4.3	MEDIUM Network	vmware oracle	spring_framework communications_cloud_native_core_console communications_cloud_native_core_service_communication_proxy	In Spring Framework versions 5.3.0 - 5.3.13, 5.2.0 - 5.2.18, and older unsupported versions, it is possible for a user to provide malicious input to cause the insertion of additional log entries. Thi…	NVD-CWE-noinfo	CVE-2021-22060	2024-11-21 14:49	2022-01-10	Show	GitHub Exploit DB Packet Storm

195812	7.8	HIGH Local	vmware	cloud_foundation workstation fusion esxi	VMware ESXi (7.0, 6.7 before ESXi670-202111101-SG and 6.5 before ESXi650-202110101-SG), VMware Workstation (16.2.0) and VMware Fusion (12.2.0) contains a heap-overflow vulnerability in CD-ROM device …	CWE-787 Out-of-bounds Write	CVE-2021-22045	2024-11-21 14:49	2022-01-5	Show	GitHub Exploit DB Packet Storm

195813	8.1	HIGH Network	anker	eufy_homebase_2_firmware	An authentication bypass vulnerability exists in the process_msg() function of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted man-in-the-middle attack can lead to inc…	NVD-CWE-Other	CVE-2021-21953	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195814	9.8	CRITICAL Network	anker	eufy_homebase_2_firmware	An authentication bypass vulnerability exists in the CMD_DEVICE_GET_RSA_KEY_REQUEST functionality of the home_security binary of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted set of network pac…	CWE-287 Improper Authentication	CVE-2021-21952	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195815	6.5	MEDIUM Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘host_alt_filter’ parameter. This can be done as any auth…	CWE-89 SQL Injection	CVE-2021-21937	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195816	8.8	HIGH Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘health_alt_filter’ parameter. This can be done as any au…	CWE-89 SQL Injection	CVE-2021-21936	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195817	6.5	MEDIUM Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this vulnerability at ‘host_alt_filter2’ parameter. This can be done as any aut…	CWE-89 SQL Injection	CVE-2021-21935	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195818	6.5	MEDIUM Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at ‘imei_filter’ parameter. This can be done as any authenticated user or …	CWE-89 SQL Injection	CVE-2021-21934	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195819	6.5	MEDIUM Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at ‘esn_filter’ parameter. This can be done as any authenticated user or t…	CWE-89 SQL Injection	CVE-2021-21933	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm

195820	6.5	MEDIUM Network	advantech	r-seenet	A specially-crafted HTTP request can lead to SQL injection. An attacker can make authenticated HTTP requests to trigger this at ‘name_filter’ parameter. This can be done as any authenticated user or …	CWE-89 SQL Injection	CVE-2021-21932	2024-11-21 14:49	2021-12-23	Show	GitHub Exploit DB Packet Storm