Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250731	4	警告	IBM	-	IBM Lotus Mobile Connect の Connection Manager におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4593	2012-03-27 18:42	2010-04-22	Show	GitHub Exploit DB Packet Storm

250732	4.3	警告	IBM	-	IBM Lotus Mobile Connect の Mobile Network Connections 機能におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4592	2012-03-27 18:42	2010-04-9	Show	GitHub Exploit DB Packet Storm

250733	4.4	警告	IBM	-	IBM LMC の Connection Manager におけるアクセスを取得される脆弱性	CWE-287 不適切な認証	CVE-2010-4591	2012-03-27 18:42	2010-04-9	Show	GitHub Exploit DB Packet Storm

250734	4.3	警告	IBM	-	IBM LMC の HTTP-AS におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4590	2012-03-27 18:42	2010-12-22	Show	GitHub Exploit DB Packet Storm

250735	4.3	警告	IBM	-	IBM ENOVIA 6 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4589	2012-03-27 18:42	2010-12-22	Show	GitHub Exploit DB Packet Storm

250736	10	危険	IBM	-	IBM Rational ClearQuest における .ocx ファイルに関する処理に不備がある脆弱性	CWE-noinfo 情報不足	CVE-2010-4601	2012-03-27 18:42	2009-11-2	Show	GitHub Exploit DB Packet Storm

250737	4.3	警告	Mozilla Foundation	-	Bugzilla の chart.cgi における CRLF インジェクションの脆弱性	CWE-94 コード・インジェクション	CVE-2010-4572	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

250738	4.3	警告	Mozilla Foundation	-	Bugzilla の duplicate-detection 機能におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4570	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

250739	4.3	警告	Mozilla Foundation	-	Bugzilla におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4569	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

250740	7.5	危険	Mozilla Foundation	-	Bugzilla における任意のアカウントにアクセスされる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-4568	2012-03-27 18:42	2011-01-28	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195881	9.8	CRITICAL Network	getgrav	grav-plugin-admin	Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and earlier, an unauthenticated user can execute some methods of admi…	NVD-CWE-Other	CVE-2021-21425	2024-11-21 14:48	2021-04-8	Show	GitHub Exploit DB Packet Storm

195882	4.3	MEDIUM Network	jenkins	promoted_builds	A cross-site request forgery (CSRF) vulnerability in Jenkins promoted builds Plugin 3.9 and earlier allows attackers to to promote builds.	CWE-352 Origin Validation Error	CVE-2021-21641	2024-11-21 14:48	2021-04-7	Show	GitHub Exploit DB Packet Storm

195883	4.3	MEDIUM Network	jenkins	jenkins	Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not properly check that a newly created view has an allowed name, allowing attackers with View/Create permission to create views with invalid o…	-	CVE-2021-21640	2024-11-21 14:48	2021-04-7	Show	GitHub Exploit DB Packet Storm

195884	4.3	MEDIUM Network	jenkins	jenkins	Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not validate the type of object created after loading the data submitted to the `config.xml` REST API endpoint of a node, allowing attackers wi…	-	CVE-2021-21639	2024-11-21 14:48	2021-04-7	Show	GitHub Exploit DB Packet Storm

195885	7.5	HIGH Network	syncthing	syncthing	Syncthing is a continuous file synchronization program. In Syncthing before version 1.15.0, the relay server `strelaysrv` can be caused to crash and exit by sending a relay message with a negative le…	-	CVE-2021-21404	2024-11-21 14:48	2021-04-7	Show	GitHub Exploit DB Packet Storm

195886	8.1	HIGH Network	projen_project	projen	`projen` is a project generation tool that synthesizes project configuration files such as `package.json`, `tsconfig.json`, `.gitignore`, GitHub Workflows, `eslint`, `jest`, and more, from a well-typ…	-	CVE-2021-21423	2024-11-21 14:48	2021-04-7	Show	GitHub Exploit DB Packet Storm

195887	4.3	MEDIUM Network	dell	wyse_management_suite	Wyse Management Suite versions up to 3.2 contains a vulnerability wherein a malicious authenticated user can cause a denial of service in the job status retrieval page, also affecting other users tha…	CWE-20 Improper Input Validation	CVE-2021-21533	2024-11-21 14:48	2021-04-3	Show	GitHub Exploit DB Packet Storm

195888	6.3	MEDIUM Adjacent	dell	wyse_thinos	Dell Wyse ThinOS 8.6 MR9 contains remediation for an improper management server validation vulnerability that could be potentially exploited to redirect a client to an attacker-controlled management …	CWE-20 Improper Input Validation	CVE-2021-21532	2024-11-21 14:48	2021-04-3	Show	GitHub Exploit DB Packet Storm

195889	5.5	MEDIUM Local	dell	system_update	Dell System Update (DSU) 1.9 and earlier versions contain a denial of service vulnerability. A local authenticated malicious user with low privileges may potentially exploit this vulnerability to cau…	CWE-400 Uncontrolled Resource Consumption	CVE-2021-21529	2024-11-21 14:48	2021-04-3	Show	GitHub Exploit DB Packet Storm

195890	6.5	MEDIUM Network	wire	wire-webapp	wire-webapp is an open-source front end for Wire, a secure collaboration platform. In wire-webapp before version 2021-03-15-production.0, when being prompted to enter the app-lock passphrase, the typ…	CWE-200 Information Exposure	CVE-2021-21400	2024-11-21 14:48	2021-04-3	Show	GitHub Exploit DB Packet Storm