Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
250781	4.3	警告	Alex Kellner TYPO3 Association	-	TYPO3 の powermail extension におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3605	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

250782	7.5	危険	Alex Kellner TYPO3 Association	-	TYPO3 の powermail extension における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3604	2012-03-27 18:42	2010-09-22	Show	GitHub Exploit DB Packet Storm

250783	6.8	警告	i7MEDIA, LLC	-	mojoPortal のファイルマネージャサービスにおけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-3603	2012-03-27 18:42	2010-09-24	Show	GitHub Exploit DB Packet Storm

250784	4.3	警告	i7MEDIA, LLC	-	mojoPortal の ProfileView.aspx におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3602	2012-03-27 18:42	2010-09-24	Show	GitHub Exploit DB Packet Storm

250785	7.5	危険	Invision Power Services, Inc	-	ibPhotohost の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-3601	2012-03-27 18:42	2010-09-24	Show	GitHub Exploit DB Packet Storm

250786	9	危険	オラクル	-	Oracle VM の OracleVM コンポーネントにおける ovs エージェントの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3585	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

250787	4.3	警告	オラクル	-	Oracle VM の Oracle VM コンポーネントにおける ovs エージェントの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3584	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

250788	9	危険	オラクル	-	Oracle VM の Oracle VM コンポーネントにおける ovs エージェントの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3583	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

250789	9	危険	オラクル	-	Oracle Fusion Middleware の OracleVM コンポーネントにおける ovs エージェントの処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-3582	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

250790	3.5	注意	オラクル	-	Oracle Fusion Middleware の BPEL Console コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3581	2012-03-27 18:42	2010-10-14	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195851	5.4	MEDIUM Network	cybozu	garoon	Cross-site scripting vulnerability in Scheduler of Cybozu Garoon 4.0.0 to 5.0.2 allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors.	CWE-79 Cross-site Scripting	CVE-2021-20753	2024-11-21 14:47	2021-08-18	Show	GitHub Exploit DB Packet Storm

195852	6.1	MEDIUM Network	groupsession	groupsession_zion groupsession_bycloud groupsession	Open redirect vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and GroupSe…	CWE-601 Open Redirect	CVE-2021-20789	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195853	4.3	MEDIUM Network	groupsession	groupsession_zion groupsession_bycloud groupsession	Server-side request forgery (SSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to …	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2021-20788	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195854	4.8	MEDIUM Network	groupsession	groupsession_zion groupsession_bycloud groupsession	Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and …	CWE-79 Cross-site Scripting	CVE-2021-20787	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195855	4.3	MEDIUM Network	groupsession	groupsession_zion groupsession_bycloud groupsession	Cross-site request forgery (CSRF) vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to v…	CWE-352 Origin Validation Error	CVE-2021-20786	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195856	4.8	MEDIUM Network	groupsession	groupsession_zion groupsession_bycloud groupsession	Cross-site scripting vulnerability in GroupSession (GroupSession Free edition from ver2.2.0 to the version prior to ver5.1.0, GroupSession byCloud from ver3.0.3 to the version prior to ver5.1.0, and …	CWE-79 Cross-site Scripting	CVE-2021-20785	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195857	8.8	HIGH Network	softbank	optical_bb_unit_e-wmta_firmware	Cross-site request forgery (CSRF) vulnerability in Optical BB unit E-WMTA2.3 allows a remote attacker to hijack the authentication of administrators via a specially crafted page.	CWE-352 Origin Validation Error	CVE-2021-20783	2024-11-21 14:47	2021-07-30	Show	GitHub Exploit DB Packet Storm

195858	6.1	MEDIUM Network	voidtools	everything	HTTP header injection vulnerability in Everything all versions except the Lite version may allow a remote attacker to inject an arbitrary script or alter the website that uses the product via unspeci…	NVD-CWE-Other	CVE-2021-20784	2024-11-21 14:47	2021-07-14	Show	GitHub Exploit DB Packet Storm

195859	8.8	HIGH Network	tipsandtricks-hq	software_license_manager	Cross-site request forgery (CSRF) vulnerability in Software License Manager versions prior to 4.4.6 allows remote attackers to hijack the authentication of administrators via unspecified vectors.	CWE-352 Origin Validation Error	CVE-2021-20782	2024-11-21 14:47	2021-07-14	Show	GitHub Exploit DB Packet Storm

195860	8.8	HIGH Network	pluginus	wordpress_meta_data_and_taxonomies_filter	Cross-site request forgery (CSRF) vulnerability in WordPress Meta Data Filter & Taxonomies Filter versions prior to v.1.2.8 and versions prior to v.2.2.8 allows remote attackers to hijack the authent…	CWE-352 Origin Validation Error	CVE-2021-20781	2024-11-21 14:47	2021-07-14	Show	GitHub Exploit DB Packet Storm