Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 28, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
251611 4.3 警告 Powie - Powie pFile の pfile/kommentar.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1211 2012-02-27 17:12 2012-02-24 Show GitHub Exploit DB Packet Storm
251612 4.3 警告 Apache Software Foundation - Apache HTTP Server の mod_proxy モジュールにおけるイントラネットサーバにリクエストを送信される脆弱性 CWE-20
不適切な入力確認 		CVE-2011-3639 2012-02-27 17:01 2011-10-25 Show GitHub Exploit DB Packet Storm
251613 4.3 警告 Zimbra - Zimbra Web Client の zimbra/h/calendar におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1213 2012-02-27 16:48 2012-02-24 Show GitHub Exploit DB Packet Storm
251614 4.3 警告 SMW+ - Semantic Enterprise Wiki の smwfOnSfSetTargetName 関数におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1212 2012-02-27 16:47 2012-02-24 Show GitHub Exploit DB Packet Storm
251615 7.5 危険 Powie - Powie pFile の pfile/file.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-1210 2012-02-27 15:51 2012-02-24 Show GitHub Exploit DB Packet Storm
251616 4.3 警告 Fork CMS - Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1209 2012-02-27 15:48 2012-02-24 Show GitHub Exploit DB Packet Storm
251617 4.3 警告 Fork CMS - Fork CMS の backend/core/engine/base.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1208 2012-02-27 15:48 2012-02-24 Show GitHub Exploit DB Packet Storm
251618 5 警告 Fork CMS - Fork CMS の frontend/core/engine/javascript.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-1207 2012-02-27 15:41 2012-02-24 Show GitHub Exploit DB Packet Storm
251619 9.3 危険 Hancom Inc. - Hancom Office 2010 SE における整数オーバフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-1206 2012-02-27 15:38 2012-02-24 Show GitHub Exploit DB Packet Storm
251620 7.5 危険 alanft - WordPress 用 Relocate Upload プラグインにおける PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2012-1205 2012-02-27 15:35 2012-02-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195461 8.8 HIGH
Local 		microsoft windows_10 Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploi… NVD-CWE-Other
CVE-2021-21552 2024-11-21 14:48 2021-05-22 Show GitHub Exploit DB Packet Storm
195462 8.8 HIGH
Network 		dell xtremio_management_server Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. A non-privileged attacker could potentially exploit this vulnerability, leading to a privileged … CWE-352
 Origin Validation Error 		CVE-2021-21549 2024-11-21 14:48 2021-05-22 Show GitHub Exploit DB Packet Storm
195463 4.9 MEDIUM
Network 		zte zxcdn The management system of ZXCDN is impacted by the information leak vulnerability. Attackers can make further analysis according to the information returned by the program, and then obtain some sensit… CWE-200
Information Exposure 		CVE-2021-21733 2024-11-21 14:48 2021-05-19 Show GitHub Exploit DB Packet Storm
195464 7.5 HIGH
Network 		zte axon_11_5g_firmware A mobile phone of ZTE is impacted by improper access control vulnerability. Due to improper permission settings, third-party applications can read some files in the proc file system without authoriza… NVD-CWE-Other
CVE-2021-21732 2024-11-21 14:48 2021-05-19 Show GitHub Exploit DB Packet Storm
195465 5.3 MEDIUM
Network 		sensiolabs
fedoraproject 		symfony
fedora 		Symfony is a PHP framework for web and console applications and a set of reusable PHP components. The ability to enumerate users was possible without relevant permissions due to different handling de… - CVE-2021-21424 2024-11-21 14:48 2021-05-14 Show GitHub Exploit DB Packet Storm
195466 7.1 HIGH
Network 		jenkins xcode_integration Jenkins Xcode integration Plugin 2.0.14 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks. - CVE-2021-21656 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
195467 7.1 HIGH
Network 		jenkins p4 A cross-site request forgery (CSRF) vulnerability in Jenkins P4 Plugin 1.11.4 and earlier allows attackers to connect to an attacker-specified Perforce server using attacker-specified username and pa… CWE-352
 Origin Validation Error 		CVE-2021-21655 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
195468 4.3 MEDIUM
Network 		jenkins p4 Jenkins P4 Plugin 1.11.4 and earlier does not perform permission checks in multiple HTTP endpoints, allowing attackers with Overall/Read permission to connect to an attacker-specified Perforce server… - CVE-2021-21654 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
195469 4.3 MEDIUM
Network 		jenkins xray_-_test_management_for_jira Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier does not perform a permission check in an HTTP endpoint, allowing with Overall/Read permission to enumerate credentials IDs of credent… - CVE-2021-21653 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm
195470 7.1 HIGH
Network 		jenkins xray_-_test_management_for_jira A cross-site request forgery (CSRF) vulnerability in Jenkins Xray - Test Management for Jira Plugin 2.4.0 and earlier allows attackers to connect to an attacker-specified URL using attacker-specified… CWE-352
 Origin Validation Error 		CVE-2021-21652 2024-11-21 14:48 2021-05-12 Show GitHub Exploit DB Packet Storm