Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252601 7.5 危険 esoftpro - esoftpro Online Guestbook Pro の ogp_show.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4996 2011-12-9 14:22 2011-11-1 Show GitHub Exploit DB Packet Storm
252602 7.5 危険 esoftpro - esoftpro Online Photo Pro の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4999 2011-12-9 14:21 2011-11-1 Show GitHub Exploit DB Packet Storm
252603 7.5 危険 esoftpro - esoftpro Online Contact Manager の view.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5001 2011-12-9 14:21 2011-11-1 Show GitHub Exploit DB Packet Storm
252604 4.3 警告 Exponent CMS project - Exponent CMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-5002 2011-12-9 14:20 2011-11-1 Show GitHub Exploit DB Packet Storm
252605 7.5 危険 Autartica - Joomla! 用 の AutarTimonial コンポーネントにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5003 2011-12-9 14:20 2011-11-1 Show GitHub Exploit DB Packet Storm
252606 4.3 警告 VideoWhisper.com - VideoWhisper PHP 2 Way Video Chat コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-4971 2011-12-9 14:19 2011-11-2 Show GitHub Exploit DB Packet Storm
252607 7.5 危険 OlyKit - OlyKit Swoopo Clone 2010 の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-4997 2011-12-9 14:18 2011-11-2 Show GitHub Exploit DB Packet Storm
252608 7.5 危険 Maulana Al Matien - ardeaCore PHP Framework におけるリモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2010-4998 2011-12-9 14:18 2011-11-2 Show GitHub Exploit DB Packet Storm
252609 7.5 危険 Joe Pieruccini - MCLogin System の login/login_index.php におけるSQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5000 2011-12-9 14:17 2011-11-2 Show GitHub Exploit DB Packet Storm
252610 7.5 危険 2daybiz - 2daybiz Polls Script の searchvote.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2010-5004 2011-12-9 14:16 2011-11-2 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195621 6.5 MEDIUM
Network 		teluu
debian 		pjsip
debian_linux 		PJSIP is a free and open source multimedia communication library written in C language implementing standard based protocols such as SIP, SDP, RTP, STUN, TURN, and ICE. In PJSIP version 2.10 and earl… CWE-754
 Improper Check for Unusual or Exceptional Conditions 		CVE-2021-21375 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
195622 8.6 HIGH
Local 		tenable jira_cloud Tenable for Jira Cloud is an open source project designed to pull Tenable.io vulnerability data, then generate Jira Tasks and sub-tasks based on the vulnerabilities' current state. It published in py… - CVE-2021-21371 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
195623 6.3 MEDIUM
Network 		linuxfoundation
fedoraproject 		containerd
fedora 		In containerd (an industry-standard container runtime) before versions 1.3.10 and 1.4.4, containers launched through containerd's CRI implementation (through Kubernetes, crictl, or any other pod/cont… - CVE-2021-21334 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
195624 8.1 HIGH
Network 		3mf
fedoraproject
debian 		lib3mf
fedora
debian_linux 		A use-after-free vulnerability exists in the NMR::COpcPackageReader::releaseZIP() functionality of 3MF Consortium lib3mf 2.0.0. A specially crafted 3MF file can lead to code execution. An attacker ca… CWE-416
 Use After Free 		CVE-2021-21772 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
195625 6.1 MEDIUM
Network 		sap netweaver_application_server_java SAP Netweaver Application Server Java (Applications based on WebDynpro Java) versions 7.00, 7.10, 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, allow an attacker to redirect users to a malicious site due to Re… CWE-601
Open Redirect 		CVE-2021-21491 2024-11-21 14:48 2021-03-11 Show GitHub Exploit DB Packet Storm
195626 6.5 MEDIUM
Network 		linuxfoundation besu Hyperledger Besu is an open-source, MainNet compatible, Ethereum client written in Java. In Besu before version 1.5.1 there is a denial-of-service vulnerability involving the HTTP JSON-RPC API servic… - CVE-2021-21369 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
195627 3.3 LOW
Local 		sap 3d_visual_enterprise_viewer When a user opens manipulated Graphics Interchange Format (.GIF) format files received from untrusted sources in SAP 3D Visual Enterprise Viewer version 9, the application crashes and becomes tempora… NVD-CWE-noinfo
CVE-2021-21493 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
195628 6.5 MEDIUM
Network 		sap netweaver_knowledge_management Knowledge Management versions 7.01, 7.02, 7.30, 7.31, 7.40, 7.50 allows a remote attacker with basic privileges to deserialize user-controlled data without verification, leading to insecure deseriali… CWE-502
 Deserialization of Untrusted Data 		CVE-2021-21488 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
195629 8.8 HIGH
Network 		sap payment_engine SAP Payment Engine version 500, does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. CWE-862
 Missing Authorization 		CVE-2021-21487 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm
195630 8.8 HIGH
Network 		sap enterprise_financial_services SAP Enterprise Financial Services versions, 101, 102, 103, 104, 105, 600, 603, 604, 605, 606, 616, 617, 618, 800, does not perform necessary authorization checks for an authenticated user, resulting … CWE-862
 Missing Authorization 		CVE-2021-21486 2024-11-21 14:48 2021-03-10 Show GitHub Exploit DB Packet Storm