Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
252921 9.3 危険 アップル - Apple の QuickTime における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2011-0256 2012-03-27 18:42 2011-08-15 Show GitHub Exploit DB Packet Storm
252922 4.3 警告 Mozilla Foundation - Mozilla Firefox の X.509 証明書検証機能における SSL サーバを偽装する脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0082 2012-03-27 18:42 2011-06-6 Show GitHub Exploit DB Packet Storm
252923 5 警告 Majordomo 2 - Majordomo の_list_file_get 関数における任意のファイルを読まれる脆弱性 CWE-22
パス・トラバーサル 		CVE-2011-0063 2012-03-27 18:42 2011-03-15 Show GitHub Exploit DB Packet Storm
252924 4.3 警告 cgiirc - CGI:IRC の nonjs インターフェースにおけるにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0050 2012-03-27 18:42 2011-02-18 Show GitHub Exploit DB Packet Storm
252925 4.3 警告 Mozilla Foundation - Bugzilla におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0048 2012-03-27 18:42 2011-01-28 Show GitHub Exploit DB Packet Storm
252926 4.3 警告 MediaWiki - MediaWiki におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-0047 2012-03-27 18:42 2011-02-3 Show GitHub Exploit DB Packet Storm
252927 6.8 警告 Mozilla Foundation - Bugzilla におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2011-0046 2012-03-27 18:42 2011-01-28 Show GitHub Exploit DB Packet Storm
252928 6.8 警告 レッドハット - IcedTea における信頼できるソースからコードを実行するように見せかけることが出来る脆弱性 CWE-20
不適切な入力確認 		CVE-2011-0025 2012-03-27 18:42 2011-02-4 Show GitHub Exploit DB Packet Storm
252929 4.7 警告 Fedora Project
レッドハット		 - 389 Directory Server の setup スクリプトにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-0022 2012-03-27 18:42 2011-02-23 Show GitHub Exploit DB Packet Storm
252930 9.3 危険 VideoLAN - VideoLAN VLC Media Player の cdg.c におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2011-0021 2012-03-27 18:42 2011-01-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 19, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194751 8.8 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a privilege escalation vulnerability when using the SAML Web Inbound Trust Association Interceptor (TAI). IBM X-Force ID: 2020… NVD-CWE-noinfo
CVE-2021-29754 2024-11-21 15:01 2021-06-12 Show GitHub Exploit DB Packet Storm
194752 7.4 HIGH
Network 		wp-cli wp-cli WP-CLI is the command-line interface for WordPress. An improper error handling in HTTPS requests management in WP-CLI version 0.12.0 and later allows remote attackers able to intercept the communicat… - CVE-2021-29504 2024-11-21 15:01 2021-06-8 Show GitHub Exploit DB Packet Storm
194753 7.5 HIGH
Network 		bubble_fireworks_project bubble_fireworks bubble fireworks is an open source java package relating to Spring Framework. In bubble fireworks before version 2021.BUILD-SNAPSHOT there is a vulnerability in which the package did not properly ver… - CVE-2021-29500 2024-11-21 15:01 2021-06-5 Show GitHub Exploit DB Packet Storm
194754 5.4 MEDIUM
Network 		ibm rational_doors_next_generation
rational_quality_manager
collaborative_lifecycle_management
engineering_test_management
rational_engineering_lifecycle_manager
engineering_lifecycle_mana… 		IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… CWE-79
Cross-site Scripting 		CVE-2021-29670 2024-11-21 15:01 2021-06-3 Show GitHub Exploit DB Packet Storm
194755 5.4 MEDIUM
Network 		ibm rational_doors_next_generation
rational_quality_manager
collaborative_lifecycle_management
engineering_test_management
rational_engineering_lifecycle_manager
engineering_lifecycle_mana… 		IBM Jazz Foundation and IBM Engineering products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended fu… CWE-79
Cross-site Scripting 		CVE-2021-29668 2024-11-21 15:01 2021-06-3 Show GitHub Exploit DB Packet Storm
194756 7.8 HIGH
Local 		ibm spectrum_scale IBM Spectrum Scale 5.0.0 through 5.0.5.6 and 5.1.0 through 5.1.0.3 system core component is affected by a format string security vulnerability. An attacker could execute arbitrary code in the context… CWE-134
Use of Externally-Controlled Format String 		CVE-2021-29740 2024-11-21 15:01 2021-06-1 Show GitHub Exploit DB Packet Storm
194757 7.8 HIGH
Local 		ibm security_verify_access IBM Security Verify Access 20.07 is vulnerable to a stack based buffer overflow, caused by improper bounds checking which could allow a local attacker to execute arbitrary code on the system with ele… CWE-787
 Out-of-bounds Write 		CVE-2021-29665 2024-11-21 15:01 2021-06-1 Show GitHub Exploit DB Packet Storm
194758 6.5 MEDIUM
Network 		genivi diagnostic_log_and_trace GENIVI Diagnostic Log and Trace (DLT) provides a log and trace interface. In versions of GENIVI DLT between 2.10.0 and 2.18.6, a configuration file containing the special characters could cause a vul… NVD-CWE-noinfo
CVE-2021-29507 2024-11-21 15:01 2021-05-29 Show GitHub Exploit DB Packet Storm
194759 8.8 HIGH
Network 		xstream_project
debian
fedoraproject
netapp
oracle 		xstream
debian_linux
fedora
snapmanager
webcenter_portal
webcenter_sites
communications_unified_inventory_management
enterprise_manager_ops_center
banking_credit_facilities_pr… 		XStream is software for serializing Java objects to XML and back again. A vulnerability in XStream versions prior to 1.4.17 may allow a remote attacker has sufficient rights to execute commands of th… - CVE-2021-29505 2024-11-21 15:01 2021-05-29 Show GitHub Exploit DB Packet Storm
194760 8.3 HIGH
Network 		envoyproxy envoy Envoy is a cloud-native edge/middle/service proxy. Envoy does not decode escaped slash sequences `%2F` and `%5C` in HTTP URL paths in versions 1.18.2 and before. A remote attacker may craft a path wi… - CVE-2021-29492 2024-11-21 15:01 2021-05-29 Show GitHub Exploit DB Packet Storm