Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	4.3	警告	ut-files	-	UTStats の pages/match_report.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5007	2011-12-9 14:14	2011-11-2	Show	GitHub Exploit DB Packet Storm

252952	7.5	危険	Denali	-	BrightSuite Groupware における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5008	2011-12-9 14:13	2011-11-2	Show	GitHub Exploit DB Packet Storm

252953	7.5	危険	ut-files	-	UTStats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5009	2011-12-9 14:12	2011-11-2	Show	GitHub Exploit DB Packet Storm

252954	4.3	警告	FullSite Pty Ltd	-	SchoolMation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5010	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252955	7.5	危険	FullSite Pty Ltd	-	SchoolMation における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5011	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252956	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

252957	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

252958	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

252959	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

252960	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 29, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195311	4.8	MEDIUM Network	gitlab	gitlab	A stored Cross-Site Scripting vulnerability in the Jira integration in all GitLab versions starting from 13.9 before 14.0.9, all versions starting from 14.1 before 14.1.4, and all versions starting f…	CWE-79 Cross-site Scripting	CVE-2021-22261	2024-11-21 14:49	2021-10-5	Show	GitHub Exploit DB Packet Storm

195312	4.3	MEDIUM Network	gitlab	gitlab	The project import/export feature in GitLab 8.9 and greater could be used to obtain otherwise private email addresses	NVD-CWE-noinfo	CVE-2021-22258	2024-11-21 14:49	2021-10-5	Show	GitHub Exploit DB Packet Storm

195313	5.3	MEDIUM Network	gitlab	gitlab	An issue has been discovered in GitLab affecting all versions starting from 14.0 before 14.0.9, all versions starting from 14.1 before 14.1.4, all versions starting from 14.2 before 14.2.2. The route…	NVD-CWE-noinfo	CVE-2021-22257	2024-11-21 14:49	2021-10-5	Show	GitHub Exploit DB Packet Storm

195314	6.5	MEDIUM Network	gitlab	gitlab	A potential DOS vulnerability was discovered in GitLab EE starting with version 12.6 due to lack of pagination in dependencies API.	NVD-CWE-noinfo	CVE-2021-22259	2024-11-21 14:49	2021-10-5	Show	GitHub Exploit DB Packet Storm

195315	9.4	CRITICAL Network	abb busch-jaeger	mybuildings mybusch-jaeger	The vulnerability origins in the commissioning process where an attacker of the ControlTouch can enter a serial number in a specific way to transfer the device virtually into her/his my.busch-jaeger.…	NVD-CWE-noinfo	CVE-2021-22272	2024-11-21 14:49	2021-09-27	Show	GitHub Exploit DB Packet Storm

195316	5.5	MEDIUM Local	abb	system_access_point_2.0_firmware system_access_point_127v_firmware wl-system_access_point_127v_firmware wl-system_access_point_firmware wl-system_access_point_2.0_firmware	The vulnerability allows a successful attacker to bypass the integrity check of FW uploaded to the free@home System Access Point.	CWE-354 Improper Validation of Integrity Check Value	CVE-2021-22276	2024-11-21 14:49	2021-09-24	Show	GitHub Exploit DB Packet Storm

195317	9.8	CRITICAL Network	dlink	dir-3040_firmware	An information disclosure vulnerability exists in the WiFi Smart Mesh functionality of D-LINK DIR-3040 1.13B03. A specially-crafted network request can lead to command execution. An attacker can conn…	CWE-798 Use of Hard-coded Credentials	CVE-2021-21913	2024-11-21 14:49	2021-09-24	Show	GitHub Exploit DB Packet Storm

195318	5.5	MEDIUM Local	vmware	vcenter_server cloud_foundation	The vCenter Server contains a denial-of-service vulnerability in the Analytics service. Successful exploitation of this issue may allow an attacker to create a denial-of-service condition on vCenter …	NVD-CWE-noinfo	CVE-2021-22020	2024-11-21 14:49	2021-09-23	Show	GitHub Exploit DB Packet Storm

195319	7.5	HIGH Network	vmware	vcenter_server cloud_foundation	The vCenter Server contains a denial-of-service vulnerability in VAPI (vCenter API) service. A malicious actor with network access to port 5480 on vCenter Server may exploit this issue by sending a s…	NVD-CWE-noinfo	CVE-2021-22019	2024-11-21 14:49	2021-09-23	Show	GitHub Exploit DB Packet Storm

195320	6.5	MEDIUM Network	vmware	vcenter_server cloud_foundation	The vCenter Server contains an arbitrary file deletion vulnerability in a VMware vSphere Life-cycle Manager plug-in. A malicious actor with network access to port 9087 on vCenter Server may exploit t…	NVD-CWE-noinfo	CVE-2021-22018	2024-11-21 14:49	2021-09-23	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed