Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 2 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
252951	4.3	警告	ut-files	-	UTStats の pages/match_report.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5007	2011-12-9 14:14	2011-11-2	Show	GitHub Exploit DB Packet Storm

252952	7.5	危険	Denali	-	BrightSuite Groupware における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5008	2011-12-9 14:13	2011-11-2	Show	GitHub Exploit DB Packet Storm

252953	7.5	危険	ut-files	-	UTStats の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5009	2011-12-9 14:12	2011-11-2	Show	GitHub Exploit DB Packet Storm

252954	4.3	警告	FullSite Pty Ltd	-	SchoolMation におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-5010	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252955	7.5	危険	FullSite Pty Ltd	-	SchoolMation における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5011	2011-12-9 14:10	2011-11-2	Show	GitHub Exploit DB Packet Storm

252956	7.5	危険	David Noguera Gutierrez	-	DaLogin における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5012	2011-12-9 14:09	2011-11-2	Show	GitHub Exploit DB Packet Storm

252957	7.5	危険	McKenzie Creations	-	Mckenzie Creations Virtual Real Estate Manager における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5013	2011-12-9 14:04	2011-11-2	Show	GitHub Exploit DB Packet Storm

252958	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5014	2011-12-9 14:03	2011-11-2	Show	GitHub Exploit DB Packet Storm

252959	7.5	危険	2daybiz	-	2daybiz Network Community Script における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5015	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

252960	7.5	危険	ELITE　LADDAERS	-	Elite Gaming Ladders における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-5016	2011-12-9 14:00	2011-11-2	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195421	5.9	MEDIUM Network	nextcloud debian	desktop debian_linux	Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the "Register with a Provider" flow.	CWE-295 Improper Certificate Validation	CVE-2021-22895	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195422	4.3	MEDIUM Network	schneider-electric	easergy_t300_firmware	A CWE-552: Files or Directories Accessible to External Parties vulnerability exists in Easergy T300 with firmware V2.7.1 and older that could expose files or directory content when access from an att…	-	CVE-2021-22769	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195423	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22768	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195424	3.1	LOW Network	haxx debian fedoraproject oracle siemens splunk	curl debian_linux fedora mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function commu…	curl 7.7 through 7.76.1 suffers from an information disclosure when the `-t` command line option, known as `CURLOPT_TELNETOPTIONS` in libcurl, is used to send variable=content pairs to TELNET servers…	CWE-909 Missing Initialization of Resource	CVE-2021-22898	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195425	5.3	MEDIUM Network	haxx oracle netapp siemens splunk	curl mysql_server essbase communications_cloud_native_core_network_slice_selection_function communications_cloud_native_core_network_repository_function communications_cloud_native_cor…	curl 7.61.0 through 7.76.1 suffers from exposure of data element to wrong session due to a mistake in the code for CURLOPT_SSL_CIPHER_LIST when libcurl is built to use the Schannel TLS library. The s…	CWE-668 Exposure of Resource to Wrong Sphere	CVE-2021-22897	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195426	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	-	CVE-2021-22767	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195427	7.5	HIGH Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service via a specially crafte…	-	CVE-2021-22766	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195428	9.8	CRITICAL Network	schneider-electric	powerlogic_egx100_firmware powerlogic_egx300_firmware	A CWE-20: Improper Input Validation vulnerability exists in PowerLogic EGX100 (Versions 3.0.0 and newer) and PowerLogic EGX300 (All Versions) that could cause denial of service or remote code executi…	CWE-20 Improper Input Validation	CVE-2021-22765	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195429	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-22: Improper Limitation of a Pathname to a Restricted Directory vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in remote code execution, when a malic…	CWE-22 Path Traversal	CVE-2021-22762	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm

195430	7.8	HIGH Local	schneider-electric	interactive_graphical_scada_system	A CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability exists inIGSS Definition (Def.exe) V15.0.0.21140 and prior that could result in disclosure of informat…	-	CVE-2021-22761	2024-11-21 14:50	2021-06-12	Show	GitHub Exploit DB Packet Storm