Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253061	4.3	警告	Coppermine Photo Gallery	-	CPG におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4667	2012-03-27 18:42	2011-06-14	Show	GitHub Exploit DB Packet Storm

253062	10	危険	CMS Made Simple	-	CMSMS のNews モジュールにおける詳細不明な脆弱性	CWE-noinfo 情報不足	CVE-2010-4663	2012-03-27 18:42	2011-06-8	Show	GitHub Exploit DB Packet Storm

253063	4.3	警告	Hastymail	-	Hastymail2 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4646	2012-03-27 18:42	2011-01-18	Show	GitHub Exploit DB Packet Storm

253064	10	危険	Novell	-	Novell GroupWise の IMAP サーバコンポーネンにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4711	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253065	4.3	警告	Yahoo!	-	YUI のメニューウィジェットにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4710	2012-03-27 18:42	2010-12-16	Show	GitHub Exploit DB Packet Storm

253066	7.5	危険	Joomla!	-	Joomla! における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4696	2012-03-27 18:42	2010-11-4	Show	GitHub Exploit DB Packet Storm

253067	4.3	警告	XWiki	-	XWiki Enterprise におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4642	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

253068	7.5	危険	XWiki	-	XWiki Enterprise における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4641	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

253069	4.3	警告	XWiki	-	XWiki Watch におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-4640	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

253070	7.5	危険	intendance	-	MySource Matrix の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2010-4639	2012-03-27 18:42	2010-12-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194891	3.3	LOW Local	exiv2 fedoraproject	exiv2 fedora	Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metadata. A read of uninitialized memory was found in Exiv2 versions v0.27.3 and earl…	-	CVE-2021-29623	2024-11-21 15:01	2021-05-14	Show	GitHub Exploit DB Packet Storm

194892	6.5	MEDIUM Network	evm_project	evm	evm is a pure Rust implementation of Ethereum Virtual Machine. Prior to the patch, when executing specific EVM opcodes related to memory operations that use `evm_core::Memory::copy_large`, the `evm` …	CWE-787 Out-of-bounds Write	CVE-2021-29511	2024-11-21 15:01	2021-05-13	Show	GitHub Exploit DB Packet Storm

194893	7.5	HIGH Network	puma debian	puma debian_linux	Puma is a concurrent HTTP 1.1 server for Ruby/Rack applications. The fix for CVE-2019-16770 was incomplete. The original fix only protected existing connections that had already been accepted from ha…	-	CVE-2021-29509	2024-11-21 15:01	2021-05-12	Show	GitHub Exploit DB Packet Storm

194894	9.1	CRITICAL Network	asynkron	wire	Due to how Wire handles type information in its serialization format, malicious payloads can be passed to a deserializer. e.g. using a surrogate on the sender end, an attacker can pass information ab…	-	CVE-2021-29508	2024-11-21 15:01	2021-05-12	Show	GitHub Exploit DB Packet Storm

194895	5.3	MEDIUM Network	matrix fedoraproject	synapse fedora	Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.33.2 "Push …	CWE-331 Insufficient Entropy	CVE-2021-29471	2024-11-21 15:01	2021-05-12	Show	GitHub Exploit DB Packet Storm

194896	6.5	MEDIUM Network	warnsystem_project	warnsystem	WarnSystem is a cog (plugin) for the Red discord bot. A vulnerability has been found in the code that allows any user to access sensible informations by setting up a specific template which is not pr…	CWE-94 Code Injection	CVE-2021-29502	2024-11-21 15:01	2021-05-11	Show	GitHub Exploit DB Packet Storm

194897	6.5	MEDIUM Network	dav-cogs_project	dav-cogs	Ticketer is a command based ticket system cog (plugin) for the red discord bot. A vulnerability allowing discord users to expose sensitive information has been found in the Ticketer cog. Please upgra…	CWE-77 Command Injection	CVE-2021-29501	2024-11-21 15:01	2021-05-11	Show	GitHub Exploit DB Packet Storm

194898	7.5	HIGH Network	nim-lang	nim	Nim is a statically typed compiled systems programming language. In Nim standard library before 1.4.2, httpClient SSL/TLS certificate verification was disabled by default. Users can upgrade to versio…	CWE-295 Improper Certificate Validation	CVE-2021-29495	2024-11-21 15:01	2021-05-8	Show	GitHub Exploit DB Packet Storm

194899	5.3	MEDIUM Network	sabnzbd	sabnzbd	SABnzbd is an open source binary newsreader. A vulnerability was discovered in SABnzbd that could trick the `filesystem.renamer()` function into writing downloaded files outside the configured Downlo…	-	CVE-2021-29488	2024-11-21 15:01	2021-05-8	Show	GitHub Exploit DB Packet Storm

194900	7.5	HIGH Network	sylabs	singularity_image_format	SIF is an open source implementation of the Singularity Container Image Format. The `siftool new` command and func siftool.New() produce predictable UUID identifiers due to insecure randomness in the…	-	CVE-2021-29499	2024-11-21 15:01	2021-05-8	Show	GitHub Exploit DB Packet Storm