Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 23, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253201	4.3	警告	Plone Foundation	-	Plone におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-1948	2012-03-27 18:43	2011-06-6	Show	GitHub Exploit DB Packet Storm

253202	5	警告	Fetchmail Project	-	fetchmail におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-1947	2012-03-27 18:43	2011-06-2	Show	GitHub Exploit DB Packet Storm

253203	7.2	危険	hongli lai	-	libgnomesu の gnomesu-pam-backend における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-1946	2012-03-27 18:43	2011-07-7	Show	GitHub Exploit DB Packet Storm

253204	2.1	注意	Fedora Project レッドハット	-	Fedora の NetworkManager パッケージの libnm-util の destroy_one_secret 関数における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2011-1943	2012-03-27 18:43	2011-06-14	Show	GitHub Exploit DB Packet Storm

253205	6.8	警告	VideoLAN FFmpeg Libav	-	VideoLAN VLC メディアプレイヤーなどの製品で使用される FFmpeg および libav の Sunplus SP5X JPEG デコーダにおけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-1931	2012-03-27 18:43	2011-07-7	Show	GitHub Exploit DB Packet Storm

253206	5	警告	Wouter Verhelst	-	nbd-server の nbd-server.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2011-1925	2012-03-27 18:43	2011-05-31	Show	GitHub Exploit DB Packet Storm

253207	5	警告	The Tor Project	-	Tor の policy_summarize 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2011-1924	2012-03-27 18:43	2011-02-28	Show	GitHub Exploit DB Packet Storm

253208	3.3	注意	ihji NetBSD	-	pmake などの製品で使用される NetBSD の make インクルードファイルにおける任意のファイルを上書される脆弱性	CWE-59 リンク解釈の問題	CVE-2011-1920	2012-03-27 18:43	2011-05-23	Show	GitHub Exploit DB Packet Storm

253209	9.3	危険	Foxit Software Inc	-	Foxit Reader の FreeType エンジンのType 1 フォントデコーダにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2011-1908	2012-03-27 18:43	2011-06-24	Show	GitHub Exploit DB Packet Storm

253210	5	警告	Trustwave	-	Trustwave WebDefend Enterprise におけるイベント収集テーブルを読まれる脆弱性	CWE-255 証明書・パスワード管理	CVE-2011-1906	2012-03-27 18:43	2011-05-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 23, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194121	6.1	MEDIUM Network	froala	froala_editor	Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink crea…	CWE-79 Cross-site Scripting	CVE-2021-30109	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194122	6.1	MEDIUM Network	eng	knowage	Knowage Suite before 7.4 is vulnerable to cross-site scripting (XSS). An attacker can inject arbitrary external script in '/knowagecockpitengine/api/1.0/pages/execute' via the 'SBI_HOST' parameter.	CWE-79 Cross-site Scripting	CVE-2021-30058	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194123	4.8	MEDIUM Network	eng	knowage	A stored HTML injection vulnerability exists in Knowage Suite version 7.1. An attacker can inject arbitrary HTML in "/restful-services/2.0/analyticalDrivers" via the 'LABEL' and 'NAME' parameters.	CWE-74 Injection	CVE-2021-30057	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194124	5.4	MEDIUM Network	eng	knowage	Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in /restful-services/publish via the 'EXEC_FROM' parameter that can lead to…	CWE-79 Cross-site Scripting	CVE-2021-30056	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194125	8.8	HIGH Network	eng	knowage	A SQL injection vulnerability in Knowage Suite version 7.1 exists in the documentexecution/url analytics driver component via the 'par_year' parameter when running a report.	CWE-89 SQL Injection	CVE-2021-30055	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194126	7.3	HIGH Network	terra-master	f2-210_firmware	TerraMaster F2-210 devices through 2021-04-03 use UPnP to make the admin web server accessible over the Internet on TCP port 8181, which is arguably inconsistent with the "It is only available on the…	NVD-CWE-Other	CVE-2021-30127	2024-11-21 15:03	2021-04-4	Show	GitHub Exploit DB Packet Storm

194127	6.1	MEDIUM Network	docsifyjs	docsify	docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.	CWE-79 Cross-site Scripting	CVE-2021-30074	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194128	6.5	MEDIUM Network	lightmeter	controlcenter	Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyone who knows the URL of a publicly available Lightmeter instance to access application settings, possibly including an SMTP passwo…	NVD-CWE-noinfo	CVE-2021-30126	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194129	6.1	MEDIUM Network	jamf	jamf	Jamf Pro before 10.28.0 allows XSS related to inventory history, aka PI-009376.	CWE-79 Cross-site Scripting	CVE-2021-30125	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194130	9.8	CRITICAL Network	dlink	dir-878_firmware	An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. Because strcat is misused, there is a stack-based buffer overflow that does not require authentication.	CWE-787 Out-of-bounds Write	CVE-2021-30072	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm