Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253221 8.5 危険 Cobbler project - Red Hat Network Satellite Server の Cobbler における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-2235 2012-03-27 18:42 2010-10-18 Show GitHub Exploit DB Packet Storm
253222 3.5 注意 OTRS プロジェクト - OTRS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-2080 2012-03-27 18:42 2010-09-20 Show GitHub Exploit DB Packet Storm
253223 5 警告 Apache Software Foundation - Apache MyFaces の shared/util/StateUtils.java における View State を変更される脆弱性 CWE-310
暗号の問題 		CVE-2010-2057 2012-03-27 18:42 2010-10-20 Show GitHub Exploit DB Packet Storm
253224 9.3 危険 シマンテック - SAVCE などの製品で使用されている AMS または AMS2 の HDNLRSVC.EXE における任意のプログラムを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0111 2012-03-27 18:42 2011-01-26 Show GitHub Exploit DB Packet Storm
253225 7.9 危険 シマンテック - SAVCE などの製品で使用されている Intel Alert Management System におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0110 2012-03-27 18:42 2011-01-26 Show GitHub Exploit DB Packet Storm
253226 5 警告 Pentaho Corporation - Pentaho BI Server における Web トラフィックを傍受される脆弱性 CWE-200
情報漏えい 		CVE-2009-5101 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
253227 2.1 注意 Pentaho Corporation - Pentaho BI Server におけるパスワードを取得される脆弱性 CWE-200
情報漏えい 		CVE-2009-5100 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
253228 4.3 警告 Pentaho Corporation - Pentaho BI Server の ViewAction におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-5099 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
253229 5.4 警告 ヒューレット・パッカード - Palm Pre WebOS の LunaSysMgr プロセス におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-5098 2012-03-27 18:42 2011-09-13 Show GitHub Exploit DB Packet Storm
253230 6.3 警告 OpenFabrics Alliance - OFED の openibd における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-1693 2012-03-27 18:42 2010-10-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194661 7.5 HIGH
Network 		cesnet libyang In function ext_get_plugin() in libyang <= v1.0.225, it doesn't check whether the value of revision is NULL. If revision is NULL, the operation of strcmp(revision, ext_plugins[u].revision) will lead … CWE-252
 Unchecked Return Value 		CVE-2021-28904 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194662 7.5 HIGH
Network 		cesnet libyang A stack overflow in libyang <= v1.0.225 can cause a denial of service through function lyxml_parse_mem(). lyxml_parse_elem() function will be called recursively, which will consume stack space and le… CWE-674
 Uncontrolled Recursion 		CVE-2021-28903 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194663 7.5 HIGH
Network 		cesnet libyang In function read_yin_container() in libyang <= v1.0.225, it doesn't check whether the value of retval->ext[r] is NULL. In some cases, it can be NULL, which leads to the operation of retval->ext[r]->f… CWE-252
 Unchecked Return Value 		CVE-2021-28902 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194664 7.5 HIGH
Network 		envoyproxy envoy An issue was discovered in Envoy 1.14.0. There is a remotely exploitable crash for HTTP2 Metadata, because an empty METADATA map triggers a Reachable Assertion. CWE-617
 Reachable Assertion 		CVE-2021-29258 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194665 7.5 HIGH
Network 		envoyproxy envoy An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable NULL pointer dereference and crash in TLS when an unknown TLS alert code is received. CWE-476
 NULL Pointer Dereference 		CVE-2021-28683 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194666 7.5 HIGH
Network 		envoyproxy envoy An issue was discovered in Envoy through 1.71.1. There is a remotely exploitable integer overflow in which a very large grpc-timeout value leads to unexpected timeout calculations. CWE-190
 Integer Overflow or Wraparound 		CVE-2021-28682 2024-11-21 15:00 2021-05-21 Show GitHub Exploit DB Packet Storm
194667 7.5 HIGH
Network 		invoiceplane invoiceplane In InvoicePlane 1.5.11 a misconfigured web server allows unauthenticated directory listing and file download. Allowing an attacker to directory traversal and download files suppose to be private with… CWE-552
 Files or Directories Accessible to External Parties 		CVE-2021-29024 2024-11-21 15:00 2021-05-18 Show GitHub Exploit DB Packet Storm
194668 5.3 MEDIUM
Network 		invoiceplane invoiceplane InvoicePlane 1.5.11 doesn't have any rate-limiting for password reset and the reset token is generated using a weak mechanism that is predictable. CWE-307
mproper Restriction of Excessive Authentication Attempts 		CVE-2021-29023 2024-11-21 15:00 2021-05-18 Show GitHub Exploit DB Packet Storm
194669 4.3 MEDIUM
Network 		liferay dxp
liferay_portal 		The Data Engine module in Liferay Portal 7.3.0 through 7.3.5, and Liferay DXP 7.3 before fix pack 1 does not check permissions in DataDefinitionResourceImpl.getSiteDataDefinitionByContentTypeByDataDe… CWE-276
Incorrect Default Permissions  		CVE-2021-29052 2024-11-21 15:00 2021-05-17 Show GitHub Exploit DB Packet Storm
194670 6.1 MEDIUM
Network 		liferay dxp
liferay_portal 		Cross-site scripting (XSS) vulnerability in the Asset module's Asset Publisher app in Liferay Portal 7.2.1 through 7.3.5, and Liferay DXP 7.1 before fix pack 21, 7.2 before fix pack 10 and 7.3 before… CWE-79
Cross-site Scripting 		CVE-2021-29051 2024-11-21 15:00 2021-05-17 Show GitHub Exploit DB Packet Storm