Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253231 6.8 警告 シマンテック - Symantec Altiris WISE Package Studio における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2012-0293 2012-03-21 16:35 2012-03-14 Show GitHub Exploit DB Packet Storm
253232 6.8 警告 VMware - VMware vShield Manager におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-1514 2012-03-21 16:35 2012-03-15 Show GitHub Exploit DB Packet Storm
253233 4 警告 VMware - VMware vCenter Orchestrator の Web Configuration tool における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-1513 2012-03-21 16:34 2012-03-15 Show GitHub Exploit DB Packet Storm
253234 4.3 警告 VMware - VMware vSphere の vSphere Client にある内部ブラウザにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1512 2012-03-21 16:33 2012-03-15 Show GitHub Exploit DB Packet Storm
253235 4.3 警告 VMware - VMware View の View Manager Portal におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-1511 2012-03-21 16:31 2012-03-15 Show GitHub Exploit DB Packet Storm
253236 7.2 危険 VMware - 複数の VMware 製品の WDDM ディスプレイドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1510 2012-03-21 16:30 2012-03-15 Show GitHub Exploit DB Packet Storm
253237 7.2 危険 VMware - VMware View の XPDM ディスプレイドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-1509 2012-03-21 16:29 2012-03-15 Show GitHub Exploit DB Packet Storm
253238 7.2 危険 VMware - 複数の VMware 製品の XPDM ディスプレイドライバにおけるゲスト OS の 権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-1508 2012-03-21 16:28 2012-03-15 Show GitHub Exploit DB Packet Storm
253239 7.5 危険 アップル
Google		 - 複数の製品で使用される Webkit におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3909 2012-03-21 16:23 2011-12-13 Show GitHub Exploit DB Packet Storm
253240 5 警告 アップル
Google		 - 複数の製品で使用される Webkit におけるサービス運用妨害 (out-of-bounds read) の脆弱性 CWE-119
バッファエラー 		CVE-2011-3908 2012-03-21 16:22 2011-12-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194791 5.5 MEDIUM
Local 		deltaww dopsoft Delta Electronics DOPSoft Versions 4.0.10.17 and prior are vulnerable to an out-of-bounds read while processing project files, which may allow an attacker to disclose information. - CVE-2021-27455 2024-11-21 14:58 2021-07-2 Show GitHub Exploit DB Packet Storm
194792 8.8 HIGH
Network 		johnsoncontrols f4-snc_firmware Successful exploitation of this vulnerability could give an authenticated Facility Explorer SNC Series Supervisory Controller (F4-SNC) user an unintended level of access to the controller’s file syst… CWE-863
 Incorrect Authorization 		CVE-2021-27661 2024-11-21 14:58 2021-07-1 Show GitHub Exploit DB Packet Storm
194793 8.8 HIGH
Network 		johnsoncontrols c-cure_9000_firmware An insecure client auto update feature in C-CURE 9000 can allow remote execution of lower privileged Windows programs. CWE-20
 Improper Input Validation  		CVE-2021-27660 2024-11-21 14:58 2021-07-1 Show GitHub Exploit DB Packet Storm
194794 7.5 HIGH
Network 		jtekt pc10g-cpu_firmware
2port-efr_firmware
plus_cpu_firmware
plus_ex_firmware
plus_ex2_firmware
plus_efr_firmware
plus_efr2_firmware
plus_2p-efr_firmware
pc10p-dp_firmware
pc10p… 		When JTEKT Corporation TOYOPUC PLC versions PC10G-CPU, 2PORT-EFR, Plus CPU, Plus EX, Plus EX2, Plus EFR, Plus EFR2, Plus 2P-EFR, PC10P-DP, PC10P-DP-IO, Plus BUS-EX, Nano 10GX, Nano 2ET,PC10PE, PC10PE… CWE-787
 Out-of-bounds Write 		CVE-2021-27477 2024-11-21 14:58 2021-07-1 Show GitHub Exploit DB Packet Storm
194795 9.8 CRITICAL
Network 		craftcms craft_cms An issue was discovered in Craft CMS before 3.6.7. In some circumstances, a potential Remote Code Execution vulnerability existed on sites that did not restrict administrative changes (if an attacker… CWE-862
 Missing Authorization 		CVE-2021-27903 2024-11-21 14:58 2021-06-30 Show GitHub Exploit DB Packet Storm
194796 6.1 MEDIUM
Network 		craftcms craft_cms An issue was discovered in Craft CMS before 3.6.0. In some circumstances, a potential XSS vulnerability existed in connection with front-end forms that accepted user uploads. CWE-79
Cross-site Scripting 		CVE-2021-27902 2024-11-21 14:58 2021-06-30 Show GitHub Exploit DB Packet Storm
194797 7.5 HIGH
Network 		apache
debian 		traffic_server
debian_linux 		Incorrect handling of url fragment vulnerability of Apache Traffic Server allows an attacker to poison the cache. This issue affects Apache Traffic Server 7.0.0 to 7.1.12, 8.0.0 to 8.1.1, 9.0.0 to 9.… CWE-444
HTTP Request Smuggling 		CVE-2021-27577 2024-11-21 14:58 2021-06-29 Show GitHub Exploit DB Packet Storm
194798 6.1 MEDIUM
Network 		johnsoncontrols exacqvision_web_service exacqVision Web Service 21.03 does not sufficiently validate, filter, escape, and/or encode user-controllable input before it is placed in output that is used as a web page that is served to other us… CWE-79
Cross-site Scripting 		CVE-2021-27659 2024-11-21 14:58 2021-06-24 Show GitHub Exploit DB Packet Storm
194799 5.4 MEDIUM
Network 		johnsoncontrols exacqvision_enterprise_manager exacqVision Enterprise Manager 20.12 does not sufficiently validate, filter, escape, and/or encode user-controllable input before it is placed in output that is used as a web page that is served to o… CWE-79
Cross-site Scripting 		CVE-2021-27658 2024-11-21 14:58 2021-06-24 Show GitHub Exploit DB Packet Storm
194800 9.8 CRITICAL
Network 		synology diskstation_manager
diskstation_manager_unified_controller 		Use after free vulnerability in file transfer protocol component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to execute arbitrary code via unspecified vectors. - CVE-2021-27649 2024-11-21 14:58 2021-06-23 Show GitHub Exploit DB Packet Storm