Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 6, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
253301	9.3	危険	マイクロソフト	-	Microsoft Windows XP および Windows Server 2003 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3400	2011-12-16 11:35	2011-12-13	Show	GitHub Exploit DB Packet Storm

253302	9.3	危険	マイクロソフト	-	複数の Microsoft Windows 製品の ENCDEC.DLL における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3401	2011-12-16 11:34	2011-12-13	Show	GitHub Exploit DB Packet Storm

253303	9.3	危険	マイクロソフト	-	Microsoft Publisher における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3412	2011-12-16 11:32	2011-12-13	Show	GitHub Exploit DB Packet Storm

253304	9.3	危険	マイクロソフト	-	Microsoft Publisher における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3411	2011-12-16 11:31	2011-12-13	Show	GitHub Exploit DB Packet Storm

253305	9.3	危険	マイクロソフト	-	Microsoft Publisher における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2011-3410	2011-12-16 11:25	2011-12-13	Show	GitHub Exploit DB Packet Storm

253306	9.3	危険	マイクロソフト	-	Microsoft Publisher 2003 および 2007 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-1508	2011-12-16 11:19	2011-12-13	Show	GitHub Exploit DB Packet Storm

253307	9.3	危険	マイクロソフト	-	Microsoft Windows XP および Windows Server 2003 における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2011-3397	2011-12-16 11:16	2011-12-13	Show	GitHub Exploit DB Packet Storm

253308	9.3	危険	マイクロソフト	-	複数の Microsoft Office 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2011-1983	2011-12-16 11:15	2011-12-13	Show	GitHub Exploit DB Packet Storm

253309	7.2	危険	マイクロソフト	-	複数の Microsoft 製品の簡体字中国語版 Microsoft Office IME における権限昇格の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-2010	2011-12-16 11:09	2011-12-13	Show	GitHub Exploit DB Packet Storm

253310	4.3	警告	Dolibarr ERP & CRM	-	Dolibarr におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-4814	2011-12-16 10:52	2011-11-3	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194931	3.7	LOW Network	atlassian	data_center jira jira_server jira_data_center	The jira.editor.user.mode cookie set by the Jira Editor Plugin in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before version 8.13.4, and from version 8.14.0 before version 8…	NVD-CWE-noinfo	CVE-2021-26076	2024-11-21 14:55	2021-04-15	Show	GitHub Exploit DB Packet Storm

194932	4.3	MEDIUM Network	atlassian	data_center jira jira_server jira_data_center	The Jira importers plugin AttachTemporaryFile rest resource in Jira Server and Data Center before version 8.5.12, from version 8.6.0 before 8.13.4, and from version 8.14.0 before 8.15.1 allowed remot…	NVD-CWE-noinfo	CVE-2021-26075	2024-11-21 14:55	2021-04-15	Show	GitHub Exploit DB Packet Storm

194933	5.3	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate filters on module layout settings could lead to an LFI.	NVD-CWE-noinfo	CVE-2021-26031	2024-11-21 14:55	2021-04-15	Show	GitHub Exploit DB Packet Storm

194934	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.0.0 through 3.9.25. Inadequate escaping allowed XSS attacks using the logo parameter of the default templates on error page	CWE-79 Cross-site Scripting	CVE-2021-26030	2024-11-21 14:55	2021-04-15	Show	GitHub Exploit DB Packet Storm

194935	6.1	MEDIUM Network	sickrage	sickrage	In SiCKRAGE, versions 9.3.54.dev1 to 10.0.11.dev1 are vulnerable to Reflected Cross-Site-Scripting (XSS) due to user input not being validated properly in the `quicksearch` feature. Therefore, an att…	CWE-79 Cross-site Scripting	CVE-2021-25926	2024-11-21 14:55	2021-04-12	Show	GitHub Exploit DB Packet Storm

194936	5.4	MEDIUM Network	sickrage	sickrage	in SiCKRAGE, versions 4.2.0 to 10.0.11.dev1 are vulnerable to Stored Cross-Site-Scripting (XSS) due to user input not being validated properly when processed by the server. Therefore, an attacker can…	CWE-79 Cross-site Scripting	CVE-2021-25925	2024-11-21 14:55	2021-04-12	Show	GitHub Exploit DB Packet Storm

194937	4.6	MEDIUM Physics	teradici	pcoip_connection_manager_and_security_gateway	Sensitive smart card data is logged in default INFO logs by Teradici's PCoIP Connection Manager and Security Gateway prior to version 21.01.3.	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-25692	2024-11-21 14:55	2021-04-7	Show	GitHub Exploit DB Packet Storm

194938	6.1	MEDIUM Network	magnolia-cms	magnolia_cms	Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the /magnoliaPublic/travel/members/login.html mgnlUserId parameter.	CWE-79 Cross-site Scripting	CVE-2021-25894	2024-11-21 14:55	2021-04-2	Show	GitHub Exploit DB Packet Storm

194939	5.4	MEDIUM Network	magnolia-cms	magnolia_cms	Magnolia CMS from 6.1.3 to 6.2.3 contains a stored cross-site scripting (XSS) vulnerability in the setText parameter of /magnoliaAuthor/.magnolia/.	CWE-79 Cross-site Scripting	CVE-2021-25893	2024-11-21 14:55	2021-04-2	Show	GitHub Exploit DB Packet Storm

194940	4.3	MEDIUM Network	atlassian	confluence_server confluence_data_center	The WidgetConnector plugin in Confluence Server and Confluence Data Center before version 5.8.6 allowed remote attackers to manipulate the content of internal network resources via a blind Server-Sid…	CWE-918 Server-Side Request Forgery (SSRF)	CVE-2021-26072	2024-11-21 14:55	2021-04-2	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed