Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
253851 4.3 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0830 2011-07-28 10:30 2011-07-19 Show GitHub Exploit DB Packet Storm
253852 6.8 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0822 2011-07-28 10:29 2011-07-19 Show GitHub Exploit DB Packet Storm
253853 5.5 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0816 2011-07-28 10:27 2011-07-19 Show GitHub Exploit DB Packet Storm
253854 4.9 警告 オラクル - Oracle Database Server および Oracle Enterprise Manager Grid Control における脆弱性 CWE-noinfo
情報不足 		CVE-2011-0811 2011-07-28 10:26 2011-07-19 Show GitHub Exploit DB Packet Storm
253855 6.8 警告 アップル
サイバートラスト株式会社
Ruby-lang.org
レッドハット		 - Ruby の BigDecimal クラス内にある VpMemAlloc 関数における任意のコードを実行される脆弱性 CWE-189
数値処理の問題 		CVE-2011-0188 2011-07-28 10:08 2011-03-23 Show GitHub Exploit DB Packet Storm
253856 4.3 警告 アップル
サイバートラスト株式会社
Ruby-lang.org
レッドハット		 - Apple Mac OS X の Ruby WEBrick HTTP サーバにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0541 2011-07-28 10:06 2010-06-15 Show GitHub Exploit DB Packet Storm
253857 5 警告 サイバートラスト株式会社
Ruby-lang.org
レッドハット		 - Ruby の WEBrick におけるウィンドウのタイトルを変更される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-4492 2011-07-28 10:04 2010-01-13 Show GitHub Exploit DB Packet Storm
253858 2.6 注意 Plone Foundation - Plone におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2011-1340 2011-07-27 12:02 2011-07-27 Show GitHub Exploit DB Packet Storm
253859 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2626 2011-07-27 10:35 2011-06-28 Show GitHub Exploit DB Packet Storm
253860 5 警告 Opera Software ASA - Opera におけるサービス運用妨害 (アプリケーションクラッシュ) の脆弱性 CWE-399
リソース管理の問題 		CVE-2011-2625 2011-07-27 10:34 2011-06-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 27, 2026, 4:52 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195451 5.0 MEDIUM
Network 		openhab openhab openHAB is a vendor and technology agnostic open source automation software for your home. In openHAB before versions 2.5.12 and 3.0.1 the XML external entity (XXE) attack allows attackers in the sam… - CVE-2021-21266 2024-11-21 14:47 2021-02-2 Show GitHub Exploit DB Packet Storm
195452 6.5 MEDIUM
Network 		ckeditor ckeditor5 CKEditor 5 is an open source rich text editor framework with a modular architecture. The CKEditor 5 Markdown plugin (@ckeditor/ckeditor5-markdown-gfm) before version 25.0.0 has a regex denial of serv… - CVE-2021-21254 2024-11-21 14:47 2021-01-30 Show GitHub Exploit DB Packet Storm
195453 9.8 CRITICAL
Network 		rsshub rsshub RSSHub is an open source, easy to use, and extensible RSS feed generator. In RSSHub before version 7f1c430 (non-semantic versioning) there is a risk of code injection. Some routes use `eval` or `Func… - CVE-2021-21278 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
195454 5.4 MEDIUM
Network 		flarum sticky Flarum is an open source discussion platform for websites. The "Flarum Sticky" extension versions 0.1.0-beta.14 and 0.1.0-beta.15 has a cross-site scripting vulnerability. A change in release beta 14… - CVE-2021-21283 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
195455 6.5 MEDIUM
Network 		tendermint tendermint Tendermint Core is an open source Byzantine Fault Tolerant (BFT) middleware that takes a state transition machine - written in any programming language - and securely replicates it on many machines. … - CVE-2021-21271 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
195456 4.3 MEDIUM
Network 		report_project
oracle 		report
communications_cloud_native_core_network_slice_selection_function
communications_pricing_design_center 		The MediaWiki "Report" extension has a Cross-Site Request Forgery (CSRF) vulnerability. Before fixed version, there was no protection against CSRF checks on Special:Report, so requests to report a re… CWE-352
 Origin Validation Error 		CVE-2021-21275 2024-11-21 14:47 2021-01-26 Show GitHub Exploit DB Packet Storm
195457 5.5 MEDIUM
Local 		octopus octopusdsc OctopusDSC is a PowerShell module with DSC resources that can be used to install and configure an Octopus Deploy Server and Tentacle agent. In OctopusDSC version 4.0.977 and earlier a customer API ke… - CVE-2021-21270 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm
195458 7.7 HIGH
Network 		deislabs oras ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before vers… CWE-59
Link Following 		CVE-2021-21272 2024-11-21 14:47 2021-01-26 Show GitHub Exploit DB Packet Storm
195459 5.4 MEDIUM
Network 		bigprof online_invoicing_system Online Invoicing System (OIS) is open source software which is a lean invoicing system for small businesses, consultants and freelancers created using AppGini. In OIS version 4.0 there is a stored XS… - CVE-2021-21260 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm
195460 6.1 MEDIUM
Network 		hedgedoc hedgedoc HedgeDoc is open source software which lets you create real-time collaborative markdown notes. In HedgeDoc before version 1.7.2, an attacker can inject arbitrary JavaScript into a HedgeDoc note, whic… - CVE-2021-21259 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm