Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, noon

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
254041 2.1 注意 オラクル - 複数の Oracle Sun 製品における Integrated Lights Out Manager CLI の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3522 2011-10-27 10:04 2011-10-18 Show GitHub Exploit DB Packet Storm
254042 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における JPM の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3533 2011-10-27 10:03 2011-10-18 Show GitHub Exploit DB Packet Storm
254043 4 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Talent Acquisition Manager の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3529 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
254044 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における Candidate Gateway の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3527 2011-10-27 10:01 2011-10-18 Show GitHub Exploit DB Packet Storm
254045 5.5 警告 オラクル - Oracle PeopleSoft Enterprise PeopleTools におけるセキュリティの処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-2315 2011-10-27 09:59 2011-10-18 Show GitHub Exploit DB Packet Storm
254046 2.8 注意 オラクル - Oracle PeopleSoft Enterprise PeopleTools における Personalization の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3520 2011-10-27 09:59 2011-10-18 Show GitHub Exploit DB Packet Storm
254047 4 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における eDevelopment の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3530 2011-10-27 09:58 2011-10-18 Show GitHub Exploit DB Packet Storm
254048 5.5 警告 オラクル - Oracle PeopleSoft Enterprise HRMS における eProfile の処理に関する脆弱性 CWE-noinfo
情報不足 		CVE-2011-3528 2011-10-27 09:55 2011-10-18 Show GitHub Exploit DB Packet Storm
254049 4 警告 オラクル - Oracle Siebel CRM の Siebel Core - UIF Server コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3526 2011-10-27 09:54 2011-10-18 Show GitHub Exploit DB Packet Storm
254050 5.5 警告 オラクル - Oracle Siebel CRM の Siebel Core - UIF Client コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2011-3518 2011-10-27 09:53 2011-10-18 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194971 9.8 CRITICAL
Network 		onlyoffice document_server A file extension handling issue was found in [server] module of ONLYOFFICE DocumentServer v4.2.0.71-v5.6.0.21. The file extension is controlled by an attacker through the request data and leads to ar… CWE-22
Path Traversal 		CVE-2021-25833 2024-11-21 14:55 2021-03-2 Show GitHub Exploit DB Packet Storm
194972 9.8 CRITICAL
Network 		onlyoffice document_server A heap buffer overflow vulnerability inside of BMP image processing was found at [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v6.0.0. Using this vulnerability, an attacker is able to gain remo… CWE-787
 Out-of-bounds Write 		CVE-2021-25832 2024-11-21 14:55 2021-03-2 Show GitHub Exploit DB Packet Storm
194973 9.8 CRITICAL
Network 		onlyoffice document_server A file extension handling issue was found in [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. An attacker must request the conversion of the crafted file from PPTT into PPTX format. Using … NVD-CWE-noinfo
CVE-2021-25831 2024-11-21 14:55 2021-03-2 Show GitHub Exploit DB Packet Storm
194974 9.8 CRITICAL
Network 		onlyoffice document_server A file extension handling issue was found in [core] module of ONLYOFFICE DocumentServer v4.2.0.236-v5.6.4.13. An attacker must request the conversion of the crafted file from DOCT into DOCX format. U… NVD-CWE-noinfo
CVE-2021-25830 2024-11-21 14:55 2021-03-2 Show GitHub Exploit DB Packet Storm
194975 7.5 HIGH
Network 		onlyoffice document_server An improper binary stream data handling issue was found in the [core] module of ONLYOFFICE DocumentServer v4.0.0-9-v5.6.3. Using this bug, an attacker is able to produce a denial of service attack th… NVD-CWE-noinfo
CVE-2021-25829 2024-11-21 14:55 2021-03-2 Show GitHub Exploit DB Packet Storm
194976 7.8 HIGH
Local 		collaboraoffice online "loolforkit" is a privileged program that is supposed to be run by a special, non-privileged "lool" user. Before doing anything else "loolforkit" checks, if it was invoked by the "lool" user, and ref… CWE-269
 Improper Privilege Management 		CVE-2021-25630 2024-11-21 14:55 2021-02-24 Show GitHub Exploit DB Packet Storm
194977 8.8 HIGH
Network 		atlassian jira_server_for_slack An endpoint in Atlassian Jira Server for Slack plugin from version 0.0.3 before version 2.0.15 allows remote attackers to execute arbitrary code via a template injection vulnerability. CWE-74
Injection 		CVE-2021-26068 2024-11-21 14:55 2021-02-23 Show GitHub Exploit DB Packet Storm
194978 9.8 CRITICAL
Network 		smarty
debian 		smarty
debian_linux 		Smarty before 3.1.39 allows code injection via an unexpected function name after a {function name= substring. CWE-94
Code Injection 		CVE-2021-26120 2024-11-21 14:55 2021-02-22 Show GitHub Exploit DB Packet Storm
194979 7.5 HIGH
Network 		smarty
debian 		smarty
debian_linux 		Smarty before 3.1.39 allows a Sandbox Escape because $smarty.template_object can be accessed in sandbox mode. NVD-CWE-noinfo
CVE-2021-26119 2024-11-21 14:55 2021-02-22 Show GitHub Exploit DB Packet Storm
194980 7.2 HIGH
Network 		baby_care_system_project baby_care_system An arbitrary file upload vulnerability has been identified in posts.php in Baby Care System 1.0. The vulnerability could be exploited by an remote attacker to upload content to the server, including … CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-25780 2024-11-21 14:55 2021-02-18 Show GitHub Exploit DB Packet Storm