Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 1, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255021	-	-	IBM	-	IBM WebSphere Portal Server の入力値検証に脆弱性	-	-	2011-03-25 15:16	2011-02-24	Show	GitHub Exploit DB Packet Storm

255022	4.3	警告	e107.org	-	e107 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2011-0457	2011-03-25 12:02	2011-03-14	Show	GitHub Exploit DB Packet Storm

255023	5.1	警告	Google	-	Picasa における実行ファイル読み込みに関する脆弱性	CWE-Other その他	CVE-2011-0458	2011-03-25 12:01	2011-03-25	Show	GitHub Exploit DB Packet Storm

255024	7.2	危険	マイクロソフト	-	Microsoft Malware Protection Engine における権限昇格の脆弱性	CWE-20 不適切な入力確認	CVE-2011-0037	2011-03-24 15:40	2011-02-23	Show	GitHub Exploit DB Packet Storm

255025	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおける任意のファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2011-0396	2011-03-24 15:37	2011-02-23	Show	GitHub Exploit DB Packet Storm

255026	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0395	2011-03-24 15:34	2011-02-23	Show	GitHub Exploit DB Packet Storm

255027	7.8	危険	シスコシステムズ	-	複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0394	2011-03-24 15:32	2011-02-23	Show	GitHub Exploit DB Packet Storm

255028	7.8	危険	シスコシステムズ	-	Cisco Adaptive Security Appliances デバイスおよび Cisco PIX Security Appliances デバイスにおけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0393	2011-03-24 15:13	2011-02-23	Show	GitHub Exploit DB Packet Storm

255029	7.1	危険	ISC, Inc.	-	ISC BIND にサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2011-0414	2011-03-24 15:07	2011-02-23	Show	GitHub Exploit DB Packet Storm

255030	4.9	警告	Linux レッドハット	-	Linux kernel の mm/mprotect.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2010-4169	2011-03-24 15:01	2010-11-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195241	7.5	HIGH Network	handsontable	handsontable	The package handsontable before 10.0.0; the package handsontable from 0 and before 10.0.0 are vulnerable to Regular Expression Denial of Service (ReDoS) in Handsontable.helper.isNumeric function.	CWE-1333 Inefficient Regular Expression Complexity	CVE-2021-23446	2024-11-21 14:51	2021-09-30	Show	GitHub Exploit DB Packet Storm

195242	6.1	MEDIUM Network	datatables	datatables.net	This affects the package datatables.net before 1.11.3. If an array is passed to the HTML escape entities function it would not have its contents escaped.	CWE-79 Cross-site Scripting	CVE-2021-23445	2024-11-21 14:51	2021-09-28	Show	GitHub Exploit DB Packet Storm

195243	7.8	HIGH Local	google	android	In Oppo's battery application, the third-party SDK provides the function of loading a third-party Provider, which can be used.	NVD-CWE-noinfo	CVE-2021-23243	2024-11-21 14:51	2021-09-27	Show	GitHub Exploit DB Packet Storm

195244	6.1	MEDIUM Network	f5	big-ip_access_policy_manager	On version 16.x before 16.1.0, 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, a reflected cross-site scripting (XSS) vulnerability exists in the resourc…	CWE-79 Cross-site Scripting	CVE-2021-23054	2024-11-21 14:51	2021-09-27	Show	GitHub Exploit DB Packet Storm

195245	5.4	MEDIUM Network	concretecms	concrete_cms	A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to clone topics which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security Research Team"	CWE-352 Origin Validation Error	CVE-2021-22953	2024-11-21 14:51	2021-09-23	Show	GitHub Exploit DB Packet Storm

195246	8.8	HIGH Network	ui	unifi_talk	A vulnerability found in UniFi Talk application V1.12.3 and earlier permits a malicious actor who has already gained access to a network to subsequently control Talk device(s) assigned to said networ…	NVD-CWE-noinfo	CVE-2021-22952	2024-11-21 14:51	2021-09-23	Show	GitHub Exploit DB Packet Storm

195247	6.5	MEDIUM Network	concretecms	concrete_cms	Concrete CMS prior to 8.5.6 had a CSFR vulnerability allowing attachments to comments in the conversation section to be deleted.Credit for discovery: "Solar Security Research Team"	CWE-352 Origin Validation Error	CVE-2021-22950	2024-11-21 14:51	2021-09-23	Show	GitHub Exploit DB Packet Storm

195248	5.4	MEDIUM Network	concretecms	concrete_cms	A CSRF in Concrete CMS version 8.5.5 and below allows an attacker to duplicate files which can lead to UI inconvenience, and exhaustion of disk space.Credit for discovery: "Solar Security CMS Researc…	CWE-352 Origin Validation Error	CVE-2021-22949	2024-11-21 14:51	2021-09-23	Show	GitHub Exploit DB Packet Storm

195249	7.1	HIGH Network	revive-adserver	revive_adserver	Vulnerability in the generation of session IDs in revive-adserver < 5.3.0, based on the cryptographically insecure uniqid() PHP function. Under some circumstances, an attacker could theoretically be …	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2021-22948	2024-11-21 14:51	2021-09-23	Show	GitHub Exploit DB Packet Storm

195250	9.8	CRITICAL Network	client	jointjs	This affects the package jointjs before 3.4.2. A type confusion vulnerability can lead to a bypass of CVE-2020-28480 when the user-provided keys used in the path parameter are arrays in the setByPath…	CWE-843 Type Confusion	CVE-2021-23444	2024-11-21 14:51	2021-09-22	Show	GitHub Exploit DB Packet Storm