Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
255301	5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4424	2011-02-15 14:29	2011-01-18	Show	GitHub Exploit DB Packet Storm

255302	5.5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HRMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4461	2011-02-15 14:26	2011-01-18	Show	GitHub Exploit DB Packet Storm

255303	5.5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise HRMS コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4441	2011-02-15 14:24	2011-01-18	Show	GitHub Exploit DB Packet Storm

255304	5.5	警告	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise CRM コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4419	2011-02-15 14:22	2011-01-18	Show	GitHub Exploit DB Packet Storm

255305	7.5	危険	オラクル	-	Oracle PeopleSoft and JDEdwards Suite の PeopleSoft Enterprise PeopleTools コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4418	2011-02-15 14:19	2011-01-18	Show	GitHub Exploit DB Packet Storm

255306	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4432	2011-02-15 14:01	2011-01-18	Show	GitHub Exploit DB Packet Storm

255307	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Agile Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-4429	2011-02-15 13:57	2011-01-18	Show	GitHub Exploit DB Packet Storm

255308	3.5	注意	オラクル	-	Oracle Supply Chain Products Suite の Agile Core コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3505	2011-02-15 13:55	2011-01-18	Show	GitHub Exploit DB Packet Storm

255309	-	-	オラクル	-	Oracle WebLogic Node Manager に脆弱性	-	-	2011-02-14 15:26	2010-10-13	Show	GitHub Exploit DB Packet Storm

255310	4	警告	オラクル	-	Oracle Applications の Oracle Application Object Library コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-3589	2011-02-14 15:25	2011-01-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195151	5.4	MEDIUM Network	cacti debian	cacti debian_linux	Cacti 1.1.38 allows authenticated users with User Management permissions to inject arbitrary web script or HTML in the "new_username" field during creation of a new user via "Copy" method at user_adm…	CWE-79 Cross-site Scripting	CVE-2021-23225	2024-11-21 14:51	2022-01-20	Show	GitHub Exploit DB Packet Storm

195152	7.5	HIGH Network	colors.js_project	colors.js	The package colors after 1.4.0 are vulnerable to Denial of Service (DoS) that was introduced through an infinite loop in the americanFlag module. Unfortunately this appears to have been a purposeful …	CWE-835 Loop with Unreachable Exit Condition ('Infinite Loop')	CVE-2021-23567	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

195153	5.5	MEDIUM Local	nanoid_project	nanoid	The package nanoid from 3.0.0 and before 3.1.31 are vulnerable to Information Exposure via the valueOf() function which allows to reproduce the last id generated.	CWE-704 Incorrect Type Conversion or Cast	CVE-2021-23566	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

195154	7.8	HIGH Local	we-con	levistudiou	WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a heap-based buffer overflow, which may allow an attacker to remotely execute code.	CWE-787 Out-of-bounds Write	CVE-2021-23157	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

195155	7.8	HIGH Local	we-con	levistudiou	WECON LeviStudioU Versions 2019-09-21 and prior are vulnerable to a stack-based buffer overflow, which may allow an attacker to remotely execute code.	CWE-787 Out-of-bounds Write	CVE-2021-23138	2024-11-21 14:51	2022-01-15	Show	GitHub Exploit DB Packet Storm

195156	8.8	HIGH Network	php_everywhere_project	php_everywhere	Cross-Site Request Forgery (CSRF) vulnerability in Alexander Fuchs PHP Everywhere plugin <= 2.0.2 versions.	-	CVE-2021-23227	2024-11-21 14:51	2022-01-14	Show	GitHub Exploit DB Packet Storm

195157	6.1	MEDIUM Network	crowcpp	crow	This affects the package Crow before 0.3+4. When using attributes without quotes in the template, an attacker can manipulate the input to introduce additional attributes, potentially executing code. …	CWE-79 Cross-site Scripting	CVE-2021-23824	2024-11-21 14:51	2022-01-14	Show	GitHub Exploit DB Packet Storm

195158	7.5	HIGH Network	crowcpp	crow	This affects the package Crow before 0.3+4. It is possible to traverse directories to fetch arbitrary files from the server.	CWE-22 Path Traversal	CVE-2021-23514	2024-11-21 14:51	2022-01-13	Show	GitHub Exploit DB Packet Storm

195159	7.5	HIGH Network	mirantis	mirantis_container_runtime	When running with FIPS mode enabled, Mirantis Container Runtime 20.10.8 leaks memory during TLS Handshakes which could be abused to cause a denial of service.	CWE-401 Missing Release of Memory after Effective Lifetime	CVE-2021-23218	2024-11-21 14:51	2022-01-11	Show	GitHub Exploit DB Packet Storm

195160	7.8	HIGH Local	mirantis	lens	In Lens prior to 5.3.4, custom helm chart configuration creates helm commands from string concatenation of provided arguments which are then executed in the user's shell. Arguments can be provided wh…	CWE-78 OS Command	CVE-2021-23154	2024-11-21 14:51	2022-01-11	Show	GitHub Exploit DB Packet Storm