Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
256491	4.3	警告	オラクル	-	Oracle Supply Chain Products Suite の Oracle Transportation Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2372	2010-08-6 18:27	2010-07-13	Show	GitHub Exploit DB Packet Storm

256492	10	危険	アップルサイバートラスト株式会社サン・マイクロシステムズレッドハット	-	複数の Oracle 製品の New Java Plug-in コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0887	2010-08-5 17:16	2010-04-15	Show	GitHub Exploit DB Packet Storm

256493	2.6	注意	オラクル	-	Oracle E-Business Suite の Oracle Knowledge Management コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0836	2010-08-5 16:36	2010-07-13	Show	GitHub Exploit DB Packet Storm

256494	3.5	注意	オラクル	-	Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0909	2010-08-5 16:35	2010-07-13	Show	GitHub Exploit DB Packet Storm

256495	4.3	警告	オラクル	-	Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0913	2010-08-5 16:35	2010-07-13	Show	GitHub Exploit DB Packet Storm

256496	4.3	警告	オラクル	-	Oracle E-Business Suite の Oracle Applications Manager コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0905	2010-08-5 16:35	2010-07-13	Show	GitHub Exploit DB Packet Storm

256497	4.3	警告	オラクル	-	Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0912	2010-08-5 16:35	2010-07-13	Show	GitHub Exploit DB Packet Storm

256498	5.5	警告	オラクル	-	Oracle E-Business Suite の Oracle Advanced Product Catalog コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0915	2010-08-5 16:34	2010-07-13	Show	GitHub Exploit DB Packet Storm

256499	7.5	危険	オラクル	-	Oracle E-Business Suite の Oracle Applications Framework コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0908	2010-08-5 16:34	2010-07-13	Show	GitHub Exploit DB Packet Storm

256500	4.3	警告	オラクル	-	Oracle Enterprise Manager Grid Control の Console コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-2373	2010-08-5 16:33	2010-07-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195041	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_application_security_manager big-ip_advanced_firewall_manager big-ip_advanced_web_application_firewall big-ip_analytics big-ip_application_accelerat…	On BIG-IP version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3, when the iRules RESOLVER::summarize command is used on a virtual server, undisclosed requests can cause an increase in Traffic Manag…	CWE-400 Uncontrolled Resource Consumption	CVE-2021-23049	2024-11-21 14:51	2021-09-14	Show	GitHub Exploit DB Packet Storm

195042	7.5	HIGH Network	f5	big-ip_access_policy_manager big-ip_advanced_firewall_manager big-ip_analytics big-ip_application_acceleration_manager big-ip_application_security_manager big-ip_domain_name_system …	On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.x and 11.6.x, when GPRS Tunneling Protocol (GTP) iRules comm…	NVD-CWE-noinfo	CVE-2021-23048	2024-11-21 14:51	2021-09-14	Show	GitHub Exploit DB Packet Storm

195043	6.1	MEDIUM Network	thoughtbot	clearance	This affects the package clearance before 2.5.0. The vulnerability can be possible when users are able to set the value of session[:return_to]. If the value used for return_to contains multiple leadi…	CWE-601 Open Redirect	CVE-2021-23435	2024-11-21 14:51	2021-09-13	Show	GitHub Exploit DB Packet Storm

195044	9.8	CRITICAL Network	set-value_project oracle	set-value communications_cloud_native_core_policy	This affects the package set-value before <2.0.1, >=3.0.0 <4.0.1. A type confusion vulnerability can lead to a bypass of CVE-2019-10747 when the user-provided keys used in the path parameter are arra…	CWE-843 Type Confusion	CVE-2021-23440	2024-11-21 14:51	2021-09-12	Show	GitHub Exploit DB Packet Storm

195045	8.8	HIGH Network	sqlite-web_project	sqlite-web	This affects all versions of package sqlite-web. The SQL dashboard area allows sensitive actions to be performed without validating that the request originated from the application. This could enable…	CWE-352 Origin Validation Error	CVE-2021-23404	2024-11-21 14:51	2021-09-8	Show	GitHub Exploit DB Packet Storm

195046	6.1	MEDIUM Network	johndatserakis	file-upload-with-preview	This affects the package file-upload-with-preview before 4.2.0. A file containing malicious JavaScript code in the name can be uploaded (a user needs to be tricked into uploading such a file).	CWE-79 Cross-site Scripting	CVE-2021-23439	2024-11-21 14:51	2021-09-5	Show	GitHub Exploit DB Packet Storm

195047	7.5	HIGH Network	python fedoraproject	pillow fedora	The package pillow 5.2.0 and before 8.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via the getrgb function.	CWE-125 Out-of-bounds Read	CVE-2021-23437	2024-11-21 14:51	2021-09-4	Show	GitHub Exploit DB Packet Storm

195048	9.8	CRITICAL Network	mpath_project	mpath	This affects the package mpath before 0.8.4. A type confusion vulnerability can lead to a bypass of CVE-2018-16490. In particular, the condition ignoreProperties.indexOf(parts[i]) !== -1 returns -1 i…	CWE-843 Type Confusion	CVE-2021-23438	2024-11-21 14:51	2021-09-2	Show	GitHub Exploit DB Packet Storm

195049	9.8	CRITICAL Network	immer_project	immer	This affects the package immer before 9.0.6. A type confusion vulnerability can lead to a bypass of CVE-2020-28477 when the user-provided keys used in the path parameter are arrays. In particular, th…	CWE-843 Type Confusion	CVE-2021-23436	2024-11-21 14:51	2021-09-2	Show	GitHub Exploit DB Packet Storm

195050	9.8	CRITICAL Network	elfinder.netcore_project	elfinder.netcore	This affects all versions of package elFinder.NetCore. The Path.Combine(...) method is used to create an absolute file path. Due to missing sanitation of the user input and a missing check of the gen…	CWE-22 Path Traversal	CVE-2021-23428	2024-11-21 14:51	2021-09-2	Show	GitHub Exploit DB Packet Storm