Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
256681 9.3 危険 マイクロソフト - 複数の Microsoft 製品の Excel ファイルにおける任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0821 2010-07-2 16:23 2010-06-8 Show GitHub Exploit DB Packet Storm
256682 7.2 危険 マイクロソフト - 複数の Microsoft 製品の Windows OpenType Compact Font Format ドライバにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0819 2010-07-1 16:21 2010-06-8 Show GitHub Exploit DB Packet Storm
256683 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1255 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256684 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0485 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256685 6.8 警告 マイクロソフト - Microsoft Windows の win32k.sys における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0484 2010-07-1 16:20 2010-06-8 Show GitHub Exploit DB Packet Storm
256686 4.3 警告 マイクロソフト - Microsoft SharePoint Server におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0817 2010-07-1 16:02 2010-04-29 Show GitHub Exploit DB Packet Storm
256687 9.3 危険 マイクロソフト - Microsoft Windows の Microsoft Data Analyzer ActiveX コントロール における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0252 2010-07-1 16:02 2010-02-9 Show GitHub Exploit DB Packet Storm
256688 9.3 危険 マイクロソフト - Microsoft Internet Explorer におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0255 2010-07-1 16:01 2010-02-3 Show GitHub Exploit DB Packet Storm
256689 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1262 2010-06-30 18:53 2010-06-8 Show GitHub Exploit DB Packet Storm
256690 9.3 危険 マイクロソフト - Microsoft Internet Explorer における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-1259 2010-06-30 18:53 2010-06-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 30, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195021 5.3 MEDIUM
Network 		browserslist_project browserslist The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries. CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23364 2024-11-21 14:51 2021-04-29 Show GitHub Exploit DB Packet Storm
195022 7.5 HIGH
Network 		postcss postcss The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused … CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23382 2024-11-21 14:51 2021-04-27 Show GitHub Exploit DB Packet Storm
195023 9.1 CRITICAL
Network 		tyk tyk-identity-broker The package github.com/tyktechnologies/tyk-identity-broker before 1.1.1 are vulnerable to Authentication Bypass via the Go XML parser which can cause SAML authentication bypass. This is because the X… CWE-287
Improper Authentication 		CVE-2021-23365 2024-11-21 14:51 2021-04-26 Show GitHub Exploit DB Packet Storm
195024 9.8 CRITICAL
Network 		killing_project killing This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec fu… CWE-78
OS Command  		CVE-2021-23381 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195025 7.3 HIGH
Network 		roar-pidusage_project roar-pidusage This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to exe… CWE-78
OS Command  		CVE-2021-23380 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195026 9.8 CRITICAL
Network 		portkiller_project portkiller This affects all versions of package portkiller. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process ex… CWE-78
OS Command  		CVE-2021-23379 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195027 9.8 CRITICAL
Network 		picotts_project picotts This affects all versions of package picotts. If attacker-controlled user input is given to the say function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c… CWE-78
OS Command  		CVE-2021-23378 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195028 9.8 CRITICAL
Network 		onion-oled-js_project onion-oled-js This affects all versions of package onion-oled-js. If attacker-controlled user input is given to the scroll function, it is possible for an attacker to execute arbitrary commands. This is due to use… CWE-78
OS Command  		CVE-2021-23377 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195029 9.8 CRITICAL
Network 		ffmpegdotjs_project ffmpegdotjs This affects all versions of package ffmpegdotjs. If attacker-controlled user input is given to the trimvideo function, it is possible for an attacker to execute arbitrary commands. This is due to us… CWE-78
OS Command  		CVE-2021-23376 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
195030 9.8 CRITICAL
Network 		psnode_project psnode This affects all versions of package psnode. If attacker-controlled user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c… CWE-78
OS Command  		CVE-2021-23375 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm