Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 4, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257131 7.5 危険 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) における複数の整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0587 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
257132 5.8 警告 サン・マイクロシステムズ
GNOME Project
レッドハット		 - Evolution Data Server (別名 evolution-data-server) の ntlm_challenge 関数におけるプロセスメモリ情報の漏洩またはサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0582 2010-05-14 18:37 2009-03-14 Show GitHub Exploit DB Packet Storm
257133 1.2 注意 日本電気
サイバートラスト株式会社
サン・マイクロシステムズ
ターボリナックス
OpenSSL Project
レッドハット		 - RSA key reconstruction vulnerability - CVE-2007-3108 2010-05-14 18:37 2007-08-16 Show GitHub Exploit DB Packet Storm
257134 5 警告 ヒューレット・パッカード
サイバートラスト株式会社
OpenSSL Project
ターボリナックス
レッドハット		 - OpenSSL の zlib_stateful_finish 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-4355 2010-05-13 17:21 2010-01-13 Show GitHub Exploit DB Packet Storm
257135 9.3 危険 日立 - XMAP3 における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-13 15:14 2010-04-12 Show GitHub Exploit DB Packet Storm
257136 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Plan In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0863 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257137 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Place In-Season コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0864 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257138 4.3 警告 オラクル - Oracle Industry Product Suite の Retail - Oracle Retail Markdown Optimization コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0862 2010-05-13 15:13 2010-04-13 Show GitHub Exploit DB Packet Storm
257139 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Thesaurus Management System コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0875 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
257140 4.3 警告 オラクル - Oracle Industry Product Suite の Life Sciences - Oracle Clinical Remote Data Capture Option コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0876 2010-05-13 15:12 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 4, 2026, 4:17 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197211 6.5 MEDIUM
Network 		matrix
fedoraproject 		synapse
fedora 		Synapse is a Matrix reference homeserver written in python (pypi package matrix-synapse). Matrix is an ecosystem for open federated Instant Messaging and VoIP. In Synapse before version 1.28.0 Synaps… CWE-20
 Improper Input Validation  		CVE-2021-21394 2024-11-21 14:48 2021-04-13 Show GitHub Exploit DB Packet Storm
197212 5.3 MEDIUM
Network 		zte zxa10_c300m_firmware A ZTE product has a configuration error vulnerability. Because a certain port is open by default, an attacker can consume system processing resources by flushing a large number of packets to the port… CWE-400
 Uncontrolled Resource Consumption 		CVE-2021-21728 2024-11-21 14:48 2021-04-10 Show GitHub Exploit DB Packet Storm
197213 8.8 HIGH
Network 		demon1a discord-recon Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server re… CWE-78
OS Command  		CVE-2021-21433 2024-11-21 14:48 2021-04-10 Show GitHub Exploit DB Packet Storm
197214 6.5 MEDIUM
Network 		go-vela vela Vela is a Pipeline Automation (CI/CD) framework built on Linux container technology written in Golang. An authentication mechanism added in version 0.7.0 enables some malicious user to obtain secrets… CWE-862
 Missing Authorization 		CVE-2021-21432 2024-11-21 14:48 2021-04-10 Show GitHub Exploit DB Packet Storm
197215 8.1 HIGH
Network 		mirahezebots channelmgnt sopel-channelmgnt is a channelmgnt plugin for sopel. In versions prior to 2.0.1, on some IRC servers, restrictions around the removal of the bot using the kick/kickban command could be bypassed when … NVD-CWE-Other
CVE-2021-21431 2024-11-21 14:48 2021-04-10 Show GitHub Exploit DB Packet Storm
197216 9.8 CRITICAL
Network 		getgrav grav-plugin-admin Grav Admin Plugin is an HTML user interface that provides a way to configure Grav and create and modify pages. In versions 1.10.7 and earlier, an unauthenticated user can execute some methods of admi… NVD-CWE-Other
CVE-2021-21425 2024-11-21 14:48 2021-04-8 Show GitHub Exploit DB Packet Storm
197217 4.3 MEDIUM
Network 		jenkins promoted_builds A cross-site request forgery (CSRF) vulnerability in Jenkins promoted builds Plugin 3.9 and earlier allows attackers to to promote builds. CWE-352
 Origin Validation Error 		CVE-2021-21641 2024-11-21 14:48 2021-04-7 Show GitHub Exploit DB Packet Storm
197218 4.3 MEDIUM
Network 		jenkins jenkins Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not properly check that a newly created view has an allowed name, allowing attackers with View/Create permission to create views with invalid o… - CVE-2021-21640 2024-11-21 14:48 2021-04-7 Show GitHub Exploit DB Packet Storm
197219 4.3 MEDIUM
Network 		jenkins jenkins Jenkins 2.286 and earlier, LTS 2.277.1 and earlier does not validate the type of object created after loading the data submitted to the `config.xml` REST API endpoint of a node, allowing attackers wi… - CVE-2021-21639 2024-11-21 14:48 2021-04-7 Show GitHub Exploit DB Packet Storm
197220 7.5 HIGH
Network 		syncthing syncthing Syncthing is a continuous file synchronization program. In Syncthing before version 1.15.0, the relay server `strelaysrv` can be caused to crash and exit by sending a relay message with a negative le… - CVE-2021-21404 2024-11-21 14:48 2021-04-7 Show GitHub Exploit DB Packet Storm