Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":May 30, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
257271	4.7	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の execve 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-2848	2010-02-16 11:43	2009-08-18	Show	GitHub Exploit DB Packet Storm

257272	4.9	警告	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の do_sigaltstack 関数における情報漏えいの脆弱性	CWE-noinfo 情報不足	CVE-2009-2847	2010-02-16 11:43	2009-08-18	Show	GitHub Exploit DB Packet Storm

257273	7.2	危険	サイバートラスト株式会社 Linux レッドハット	-	Linux kernel の personality サブシステムにおける NULL ポインタ参照の脆弱性	CWE-16 環境設定	CVE-2009-1895	2010-02-16 11:43	2009-07-16	Show	GitHub Exploit DB Packet Storm

257274	4.3	警告	オラクル	-	BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0069	2010-02-15 19:32	2010-01-12	Show	GitHub Exploit DB Packet Storm

257275	5	警告	オラクル	-	BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0078	2010-02-15 19:32	2010-01-12	Show	GitHub Exploit DB Packet Storm

257276	5	警告	オラクル	-	BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0074	2010-02-15 19:32	2010-01-12	Show	GitHub Exploit DB Packet Storm

257277	5	警告	オラクル	-	BEA Product Suite の WebLogic Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0068	2010-02-15 19:32	2010-01-12	Show	GitHub Exploit DB Packet Storm

257278	4.3	警告	オラクル	-	Oracle Application Server の J2EE コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0070	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

257279	5	警告	オラクル	-	Oracle Application Server の J2EE コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0067	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

257280	5	警告	オラクル	-	Oracle Application Server の Access Manager Identity Server コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0066	2010-02-15 19:31	2010-01-12	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195241	5.0	MEDIUM Local	mcafee	endpoint_security	Clear text storage of sensitive Information in memory vulnerability in McAfee Endpoint Security (ENS) for Windows prior to 10.7.0 February 2021 Update allows a local user to view ENS settings and cre…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-23878	2024-11-21 14:51	2021-02-10	Show	GitHub Exploit DB Packet Storm

195242	6.3	MEDIUM Network	fusioncharts	apexcharts	The package apexcharts before 3.24.0 are vulnerable to Cross-site Scripting (XSS) via lack of sanitization of graph legend fields.	CWE-79 Cross-site Scripting	CVE-2021-23327	2024-11-21 14:51	2021-02-9	Show	GitHub Exploit DB Packet Storm

195243	3.3	LOW Local	squareup	connect_java_software_development_kit	This affects all versions of package com.squareup:connect. The method prepareDownloadFilecreates creates a temporary file with the permissions bits of -rw-r--r-- on unix-like systems. On unix-like sy…	NVD-CWE-noinfo	CVE-2021-23331	2024-11-21 14:51	2021-02-4	Show	GitHub Exploit DB Packet Storm

195244	8.0	HIGH Network	tibco	ebx	The TIBCO EBX Web Server component of TIBCO Software Inc.'s TIBCO EBX contains a vulnerability that theoretically allows a low privileged attacker with network access to execute a Stored Cross Site S…	CWE-79 Cross-site Scripting	CVE-2021-23271	2024-11-21 14:51	2021-02-3	Show	GitHub Exploit DB Packet Storm

195245	9.8	CRITICAL Network	bitovi	launchpad	All versions of package launchpad are vulnerable to Command Injection via stop.	CWE-78 OS Command	CVE-2021-23330	2024-11-21 14:51	2021-02-2	Show	GitHub Exploit DB Packet Storm

195246	7.5	HIGH Network	getadigital	nested-object-assign	The package nested-object-assign before 1.0.4 are vulnerable to Prototype Pollution via the default function, as demonstrated by running the PoC below.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-23329	2024-11-21 14:51	2021-02-1	Show	GitHub Exploit DB Packet Storm

195247	5.6	MEDIUM Network	iniparserjs_project	iniparserjs	This affects all versions of package iniparserjs. This vulnerability relates when ini_parser.js is concentrating arrays. Depending on if user input is provided, an attacker can overwrite and pollute …	NVD-CWE-Other	CVE-2021-23328	2024-11-21 14:51	2021-01-30	Show	GitHub Exploit DB Packet Storm

195248	5.4	MEDIUM Network	tibco	bpm_enterprise bpm_enterprise_distribution_for_silver_fabric	The Application Development Clients component of TIBCO Software Inc.'s TIBCO BPM Enterprise and TIBCO BPM Enterprise Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically a…	CWE-79 Cross-site Scripting	CVE-2021-23272	2024-11-21 14:51	2021-01-27	Show	GitHub Exploit DB Packet Storm

195249	8.8	HIGH Network	the-guild	graphql-tools	This affects the package @graphql-tools/git-loader before 6.2.6. The use of exec and execSync in packages/loaders/git/src/load-git.ts allows arbitrary command injection.	CWE-78 OS Command	CVE-2021-23326	2024-11-21 14:51	2021-01-20	Show	GitHub Exploit DB Packet Storm

195250	4.8	MEDIUM Network	flatcore	flatcore	An issue was discovered in flatCore before 2.0.0 build 139. A reflected XSS vulnerability was identified in the media_filter HTTP request body parameter for the acp interface. The affected parameter …	CWE-79 Cross-site Scripting	CVE-2021-23838	2024-11-21 14:51	2021-01-15	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed