Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
257411 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer における任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2010-0117 2010-09-17 15:56 2010-08-26 Show GitHub Exploit DB Packet Storm
257412 9.3 危険 リアルネットワークス - Windows 上で稼働する RealNetworks RealPlayer における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0116 2010-09-17 15:56 2010-08-26 Show GitHub Exploit DB Packet Storm
257413 9.3 危険 Artifex Software - Ghostscript の TrueType bytecode interpreter に脆弱性 CWE-189
数値処理の問題 		CVE-2009-3743 2010-09-16 15:42 2010-08-25 Show GitHub Exploit DB Packet Storm
257414 5 警告 Devon IT - Devon IT 製品に複数の脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-3122 2010-09-16 15:42 2010-08-25 Show GitHub Exploit DB Packet Storm
257415 6.4 警告 日立 - JP1/NETM/Remote Control Agent における認証を回避される脆弱性 CWE-287
不適切な認証 		- 2010-09-16 15:42 2010-08-31 Show GitHub Exploit DB Packet Storm
257416 6.8 警告 ヒューレット・パッカード - HP HP-UX の Software Distributor における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2010-2712 2010-09-15 17:18 2010-08-25 Show GitHub Exploit DB Packet Storm
257417 6 警告 レッドハット - Red Hat Enterprise Linux の gdm におけるアクセス制限を回避される脆弱性 CWE-DesignError
CVE-2007-5079 2010-09-15 17:18 2007-09-25 Show GitHub Exploit DB Packet Storm
257418 9.3 危険 ImageMagick
GraphicsMagick
レッドハット		 - ImageMagick および GraphicsMagick の XMakeImage 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1882 2010-09-15 17:17 2009-06-2 Show GitHub Exploit DB Packet Storm
257419 3.3 注意 レッドハット - Firefox の SPICE プラグインにおける任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2010-2794 2010-09-15 17:17 2010-08-25 Show GitHub Exploit DB Packet Storm
257420 3.3 注意 レッドハット - Firefox の SPICE プラグインにおける重要な情報を取得される脆弱性 CWE-362
競合状態 		CVE-2010-2792 2010-09-15 17:13 2010-08-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194561 4.3 MEDIUM
Network 		sap fiori_apps_2.0_for_travel_management_in_sap_erp SAP's HCM Travel Management Fiori Apps V2, version - 608, does not perform proper authorization check, allowing an authenticated but unauthorized attacker to read personnel numbers of employees, resu… CWE-862
 Missing Authorization 		CVE-2021-27605 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194562 6.5 MEDIUM
Network 		sap netweaver_application_server_abap An RFC enabled function module SPI_WAIT_MILLIS in SAP NetWeaver AS ABAP, versions - 731, 740, 750, allows to keep a work process busy for any length of time. An attacker could call this function modu… NVD-CWE-noinfo
CVE-2021-27603 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194563 9.9 CRITICAL
Network 		sap commerce SAP Commerce, versions - 1808, 1811, 1905, 2005, 2011, Backoffice application allows certain authorized users to create source rules which are translated to drools rule when published to certain modu… CWE-94
Code Injection 		CVE-2021-27602 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194564 5.4 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver AS Java (Applications based on HTMLB for Java) allows a basic-level authorized attacker to store a malicious file on the server. When a victim tries to open this file, it results in a C… CWE-79
Cross-site Scripting 		CVE-2021-27601 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194565 5.4 MEDIUM
Network 		sap manufacturing_execution SAP Manufacturing Execution (System Rules), versions - 15.1, 15.2, 15.3, 15.4, allows an authorized attacker to embed malicious code into HTTP parameter and send it to the server because SAP Manufact… CWE-79
Cross-site Scripting 		CVE-2021-27600 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194566 5.3 MEDIUM
Network 		sap netweaver_application_server_java SAP NetWeaver AS JAVA (Customer Usage Provisioning Servlet), versions - 7.31, 7.40, 7.50, allows an attacker to read some statistical data like product version, traffic, timestamp etc. because of mis… CWE-862
 Missing Authorization 		CVE-2021-27598 2024-11-21 14:58 2021-04-14 Show GitHub Exploit DB Packet Storm
194567 9.8 CRITICAL
Network 		apache solr The ReplicationHandler (normally registered at "/replication" under a Solr core) in Apache Solr has a "masterUrl" (also "leaderUrl" alias) parameter that is used to designate another ReplicationHandl… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-27905 2024-11-21 14:58 2021-04-13 Show GitHub Exploit DB Packet Storm
194568 7.8 HIGH
Local 		fatek winproladder FATEK Automation WinProladder Versions 3.30 and prior is vulnerable to an integer underflow, which may cause an out-of-bounds write and allow an attacker to execute arbitrary code. - CVE-2021-27486 2024-11-21 14:58 2021-04-13 Show GitHub Exploit DB Packet Storm
194569 6.1 MEDIUM
Network 		squirro squirro The Squirro Insights Engine was affected by a Reflected Cross-Site Scripting (XSS) vulnerability affecting versions 2.0.0 up to and including 3.2.4. An attacker can use the vulnerability to inject ma… CWE-79
Cross-site Scripting 		CVE-2021-27945 2024-11-21 14:58 2021-04-9 Show GitHub Exploit DB Packet Storm
194570 8.8 HIGH
Network 		learnsite_project learnsite Learnsite 1.2.5.0 contains a remote privilege escalation vulnerability in /Manager/index.aspx through the JudgIsAdmin() function. By modifying the initial letter of the key of a user cookie, the key … CWE-287
Improper Authentication 		CVE-2021-27522 2024-11-21 14:58 2021-04-9 Show GitHub Exploit DB Packet Storm