Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 21, 2026, 6 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 258011 | 4.3 | 警告 | Webmin Project オラクル |
- | Webmin および Usermin におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2009-4568 | 2010-12-21 15:14 | 2010-01-5 | Show | GitHub Exploit DB Packet Storm |
| 258012 | 6.8 | 警告 | 富士通 | - | Interstage Application Server における許可されていない IP アドレスからのリクエストのアクセスを許可する脆弱性 |
CWE-noinfo
情報不足 |
- | 2010-12-21 14:14 | 2010-11-19 | Show | GitHub Exploit DB Packet Storm |
| 258013 | 8.3 | 危険 | 日立 | - | 日立の Groupmax 関連製品におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
- | 2010-12-21 14:06 | 2010-11-17 | Show | GitHub Exploit DB Packet Storm |
| 258014 | 4.3 | 警告 | The PHP Group アップル サイバートラスト株式会社 レッドハット |
- | PHP の var_export 関数における、重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2010-2531 | 2010-12-20 16:08 | 2010-07-22 | Show | GitHub Exploit DB Packet Storm |
| 258015 | 4.6 | 警告 | サイバートラスト株式会社 Linux レッドハット |
- | Hypervisor の命令のエミュレーションにおけるサービス運用妨害 (DoS) の脆弱性 |
CWE-Other
その他 |
CVE-2010-0435 | 2010-12-20 16:01 | 2010-08-19 | Show | GitHub Exploit DB Packet Storm |
| 258016 | 5 | 警告 | レッドハット Pidgin オラクル |
- | Pidgin の MSN プロトコルプラグインの msn_emoticon_msg 関数におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2010-1624 | 2010-12-20 16:00 | 2010-05-12 | Show | GitHub Exploit DB Packet Storm |
| 258017 | 4.3 | 警告 | IBM Apache Software Foundation アップル サイバートラスト株式会社 富士通 ヒューレット・パッカード ターボリナックス 日立 |
- | Apache HTTP Server の 413 エラーメッセージにおける HTTP メソッドを適切に検査しない問題 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2007-6203 | 2010-12-20 15:38 | 2007-12-3 | Show | GitHub Exploit DB Packet Storm |
| 258018 | 4.3 | 警告 | シマンテック | - | PGP Desktop にデータインジェクションの脆弱性 |
CWE-310
暗号の問題 |
CVE-2010-3618 | 2010-12-20 14:44 | 2010-11-19 | Show | GitHub Exploit DB Packet Storm |
| 258019 | 6.8 | 警告 | アップル | - | Apple iOS の Telephony 内にある GSM 方式の通信管理の実装におけるヒープベースのバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2010-3832 | 2010-12-20 14:39 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
| 258020 | 4.3 | 警告 | アップル | - | Apple iOS の Photos における MobileMe アカウントのパスワードを読まれる脆弱性 |
CWE-200
情報漏えい |
CVE-2010-3831 | 2010-12-20 14:32 | 2010-11-26 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 21, 2026, 4:01 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 195371 | 9.0 |
CRITICAL
Adjacent |
netgear |
rbk852_firmware rbk853_firmware rbk854_firmware rbr850_firmware rbs850_firmware rbr752_firmware rbr753_firmware rbr753s_firmware rbr754_firmware rbr750_firmware rbs750_f… |
Certain NETGEAR devices are affected by command injection by an authenticated user. This affects RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR850 before 3.2.17.12, RB… |
CWE-77
Command Injection |
CVE-2021-29071 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195372 | 9.6 |
CRITICAL
Adjacent |
netgear |
rbw30_firmware rbs40v_firmware rbk852_firmware rbk853_firmware rbk854_firmware rbr850_firmware rbs850_firmware rbk752_firmware rbk753_firmware rbk753s_firmware rbk754_fi… |
Certain NETGEAR devices are affected by authentication bypass. This affects RBW30 before 2.6.2.2, RBS40V before 2.6.2.4, RBK852 before 3.2.17.12, RBK853 before 3.2.17.12, RBK854 before 3.2.17.12, RBR… |
NVD-CWE-noinfo
|
CVE-2021-29067 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195373 | 8.8 |
HIGH
Network |
netgear |
r6700_firmware r6400_firmware r7000_firmware r6900p_firmware r7000p_firmware r7900_firmware r7850_firmware r8000_firmware rs400_firmware r6900_firmware mk60_firmware … |
Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. This affects R6700v3 before 1.0.4.98, R6400v2 before 1.0.4.98, R7000 before 1.0.11.106, R6900P before 1.3.2.124, R7… |
CWE-120
Classic Buffer Overflow |
CVE-2021-29068 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195374 | 5.5 |
MEDIUM
Local |
linux fedoraproject debian netapp |
linux_kernel fedora debian_linux cloud_backup solidfire_baseboard_management_controller_firmware aff_a250_firmware aff_500f_firmware |
In intel_pmu_drain_pebs_nhm in arch/x86/events/intel/ds.c in the Linux kernel through 5.11.8 on some Haswell CPUs, userspace applications (such as perf-fuzzer) can cause a system crash because the PE… |
CWE-755
Improper Handling of Exceptional Conditions |
CVE-2021-28971 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195375 | 6.7 |
MEDIUM
Local |
linux fedoraproject netapp |
linux_kernel fedora cloud_backup solidfire_baseboard_management_controller_firmware fas\/aff_baseboard_management_controller |
In drivers/pci/hotplug/rpadlpar_sysfs.c in the Linux kernel through 5.11.8, the RPA PCI Hotplug driver has a user-tolerable buffer overflow when writing a new device name to the driver from userspace… |
CWE-120
Classic Buffer Overflow |
CVE-2021-28972 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195376 | 5.4 |
MEDIUM
Network |
gnu | punbb | An issue was discovered in PunBB before 1.4.6. An XSS vulnerability in the [email] BBcode tag allows (with authentication) injecting arbitrary JavaScript into any forum message. |
CWE-79
Cross-site Scripting |
CVE-2021-28968 | 2024-11-21 15:00 | 2021-03-23 | Show | GitHub Exploit DB Packet Storm |
| 195377 | 4.7 |
MEDIUM
Local |
linux fedoraproject debian netapp |
linux_kernel fedora debian_linux cloud_backup solidfire_baseboard_management_controller_firmware aff_a250_firmware fas_500f_firmware |
A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an exten… |
CWE-362
Race Condition |
CVE-2021-28964 | 2024-11-21 15:00 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |
| 195378 | 5.3 |
MEDIUM
Network |
shibboleth debian |
service_provider debian_linux |
Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters. |
CWE-74
Injection |
CVE-2021-28963 | 2024-11-21 15:00 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |
| 195379 | 8.8 |
HIGH
Network |
sass_lint_project | sass_lint | The unofficial vscode-sass-lint (aka Sass Lint) extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnera… |
NVD-CWE-noinfo
|
CVE-2021-28956 | 2024-11-21 15:00 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |
| 195380 | 9.8 |
CRITICAL
Network |
git-bug_project | git-bug | git-bug before 0.7.2 has an Uncontrolled Search Path Element. It will execute git.bat from the current directory in certain PATH situations (most often seen on Windows). |
CWE-427
Uncontrolled Search Path Element |
CVE-2021-28955 | 2024-11-21 15:00 | 2021-03-22 | Show | GitHub Exploit DB Packet Storm |