Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258101 4.3 警告 シトリックス・システムズ - 複数の Citrix XenServer 製品の XenAPI HTTP インターフェイスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-3253 2010-09-14 15:54 2008-07-16 Show GitHub Exploit DB Packet Storm
258102 7.5 危険 シトリックス・システムズ - Citrix XenCenterWeb の XenServer Resource Kit における PHP コードを挿入される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-3760 2010-09-14 15:54 2009-10-22 Show GitHub Exploit DB Packet Storm
258103 6 警告 シトリックス・システムズ - Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2009-3759 2010-09-14 15:54 2009-10-22 Show GitHub Exploit DB Packet Storm
258104 7.5 危険 シトリックス・システムズ - Citrix XenCenterWeb の XenServer Resource Kit における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2009-3758 2010-09-14 15:53 2009-10-22 Show GitHub Exploit DB Packet Storm
258105 4.3 警告 シトリックス・システムズ - Citrix XenCenterWeb の XenServer Resource Kit におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2009-3757 2010-09-14 15:53 2009-10-22 Show GitHub Exploit DB Packet Storm
258106 7.2 危険 シトリックス・システムズ - Xen の xend におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2008-5716 2010-09-14 15:53 2008-12-24 Show GitHub Exploit DB Packet Storm
258107 6 警告 VMware - VMware Studio の Virtual Appliance Management Infrastructure における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2010-2667 2010-09-13 16:05 2010-07-13 Show GitHub Exploit DB Packet Storm
258108 4.4 警告 VMware - VMware Studio における権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-2427 2010-09-13 16:05 2010-07-13 Show GitHub Exploit DB Packet Storm
258109 6.8 警告 VMware - VMware SpringSource tc Server Runtime における JMX インターフェイスへのアクセス権を取得される脆弱性 CWE-287
不適切な認証 		CVE-2010-1454 2010-09-13 16:05 2010-05-13 Show GitHub Exploit DB Packet Storm
258110 4.3 警告 VMware - VMware View におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1143 2010-09-13 16:04 2010-05-5 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199941 4.5 MEDIUM
Adjacent 		konicaminolta bizhub_c750i_firmware
bizhub_c650i_firmware
bizhub_c550i_firmware
bizhub_c450i_firmware
bizhub_c360i_firmware
bizhub_c300i_firmware
bizhub_c250i_firmware
bizhub_750i_firmware
 Incorrect authorization vulnerability in KONICA MINOLTA bizhub series (bizhub C750i G00-35 and earlier, bizhub C650i/C550i/C450i G00-B6 and earlier, bizhub C360i/C300i/C250i G00-B6 and earlier, bizhu… CWE-863
 Incorrect Authorization 		CVE-2021-20868 2024-11-21 14:47 2022-01-4 Show GitHub Exploit DB Packet Storm
199942 8.1 HIGH
Network 		yappli yappli Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. When Android apps are developed with Yappli versions since v7.3.6 and prio… CWE-862
 Missing Authorization 		CVE-2021-20873 2024-11-21 14:47 2021-12-28 Show GitHub Exploit DB Packet Storm
199943 6.8 MEDIUM
Network 		groupsession groupsession Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows an attacker with an admini… CWE-22
Path Traversal 		CVE-2021-20876 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199944 6.1 MEDIUM
Network 		groupsession groupsession Open redirect vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated at… CWE-601
Open Redirect 		CVE-2021-20875 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199945 7.5 HIGH
Network 		groupsession groupsession Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and ea… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20874 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199946 7.5 HIGH
Network 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 a… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-20827 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199947 7.6 HIGH
Adjacent 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.1… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20826 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199948 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in moving the field group which may allow a user to m… CWE-862
 Missing Authorization 		CVE-2021-20867 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199949 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to … CWE-862
 Missing Authorization 		CVE-2021-20866 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199950 7.5 HIGH
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in browsing database which may allow a user to browse… CWE-862
 Missing Authorization 		CVE-2021-20865 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm