Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 18, 2026, 12:01 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258141	9.3	危険	マイクロソフト	-	Microsoft Office における権限昇格の脆弱性	CWE-Other その他	CVE-2010-3337	2010-12-6 15:44	2010-08-23	Show	GitHub Exploit DB Packet Storm

258142	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3335	2010-12-6 15:36	2010-11-9	Show	GitHub Exploit DB Packet Storm

258143	9.3	危険	マイクロソフト	-	複数の Microsoft 製品における任意のコードを実行される脆弱性	CWE-119 バッファエラー	CVE-2010-3334	2010-12-6 15:30	2010-11-9	Show	GitHub Exploit DB Packet Storm

258144	4.3	警告	Zope Foundation	-	Zope Object Database の ZEO/StorageServer.py におけるサービス運用妨害 (DoS) の脆弱性	CWE-362 競合状態	CVE-2010-3495	2010-12-6 15:20	2010-10-19	Show	GitHub Exploit DB Packet Storm

258145	4.3	警告	マイクロソフト	-	複数の Microsoft 製品の toStaticHTML 関数および SafeHTML 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3324	2010-12-3 14:05	2010-10-12	Show	GitHub Exploit DB Packet Storm

258146	6.8	警告	アップル	-	Apple Mac OS X の xar におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-3798	2010-12-3 13:13	2010-11-16	Show	GitHub Exploit DB Packet Storm

258147	3.5	注意	アップル	-	Apple Mac OS X の Wiki サーバにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-3797	2010-12-3 13:12	2010-11-16	Show	GitHub Exploit DB Packet Storm

258148	4.3	警告	アップル	-	Apple Mac OS X の Safari RSS における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2010-3796	2010-12-3 13:10	2010-11-16	Show	GitHub Exploit DB Packet Storm

258149	6	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスレッドハット	-	PostgreSQL の PL/perl および PL/Tcl 実装における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-3433	2010-12-2 17:11	2010-10-4	Show	GitHub Exploit DB Packet Storm

258150	6.8	警告	アップルサイバートラスト株式会社ターボリナックス FreeType Project オラクルレッドハット	-	FreeType の Mac_Read_POST_Resource 関数におけるバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2010-2808	2010-12-2 17:08	2010-08-19	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196161	7.8	HIGH Local	mblog_project	mblog	OS Command injection vulnerability in mblog 3.5.0 allows attackers to execute arbitrary code via crafted theme when it gets selected.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-27280	2024-11-21 14:57	2023-05-8	Show	GitHub Exploit DB Packet Storm

196162	-		-	-	Server Side Request Forgery (SSRF) vulnerability in Gleez Cms 1.2.0, allows remote attackers to execute arbitrary code and obtain sensitive information via modules/gleez/classes/request.php.	-	CVE-2021-27312	2024-11-21 14:57	2024-04-3	Show	GitHub Exploit DB Packet Storm

196163	7.8	HIGH Local	ti	real-time_operating_system simplelink_cc26xx_software_development_kit simplelink_cc13xx_software_development_kit simplelink_cc32xx_software_development_kit simplelink_msp432e411y simpl…	Texas Instruments TI-RTOS returns a valid pointer to a small buffer on extremely large values. This can trigger an integer overflow vulnerability in 'HeapTrack_alloc' and result in code execution.	CWE-190 Integer Overflow or Wraparound	CVE-2021-27429	2024-11-21 14:57	2023-11-21	Show	GitHub Exploit DB Packet Storm

196164	5.4	MEDIUM Network	moodle	moodle	Moodle 3.10.1 is vulnerable to persistent/stored cross-site scripting (XSS) due to the improper input sanitization on the "Additional HTML Section" via "Header and Footer" parameter in /admin/setting…	CWE-79 Cross-site Scripting	CVE-2021-27131	2024-11-21 14:57	2023-05-17	Show	GitHub Exploit DB Packet Storm

196165	6.1	MEDIUM Network	odoo	odoo	Cross-site scripting (XSS) issue Odoo Community 15.0 and earlier and Odoo Enterprise 15.0 and earlier, allows remote attackers to inject arbitrary web script in the browser of a victim, via a crafted…	CWE-79 Cross-site Scripting	CVE-2021-26947	2024-11-21 14:57	2023-04-26	Show	GitHub Exploit DB Packet Storm

196166	8.8	HIGH Network	perfact	openvpn-client	An attacker can take leverage on PerFact OpenVPN-Client versions 1.4.1.0 and prior to send the config command from any application running on the local host machine to force the back-end server into …	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-27406	2024-11-21 14:57	2022-10-15	Show	GitHub Exploit DB Packet Storm

196167	5.5	MEDIUM Local	intel	wi-fi_6_ax411_firmware wi-fi_6_ax211_firmware wi-fi_6_ax210_firmware wi-fi_6_ax201_firmware wi-fi_6_ax200_firmware wireless-ac_9560_firmware wireless-ac_9462_firmware wireless-ac…	Out of bounds read in firmware for some Intel(R) Wireless Bluetooth(R) and Killer(TM) Bluetooth(R) products before version 22.120 may allow an authenticated user to potentially enable denial of servi…	CWE-125 Out-of-bounds Read	CVE-2021-26950	2024-11-21 14:57	2022-08-19	Show	GitHub Exploit DB Packet Storm

196168	9.8	CRITICAL Network	weintek	cmt-svr-100_firmware cmt-svr-102_firmware cmt-svr-200_firmware cmt-svr-202_firmware cmt-g01_firmware cmt-g02_firmware cmt-g03_firmware cmt-g04_firmware cmt3071_firmware cmt…	The Weintek cMT product line is vulnerable to various improper access controls, which may allow an unauthenticated attacker to remotely access and download sensitive information and perform administr…	NVD-CWE-Other	CVE-2021-27444	2024-11-21 14:57	2022-05-17	Show	GitHub Exploit DB Packet Storm

196169	6.1	MEDIUM Network	weintek	cmt-svr-100_firmware cmt-svr-102_firmware cmt-svr-200_firmware cmt-svr-202_firmware cmt-g01_firmware cmt-g02_firmware cmt-g03_firmware cmt-g04_firmware cmt3071_firmware cmt…	The Weintek cMT product line is vulnerable to a cross-site scripting vulnerability, which could allow an unauthenticated remote attacker to inject malicious JavaScript code.	-	CVE-2021-27442	2024-11-21 14:57	2022-05-17	Show	GitHub Exploit DB Packet Storm

196170	9.8	CRITICAL Network	tencent	tencentos-tiny	TencentOS-tiny version 3.1.0 is vulnerable to integer wrap-around in function 'tos_mmheap_alloc incorrect calculation of effective memory allocation size. This improper memory assignment can lead to …	-	CVE-2021-27439	2024-11-21 14:57	2022-05-4	Show	GitHub Exploit DB Packet Storm