Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258241 5 警告 VMware - 複数の VMware 製品の仮想ネットワークスタックにおける重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2010-1138 2010-05-7 17:25 2010-04-9 Show GitHub Exploit DB Packet Storm
258242 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における権限昇格の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1142 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258243 8.5 危険 VMware - 複数の VMware 製品の VMware Tools における任意のコードを実行される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1141 2010-05-7 17:24 2010-04-9 Show GitHub Exploit DB Packet Storm
258244 5 警告 アップル
サイバートラスト株式会社
レッドハット
ターボリナックス
CUPS		 - CUPS の ippReadIO 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2009-0949 2010-05-7 16:55 2009-06-3 Show GitHub Exploit DB Packet Storm
258245 6.8 警告 レッドハット
サイバートラスト株式会社
ターボリナックス
CUPS		 - CUPS の TIFF イメージデコーディングルーチンにおける整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-0163 2010-05-7 16:51 2009-04-16 Show GitHub Exploit DB Packet Storm
258246 4.6 警告 GNU Project
サイバートラスト株式会社
レッドハット		 - GNU cpio における大きなサイズのファイル処理によるバッファーオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2005-4268 2010-05-7 16:51 2005-12-15 Show GitHub Exploit DB Packet Storm
258247 4.3 警告 日本電気
Apache Software Foundation		 - Apache Xerces C++ におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1885 2010-05-6 13:47 2009-08-6 Show GitHub Exploit DB Packet Storm
258248 6.4 警告 アップル
ターボリナックス
CUPS		 - CUPS における DNS リバインド攻撃を誘導される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-0164 2010-05-6 13:46 2009-04-24 Show GitHub Exploit DB Packet Storm
258249 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける SplashBitmap に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1188 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
258250 5 警告 freedesktop.org
日本電気
サイバートラスト株式会社
レッドハット		 - JBIG2 デコーダにおける CairoOutputDev に関連する整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2009-1187 2010-05-6 13:46 2009-04-23 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199151 8.1 HIGH
Network 		yappli yappli Yappli is an application development platform which provides the function to access a requested URL using Custom URL Scheme. When Android apps are developed with Yappli versions since v7.3.6 and prio… CWE-862
 Missing Authorization 		CVE-2021-20873 2024-11-21 14:47 2021-12-28 Show GitHub Exploit DB Packet Storm
199152 6.8 MEDIUM
Network 		groupsession groupsession Path traversal vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows an attacker with an admini… CWE-22
Path Traversal 		CVE-2021-20876 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199153 6.1 MEDIUM
Network 		groupsession groupsession Open redirect vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and earlier allows a remote unauthenticated at… CWE-601
Open Redirect 		CVE-2021-20875 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199154 7.5 HIGH
Network 		groupsession groupsession Incorrect permission assignment for critical resource vulnerability in GroupSession Free edition ver5.1.1 and earlier, GroupSession byCloud ver5.1.1 and earlier, and GroupSession ZION ver5.1.1 and ea… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-20874 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199155 7.5 HIGH
Network 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Plaintext storage of a password vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.19.1 a… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-20827 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199156 7.6 HIGH
Adjacent 		idec microsmart_fc6a_firmware
microsmart_plus_fc6a_firmware
data_file_manager
windedit
windldr 		Unprotected transport of credentials vulnerability in IDEC PLCs (FC6A Series MICROSmart All-in-One CPU module v2.32 and earlier, FC6A Series MICROSmart Plus CPU module v1.91 and earlier, WindLDR v8.1… CWE-522
 Insufficiently Protected Credentials 		CVE-2021-20826 2024-11-21 14:47 2021-12-24 Show GitHub Exploit DB Packet Storm
199157 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in moving the field group which may allow a user to m… CWE-862
 Missing Authorization 		CVE-2021-20867 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199158 6.5 MEDIUM
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in obtaining the user list which may allow a user to … CWE-862
 Missing Authorization 		CVE-2021-20866 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199159 7.5 HIGH
Network 		advancedcustomfields advanced_custom_fields Advanced Custom Fields versions prior to 5.11 and Advanced Custom Fields Pro versions prior to 5.11 contain a missing authorization vulnerability in browsing database which may allow a user to browse… CWE-862
 Missing Authorization 		CVE-2021-20865 2024-11-21 14:47 2021-12-13 Show GitHub Exploit DB Packet Storm
199160 5.4 MEDIUM
Network 		elecom wrc-2533ghbk-i_firmware Cross-site scripting vulnerability in ELECOM LAN router WRC-2533GHBK-I firmware v1.20 and prior allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2021-20858 2024-11-21 14:47 2021-12-1 Show GitHub Exploit DB Packet Storm