Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 8, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258281	4.6	警告	IBM	-	IBM DB2 の dasauto における管理者権限を持たないユーザが実行可能な脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2009-4150	2010-01-15 14:10	2009-12-2	Show	GitHub Exploit DB Packet Storm

258282	2.1	注意	サン・マイクロシステムズ	-	Sun Solaris の ldap_cachemgr におけるサービス運用妨害 (DoS) の脆弱性	CWE-Other その他	CVE-2009-4080	2010-01-15 14:10	2009-11-24	Show	GitHub Exploit DB Packet Storm

258283	5	警告	サン・マイクロシステムズ	-	Sun Solaris の sshd におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2009-4075	2010-01-15 14:09	2009-11-23	Show	GitHub Exploit DB Packet Storm

258284	2.6	注意	オラクル	-	Oracle Application Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	-	2010-01-14 15:01	2010-01-14	Show	GitHub Exploit DB Packet Storm

258285	9.3	危険	マイクロソフト	-	Microsoft Internet Explorer に脆弱性	CWE-94 コード・インジェクション	CVE-2009-3672	2010-01-14 12:08	2009-11-25	Show	GitHub Exploit DB Packet Storm

258286	9.3	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の java.lang パッケージにおける脆弱性	CWE-362 競合状態	CVE-2009-2724	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

258287	10	危険	サン・マイクロシステムズ VMware	-	Sun Java SE の Provider クラスにおける脆弱性	CWE-noinfo 情報不足	CVE-2009-2721	2010-01-14 12:08	2009-08-10	Show	GitHub Exploit DB Packet Storm

258288	5	警告	有限会社シースリー	-	WebCalenderC3 におけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2010-0348	2010-01-12 15:01	2010-01-12	Show	GitHub Exploit DB Packet Storm

258289	4.3	警告	有限会社シースリー	-	WebCalenderC3 におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2010-0349	2010-01-12 15:00	2010-01-12	Show	GitHub Exploit DB Packet Storm

258290	10	危険	サイバートラスト株式会社 XEmacs	-	XEmacs の glyphs-eimage.c における整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2009-2688	2010-01-12 14:48	2009-08-5	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 8, 2026, 4:09 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196851	9.8	CRITICAL Network	tibco	api_exchange_gateway_distribution api_exchange_gateway	The Config UI component of TIBCO Software Inc.'s TIBCO API Exchange Gateway and TIBCO API Exchange Gateway Distribution for TIBCO Silver Fabric contains a vulnerability that theoretically allows an u…	CWE-1021 Improper Restriction of Rendered UI Layers or Frames	CVE-2021-23274	2024-11-21 14:51	2021-03-24	Show	GitHub Exploit DB Packet Storm

196852	8.8	HIGH Network	killport_project	killport	This affects the package killport before 1.0.2. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exe…	CWE-78 OS Command	CVE-2021-23360	2024-11-21 14:51	2021-03-22	Show	GitHub Exploit DB Packet Storm

196853	8.8	HIGH Network	port-killer_project	port-killer	This affects all versions of package port-killer. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process e…	CWE-78 OS Command	CVE-2021-23359	2024-11-21 14:51	2021-03-18	Show	GitHub Exploit DB Packet Storm

196854	6.7	MEDIUM Local	mcafee	endpoint_product_removal_tool	Unquoted service path vulnerability in McAfee Endpoint Product Removal (EPR) Tool prior to 21.2 allows local administrators to execute arbitrary code, with higher-level privileges, via execution from…	CWE-428 Unquoted Search Path or Element	CVE-2021-23879	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

196855	5.3	MEDIUM Local	tyk	tyk	All versions of package github.com/tyktechnologies/tyk/gateway are vulnerable to Directory Traversal via the handleAddOrUpdateApi function. This function is able to delete arbitrary JSON files on the…	CWE-22 Path Traversal	CVE-2021-23357	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

196856	9.8	CRITICAL Network	kill-process-by-name_project	kill-process-by-name	This affects all versions of package kill-process-by-name. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_…	CWE-78 OS Command	CVE-2021-23356	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

196857	9.8	CRITICAL Network	ps-kill_project	ps-kill	This affects all versions of package ps-kill. If (attacker-controlled) user input is given to the kill function, it is possible for an attacker to execute arbitrary commands. This is due to use of th…	CWE-78 OS Command	CVE-2021-23355	2024-11-21 14:51	2021-03-16	Show	GitHub Exploit DB Packet Storm

196858	7.5	HIGH Network	adaltas	printf	The package printf before 0.6.1 are vulnerable to Regular Expression Denial of Service (ReDoS) via the regex string /\%(?:$([\w_.]+)$\|([1-9]\d)\$)?([0 +\-\])(\\|\d+)?(\.)?(\\|\d+)?[hlL]?([\%bscde…	CWE-1333 Inefficient Regular Expression Complexity	CVE-2021-23354	2024-11-21 14:51	2021-03-13	Show	GitHub Exploit DB Packet Storm

196859	5.4	MEDIUM Network	tibco	spotfire_server spotfire_desktop spotfire_analyst analytics_platform	The Spotfire client component of TIBCO Software Inc.'s TIBCO Spotfire Analyst, TIBCO Spotfire Analytics Platform for AWS Marketplace, TIBCO Spotfire Desktop, and TIBCO Spotfire Server contains a vuln…	CWE-79 Cross-site Scripting	CVE-2021-23273	2024-11-21 14:51	2021-03-10	Show	GitHub Exploit DB Packet Storm

196860	7.5	HIGH Network	parall	jspdf	This affects the package jspdf before 2.3.1. ReDoS is possible via the addImage function.	NVD-CWE-noinfo	CVE-2021-23353	2024-11-21 14:51	2021-03-10	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed