Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258591 9.3 危険 日立 - 複数の日立製品におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-4776 2010-05-28 18:42 2009-07-21 Show GitHub Exploit DB Packet Storm
258592 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live 2009 および teTeX の dvips における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0827 2010-05-27 17:40 2010-05-6 Show GitHub Exploit DB Packet Storm
258593 6.8 警告 サイバートラスト株式会社
レッドハット		 - teTeX および TeXlive 2007 の hpc.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2007-5935 2010-05-27 17:40 2007-11-13 Show GitHub Exploit DB Packet Storm
258594 4.3 警告 サイバートラスト株式会社
レッドハット		 - dvipng および teTeX の set.c における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2010-0829 2010-05-27 17:40 2010-05-6 Show GitHub Exploit DB Packet Storm
258595 1.9 注意 IBM - IBM WebSphere Application Server における KeyRingPassword のパスワード情報が漏えいする脆弱性 CWE-255
証明書・パスワード管理 		CVE-2010-0769 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258596 4.3 警告 IBM - IBM WebSphere Application Server の管理コンソールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-0768 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258597 4 警告 IBM - IBM WebSphere Application Server におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0770 2010-05-27 17:25 2010-04-1 Show GitHub Exploit DB Packet Storm
258598 5 警告 IBM - IBM WebSphere Application Server (WAS) の Administrative Console コンポーネントにおける WAS セッションの内容を読まれる脆弱性 CWE-200
情報漏えい 		CVE-2009-1898 2010-05-27 17:24 2009-06-3 Show GitHub Exploit DB Packet Storm
258599 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live 2009 および teTeX の dvipsk/dospecial.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-1440 2010-05-26 16:33 2010-05-6 Show GitHub Exploit DB Packet Storm
258600 6.8 警告 サイバートラスト株式会社
レッドハット		 - TeX Live および teTeX の predospecial 関数における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2010-0739 2010-05-26 16:32 2010-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195991 5.4 MEDIUM
Network 		phpgurukul daily_expense_tracker_system PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the add-expense.php Item parameter. CWE-79
Cross-site Scripting 		CVE-2021-26304 2024-11-21 14:56 2021-01-29 Show GitHub Exploit DB Packet Storm
195992 6.1 MEDIUM
Network 		phpgurukul daily_expense_tracker_system PHPGurukul Daily Expense Tracker System 1.0 is vulnerable to stored XSS via the user-profile.php Full Name field. CWE-79
Cross-site Scripting 		CVE-2021-26303 2024-11-21 14:56 2021-01-29 Show GitHub Exploit DB Packet Storm
195993 5.3 MEDIUM
Network 		godaddy node-config-shield scripts/cli.js in the GoDaddy node-config-shield (aka Config Shield) package before 0.2.2 for Node.js calls eval when processing a set command. NOTE: the vendor reportedly states that this is not a v… CWE-913
 Improper Control of Dynamically-Managed Code Resources 		CVE-2021-26276 2024-11-21 14:56 2021-01-28 Show GitHub Exploit DB Packet Storm
195994 6.5 MEDIUM
Network 		ckeditor
oracle 		ckeditor
webcenter_sites
agile_plm
commerce_merchandising
jd_edwards_enterpriseone_tools
financial_services_model_management_and_governance
financial_services_analytical_application… 		It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted URL-like text into the editor, and then press Enter or Space (in the Autolink plug… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2021-26272 2024-11-21 14:56 2021-01-27 Show GitHub Exploit DB Packet Storm
195995 6.5 MEDIUM
Network 		ckeditor
oracle 		ckeditor
webcenter_sites
agile_plm
jd_edwards_enterpriseone_tools
financial_services_analytical_applications_infrastructure
siebel_ui_framework
application_express 		It was possible to execute a ReDoS-type attack inside CKEditor 4 before 4.16 by persuading a victim to paste crafted text into the Styles input of specific dialogs (in the Advanced Tab for Dialogs pl… CWE-829
 Inclusion of Functionality from Untrusted Control Sphere 		CVE-2021-26271 2024-11-21 14:56 2021-01-27 Show GitHub Exploit DB Packet Storm
195996 7.5 HIGH
Network 		cpanel cpanel cPanel before 92.0.9 allows a MySQL user (who has an old-style password hash) to bypass suspension (SEC-579). NVD-CWE-noinfo
CVE-2021-26267 2024-11-21 14:56 2021-01-27 Show GitHub Exploit DB Packet Storm
195997 7.5 HIGH
Network 		cpanel cpanel cPanel before 92.0.9 allows a Reseller to bypass the suspension lock (SEC-578). NVD-CWE-Other
CVE-2021-26266 2024-11-21 14:56 2021-01-27 Show GitHub Exploit DB Packet Storm
195998 6.5 MEDIUM
Network 		intel openvino Improper input validation in the Intel(R) Distribution of OpenVINO(TM) Toolkit may allow an authenticated user to potentially enable denial of service via network access. CWE-20
 Improper Input Validation  		CVE-2021-26251 2024-11-21 14:55 2022-11-12 Show GitHub Exploit DB Packet Storm
195999 6.3 MEDIUM
Network 		kubernetes kubernetes Kube-proxy on Windows can unintentionally forward traffic to local processes listening on the same port (“spec.ports[*].port”) as a LoadBalancer Service when the LoadBalancer controller does not … NVD-CWE-noinfo
CVE-2021-25736 2024-11-21 14:55 2023-10-30 Show GitHub Exploit DB Packet Storm
196000 7.2 HIGH
Network 		supermicro-cms_project supermicro-cms An issue was discovered in pcmt superMicro-CMS version 3.11, allows authenticated attackers to execute arbitrary code via the font_type parameter to setup.php. NVD-CWE-noinfo
CVE-2021-25857 2024-11-21 14:55 2023-08-11 Show GitHub Exploit DB Packet Storm