Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
258631	9.3	危険	サイバートラスト株式会社 Wireshark レッドハット	-	Wireshark の erf ファイル処理に脆弱性	CWE-189 数値処理の問題	CVE-2009-3829	2010-05-19 17:42	2009-10-7	Show	GitHub Exploit DB Packet Storm

258632	10	危険	アップル	-	Apple Mac OS X 上で稼働する Safari における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2010-1120	2010-05-18 16:39	2010-03-25	Show	GitHub Exploit DB Packet Storm

258633	6.9	警告	KDE project サイバートラスト株式会社レッドハット	-	KDE の KDM における制御ソケットの処理に関する権限昇格の脆弱性	CWE-362 競合状態	CVE-2010-0436	2010-05-18 16:39	2010-04-13	Show	GitHub Exploit DB Packet Storm

258634	1.9	注意	レッドハット	-	Free Software Foundation Berkeley DB の NSS モジュールにおける情報漏えいの脆弱性	CWE-200 情報漏えい	CVE-2010-0826	2010-05-18 16:38	2010-04-5	Show	GitHub Exploit DB Packet Storm

258635	7.8	危険	日本電気	-	CapsSuite Small Edition PatchMeister におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-1943	2010-05-17 12:03	2010-05-17	Show	GitHub Exploit DB Packet Storm

258636	7.8	危険	日本電気	-	WebSAM DeploymentManager におけるサービス運用妨害 (DoS) の脆弱性	CWE-DesignError	CVE-2010-1941	2010-05-17 12:02	2010-05-17	Show	GitHub Exploit DB Packet Storm

258637	6.4	警告	富士通	-	Interstage Application Server におけるリクエスト処理に関する脆弱性	CWE-noinfo 情報不足	CVE-2010-1942	2010-05-17 12:01	2010-05-17	Show	GitHub Exploit DB Packet Storm

258638	2.1	注意	オラクル	-	Oracle Sun Product Suite の Sun Cluster コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0884	2010-05-14 18:43	2010-04-13	Show	GitHub Exploit DB Packet Storm

258639	2.1	注意	オラクル	-	Oracle Sun Product Suite の Sun Cluster コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0883	2010-05-14 18:43	2010-04-13	Show	GitHub Exploit DB Packet Storm

258640	2.1	注意	サン・マイクロシステムズオラクル	-	Oracle Sun Product Suite の Solaris コンポーネントにおける脆弱性	CWE-noinfo 情報不足	CVE-2010-0890	2010-05-14 18:42	2010-04-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195581	9.1	CRITICAL Network	lumis	lumis_experience_platform	LumisXP (aka Lumis Experience Platform) before 10.0.0 allows unauthenticated blind XXE via an API request to PageControllerXml.jsp. One can send a request crafted with an XXE payload and achieve outc…	CWE-611 XXE	CVE-2021-27931	2024-11-21 14:58	2021-03-4	Show	GitHub Exploit DB Packet Storm

195582	4.4	MEDIUM Local	bigprof	online_invoicing_system	A CSV injection vulnerability found in Online Invoicing System (OIS) 4.3 and below can be exploited by users to perform malicious actions such as redirecting admins to unknown or harmful websites, or…	CWE-1236 Improper Neutralization of Formula Elements in a CSV File	CVE-2021-27839	2024-11-21 14:58	2021-03-4	Show	GitHub Exploit DB Packet Storm

195583	8.8	HIGH Network	zabbix	zabbix	In Zabbix from 4.0.x before 4.0.28rc1, 5.0.0alpha1 before 5.0.10rc1, 5.2.x before 5.2.6rc1, and 5.4.0alpha1 before 5.4.0beta2, the CControllerAuthenticationUpdate controller lacks a CSRF protection m…	CWE-352 Origin Validation Error	CVE-2021-27927	2024-11-21 14:58	2021-03-4	Show	GitHub Exploit DB Packet Storm

195584	7.5	HIGH Network	python fedoraproject	pillow fedora	Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICO container, and thus an attempt…	CWE-20 Improper Input Validation	CVE-2021-27923	2024-11-21 14:58	2021-03-3	Show	GitHub Exploit DB Packet Storm

195585	7.5	HIGH Network	python fedoraproject	pillow fedora	Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for an ICNS container, and thus an attemp…	CWE-20 Improper Input Validation	CVE-2021-27922	2024-11-21 14:58	2021-03-3	Show	GitHub Exploit DB Packet Storm

195586	7.5	HIGH Network	python fedoraproject	pillow fedora	Pillow before 8.1.1 allows attackers to cause a denial of service (memory consumption) because the reported size of a contained image is not properly checked for a BLP container, and thus an attempte…	CWE-20 Improper Input Validation	CVE-2021-27921	2024-11-21 14:58	2021-03-3	Show	GitHub Exploit DB Packet Storm

195587	8.8	HIGH Network	e107	e107	usersettings.php in e107 through 2.3.0 lacks a certain e_TOKEN protection mechanism.	CWE-352 Origin Validation Error	CVE-2021-27885	2024-11-21 14:58	2021-03-3	Show	GitHub Exploit DB Packet Storm

195588	5.5	MEDIUM Local	misp	misp	An issue was discovered in app/Model/SharingGroupServer.php in MISP 2.4.139. In the implementation of Sharing Groups, the "all org" flag sometimes provided view access to unintended actors.	NVD-CWE-noinfo	CVE-2021-27904	2024-11-21 14:58	2021-03-2	Show	GitHub Exploit DB Packet Storm

195589	6.8	MEDIUM Physics	google	android	An issue was discovered on LG mobile devices with Android OS 11 software. They mishandle fingerprint recognition because local high beam mode (LHBM) does not function properly during bright illuminat…	NVD-CWE-noinfo	CVE-2021-27901	2024-11-21 14:58	2021-03-2	Show	GitHub Exploit DB Packet Storm

195590	9.8	CRITICAL Network	accellion	fta	Accellion FTA 9_12_432 and earlier is affected by argument injection via a crafted POST request to an admin endpoint. The fixed version is FTA_9_12_444 and later.	CWE-74 Injection	CVE-2021-27730	2024-11-21 14:58	2021-03-2	Show	GitHub Exploit DB Packet Storm