Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258691 7.1 危険 オラクル - Oracle Database の Core RDBMS コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0860 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258692 7.5 危険 オラクル - 複数の Oracle 製品の Oracle Internet Directory コンポーネントにおける脆弱性 CWE-noinfo
情報不足 		CVE-2010-0853 2010-05-12 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258693 2.6 注意 シックス・アパート株式会社 - Movable Type におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2010-1985 2010-05-12 12:01 2010-05-12 Show GitHub Exploit DB Packet Storm
258694 10 危険 日立 - 複数の EUR Form 製品 および EUR 製品における任意のコードが実行される脆弱性 CWE-noinfo
情報不足 		- 2010-05-11 15:16 2010-03-31 Show GitHub Exploit DB Packet Storm
258695 6.4 警告 マイクロソフト - Microsoft Windows における ISATAP パケットの処理に関する IPv4 ソースアドレスの制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-0812 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258696 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0256 2010-05-11 15:16 2010-04-13 Show GitHub Exploit DB Packet Storm
258697 7.6 危険 マイクロソフト - Microsoft Office Visio における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2010-0254 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258698 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおける情報漏えいの脆弱性 CWE-200
情報漏えい 		CVE-2010-0025 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258699 5 警告 マイクロソフト - Microsoft Windows の SMTP コンポーネントにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0024 2010-05-11 15:15 2010-04-13 Show GitHub Exploit DB Packet Storm
258700 9.3 危険 マイクロソフト - Microsoft Office Publisher におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0479 2010-05-11 15:14 2010-04-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196691 9.1 CRITICAL
Network 		moxa vport_06ec-2v26m_firmware
vport_06ec-2v36m-t_firmware
vport_06ec-2v36m-ct_firmware
vport_06ec-2v36m-ct-t_firmware
vport_06ec-2v42m_firmware
vport_06ec-2v42m-t_firmware
vport_06ec-2v… 		Improper validation of the length field of LLDP-MED TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows information disclosure to attackers due to controllable loop c… CWE-125
Out-of-bounds Read 		CVE-2021-25847 2024-11-21 14:55 2021-05-10 Show GitHub Exploit DB Packet Storm
196692 7.5 HIGH
Network 		moxa vport_06ec-2v26m_firmware
vport_06ec-2v36m-t_firmware
vport_06ec-2v36m-ct_firmware
vport_06ec-2v36m-ct-t_firmware
vport_06ec-2v42m_firmware
vport_06ec-2v42m-t_firmware
vport_06ec-2v… 		Improper validation of the ChassisID TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a negative number passed to the… CWE-191
 Integer Underflow (Wrap or Wraparound) 		CVE-2021-25846 2024-11-21 14:55 2021-05-10 Show GitHub Exploit DB Packet Storm
196693 7.5 HIGH
Network 		moxa vport_06ec-2v26m_firmware
vport_06ec-2v36m-t_firmware
vport_06ec-2v36m-ct_firmware
vport_06ec-2v36m-ct-t_firmware
vport_06ec-2v42m_firmware
vport_06ec-2v42m-t_firmware
vport_06ec-2v… 		Improper validation of the ChassisID TLV in userdisk/vport_lldpd in Moxa Camera VPort 06EC-2V Series, version 1.1, allows attackers to cause a denial of service due to a NULL pointer dereference via … CWE-476
 NULL Pointer Dereference 		CVE-2021-25845 2024-11-21 14:55 2021-05-10 Show GitHub Exploit DB Packet Storm
196694 8.8 HIGH
Network 		atlassian connect_spring_boot Broken Authentication in Atlassian Connect Spring Boot (ACSB) in version 1.1.0 before 2.1.3 and from version 2.1.4 before 2.1.5: Atlassian Connect Spring Boot is a Java Spring Boot package for buildi… CWE-287
Improper Authentication 		CVE-2021-26077 2024-11-21 14:55 2021-05-10 Show GitHub Exploit DB Packet Storm
196695 6.1 MEDIUM
Network 		livinglogic xist4c LivingLogic XIST4C before 0.107.8 allows XSS via login.htm, login.wihtm, or login-form.htm. CWE-79
Cross-site Scripting 		CVE-2021-26123 2024-11-21 14:55 2021-05-7 Show GitHub Exploit DB Packet Storm
196696 6.1 MEDIUM
Network 		livinglogic xist4c LivingLogic XIST4C before 0.107.8 allows XSS via feedback.htm or feedback.wihtm. CWE-79
Cross-site Scripting 		CVE-2021-26122 2024-11-21 14:55 2021-05-7 Show GitHub Exploit DB Packet Storm
196697 8.8 HIGH
Network 		libreoffice libreoffice In the LibreOffice 7-1 series in versions prior to 7.1.2, and in the 7-0 series in versions prior to 7.0.5, the denylist can be circumvented by manipulating the link so it doesn't match the denylist … NVD-CWE-Other
CVE-2021-25631 2024-11-21 14:55 2021-05-3 Show GitHub Exploit DB Packet Storm
196698 9.8 CRITICAL
Network 		chinamobile an_lianbao_wf-1_firmware Command injection vulnerability in China Mobile An Lianbao WF-1 1.01 via the 'ip' parameter with a POST request to /api/ZRQos/set_online_client. CWE-77
Command Injection 		CVE-2021-25812 2024-11-21 14:55 2021-04-30 Show GitHub Exploit DB Packet Storm
196699 7.5 HIGH
Network 		mercusys mercury_x18g_firmware MERCUSYS Mercury X18G 1.0.5 devices allow Denial of service via a crafted value to the POST listen_http_lan parameter. Upon subsequent device restarts after this vulnerability is exploted the device … NVD-CWE-noinfo
CVE-2021-25811 2024-11-21 14:55 2021-04-30 Show GitHub Exploit DB Packet Storm
196700 6.1 MEDIUM
Network 		mercusys mercury_x18g_firmware Cross site Scripting (XSS) vulnerability in MERCUSYS Mercury X18G 1.0.5 devices, via crafted values to the 'src_dport_start', 'src_dport_end', and 'dest_port' parameters. CWE-79
Cross-site Scripting 		CVE-2021-25810 2024-11-21 14:55 2021-04-30 Show GitHub Exploit DB Packet Storm