Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258711 5 警告 サイバートラスト株式会社
OpenSSL Project
IBM
レッドハット		 - OpenSSL の dtls1_buffer_record 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2009-1377 2010-03-12 14:43 2009-05-19 Show GitHub Exploit DB Packet Storm
258712 5 警告 アップル
サイバートラスト株式会社
OpenSSL Project
Apache Software Foundation
レッドハット		 - OpenSSL の zlib_stateful_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-1678 2010-03-12 14:43 2008-07-10 Show GitHub Exploit DB Packet Storm
258713 5.8 警告 OpenPNEプロジェクト - OpenPNE におけるアクセス制限回避の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2010-1040 2010-03-11 12:39 2010-03-5 Show GitHub Exploit DB Packet Storm
258714 10 危険 アドビシステムズ - Adobe Download Manager における任意のプログラムをダウンロードおよびインストールされる脆弱性 CWE-noinfo
情報不足 		CVE-2010-0189 2010-03-11 12:07 2010-02-23 Show GitHub Exploit DB Packet Storm
258715 7.2 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の collect_rx_frame 関数における脆弱性 CWE-119
バッファエラー 		CVE-2009-4005 2010-03-11 12:05 2009-11-20 Show GitHub Exploit DB Packet Storm
258716 7.8 危険 サイバートラスト株式会社
Linux
レッドハット		 - Linux kernel の RTL8169 NIC ドライバにおけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-1389 2010-03-11 12:04 2009-06-16 Show GitHub Exploit DB Packet Storm
258717 5 警告 サン・マイクロシステムズ
サイバートラスト株式会社
VMware
Net-SNMP
レッドハット		 - net-snmp の snmpd におけるサービス運用妨害 (DoS) の脆弱性 CWE-189
数値処理の問題 		CVE-2009-1887 2010-03-11 12:03 2009-06-25 Show GitHub Exploit DB Packet Storm
258718 7.1 危険 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0568 2010-03-10 11:23 2010-02-17 Show GitHub Exploit DB Packet Storm
258719 5 警告 シスコシステムズ - 複数の Cisco 製品におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0567 2010-03-10 11:23 2010-02-17 Show GitHub Exploit DB Packet Storm
258720 7.1 危険 シスコシステムズ - Cisco Adaptive Security Appliance におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2010-0566 2010-03-10 11:23 2010-02-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194351 9.8 CRITICAL
Network 		xerox altalink_b8045_firmware
altalink_b8055_firmware
altalink_b8065_firmware
altalink_b8075_firmware
altalink_b8090_firmware
altalink_c8030_firmware
altalink_c8035_firmware
altalink_c… 		Xerox AltaLink B80xx before 103.008.020.23120, C8030/C8035 before 103.001.020.23120, C8045/C8055 before 103.002.020.23120 and C8070 before 103.003.020.23120 has several SQL injection vulnerabilities. CWE-89
SQL Injection 		CVE-2021-28668 2024-11-21 15:00 2021-03-30 Show GitHub Exploit DB Packet Storm
194352 9.8 CRITICAL
Network 		xerox phaser_6510_firmware
workcentre_6515_firmware
versalink_b400_firmware
versalink_b405_firmware
versalink_b600_firmware
versalink_b610_firmware
versalink_b605_firmware
versalink_b6… 		Xerox Phaser 6510 before 64.61.23 and 64.59.11 (Bridge), WorkCentre 6515 before 65.61.23 and 65.59.11 (Bridge), VersaLink B400 before 37.61.23 and 37.59.01 (Bridge), B405 before 38.61.23 and 38.59.01… NVD-CWE-noinfo
CVE-2021-28673 2024-11-21 15:00 2021-03-30 Show GitHub Exploit DB Packet Storm
194353 9.1 CRITICAL
Network 		xerox altalink_b8045_firmware
altalink_b8055_firmware
altalink_b8065_firmware
altalink_b8075_firmware
altalink_b8090_firmware
altalink_c8030_firmware
altalink_c8035_firmware
altalink_c… 		Xerox AltaLink B8045/B8090 before 103.008.030.32000, C8030/C8035 before 103.001.030.32000, C8045/C8055 before 103.002.030.32000 and C8070 before 103.003.030.32000 allow unauthorized users, by leverag… NVD-CWE-noinfo
CVE-2021-28670 2024-11-21 15:00 2021-03-30 Show GitHub Exploit DB Packet Storm
194354 6.1 MEDIUM
Network 		sherlockim sherlockim Sherlock SherlockIM through 2021-03-29 allows Cross Site Scripting (XSS) by leveraging the api/Files/Attachment URI to attack help-desk staff via the chatbot feature. CWE-79
Cross-site Scripting 		CVE-2021-29267 2024-11-21 15:00 2021-03-30 Show GitHub Exploit DB Packet Storm
194355 7.5 HIGH
Network 		acexy wireless-n_wifi_repeater_firmware The /password.html page of the Web management interface of the Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) contains the administrator account password in plaintext. The page can be intercepte… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-28937 2024-11-21 15:00 2021-03-29 Show GitHub Exploit DB Packet Storm
194356 7.5 HIGH
Network 		acexy wireless-n_wifi_repeater_firmware The Acexy Wireless-N WiFi Repeater REV 1.0 (28.08.06.1) Web management administrator password can be changed by sending a specially crafted HTTP GET request. The administrator username has to be know… CWE-863
 Incorrect Authorization 		CVE-2021-28936 2024-11-21 15:00 2021-03-29 Show GitHub Exploit DB Packet Storm
194357 6.1 MEDIUM
Network 		redmine redmine Redmine 4.1.x before 4.1.2 allows XSS because an issue's subject is mishandled in the auto complete tip. CWE-79
Cross-site Scripting 		CVE-2021-29274 2024-11-21 15:00 2021-03-29 Show GitHub Exploit DB Packet Storm
194358 6.1 MEDIUM
Network 		microco bluemonday bluemonday before 1.0.5 allows XSS because certain Go lowercasing converts an uppercase Cyrillic character, defeating a protection mechanism against the "script" string. CWE-79
Cross-site Scripting 		CVE-2021-29272 2024-11-21 15:00 2021-03-28 Show GitHub Exploit DB Packet Storm
194359 6.1 MEDIUM
Network 		remark42 remark42 remark42 before 1.6.1 allows XSS, as demonstrated by "Locator: Locator{URL:" followed by an XSS payload. This is related to backend/app/store/comment.go and backend/app/store/service/service.go. CWE-79
Cross-site Scripting 		CVE-2021-29271 2024-11-21 15:00 2021-03-28 Show GitHub Exploit DB Packet Storm
194360 7.5 HIGH
Network 		btcpayserver btcpay_server BTCPay Server before 1.0.6.0, when the payment button is used, has a privacy vulnerability. NVD-CWE-noinfo
CVE-2021-29249 2024-11-21 15:00 2021-03-27 Show GitHub Exploit DB Packet Storm