Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258711 9.3 危険 マイクロソフト - Microsoft Windows の Media Services におけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-0478 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
258712 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0477 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
258713 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0476 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
258714 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0270 2010-05-10 19:10 2010-04-13 Show GitHub Exploit DB Packet Storm
258715 10 危険 マイクロソフト - Microsoft Windows の SMB クライアントにおける任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2010-0269 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
258716 9.3 危険 マイクロソフト - Microsoft Windows の Cabinet File Viewer Shell Extension における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0487 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
258717 9.3 危険 マイクロソフト - Microsoft Windows の Authenticode Signature Verification における任意のコードを実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2010-0486 2010-05-10 19:09 2010-04-13 Show GitHub Exploit DB Packet Storm
258718 4.7 警告 サイバートラスト株式会社
Linux
レッドハット		 - x86_64 および amd64 プラットフォーム上 Linux Kernel におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-4271 2010-05-10 18:25 2010-03-16 Show GitHub Exploit DB Packet Storm
258719 5 警告 VMware - VMware Authorization Service の VMware Authentication Daemon におけるサービス運用妨害 (DoS) の脆弱性 CWE-134
書式文字列の問題 		CVE-2009-3707 2010-05-7 17:26 2009-10-16 Show GitHub Exploit DB Packet Storm
258720 9.3 危険 VMware - VMnc メディアコーデックおよびムービーデコーダにおける任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2009-1565 2010-05-7 17:26 2010-04-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196021 7.8 HIGH
Local 		htmldoc_project
redhat
fedoraproject 		htmldoc
enterprise_linux
fedora 		A flaw was found in htmldoc in v1.9.12. Heap buffer overflow in pspdf_prepare_page(),in ps-pdf.cxx may lead to execute arbitrary code and denial of service. CWE-787
 Out-of-bounds Write 		CVE-2021-26252 2024-11-21 14:55 2022-02-25 Show GitHub Exploit DB Packet Storm
196022 7.5 HIGH
Network 		libreoffice
fedoraproject 		libreoffice
fedora 		LibreOffice supports digital signatures of ODF documents and macros within documents, presenting visual aids that no alteration of the document occurred since the last signing and that the signature … CWE-295
Improper Certificate Validation  		CVE-2021-25636 2024-11-21 14:55 2022-02-25 Show GitHub Exploit DB Packet Storm
196023 6.1 MEDIUM
Network 		fortinet fortiproxy
fortios 		Failure to sanitize input in the SSL VPN web portal of FortiOS 5.2.10 through 5.2.15, 5.4.0 through 5.4.13, 5.6.0 through 5.6.14, 6.0.0 through 6.0.12, 6.2.0 through 6.2.7, 6.4.0 through 6.4.4; and F… CWE-79
Cross-site Scripting 		CVE-2021-26092 2024-11-21 14:55 2022-02-24 Show GitHub Exploit DB Packet Storm
196024 6.1 MEDIUM
Network 		ays-pro survey_maker Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability discovered in Survey Maker WordPress plugin (versions <= 2.0.6). CWE-79
Cross-site Scripting 		CVE-2021-26256 2024-11-21 14:55 2022-02-22 Show GitHub Exploit DB Packet Storm
196025 9.8 CRITICAL
Network 		if-me ifme In Ifme, versions 1.0.0 to v.7.33.2 don’t properly invalidate a user’s session even after the user initiated logout. It makes it possible for an attacker to reuse the admin cookies either via local/n… - CVE-2021-25992 2024-11-21 14:55 2022-02-10 Show GitHub Exploit DB Packet Storm
196026 2.7 LOW
Network 		arangodb arangodb In ArangoDB, versions v3.7.0 through v3.9.0-alpha.1 have a feature which allows downloading a Foxx service from a publicly available URL. This feature does not enforce proper filtering of requests pe… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-25939 2024-11-21 14:55 2022-02-9 Show GitHub Exploit DB Packet Storm
196027 6.1 MEDIUM
Network 		cacti cacti As an unauthenticated remote user, visit "http://<CACTI_SERVER>/auth_changepassword.php?ref=<script>alert(1)</script>" to successfully execute the JavaScript payload present in the "ref" URL paramete… CWE-79
Cross-site Scripting 		CVE-2021-26247 2024-11-21 14:55 2022-01-20 Show GitHub Exploit DB Packet Storm
196028 3.0 LOW
Network 		kubernetes kubernetes kubectl does not neutralize escape, meta or control sequences contained in the raw data it outputs to a terminal. This includes but is not limited to the unstructured string fields in objects such as… NVD-CWE-Other
CVE-2021-25743 2024-11-21 14:55 2022-01-7 Show GitHub Exploit DB Packet Storm
196029 8.8 HIGH
Network 		userfrosting userfrosting In Userfrosting, versions v0.3.1 to v4.6.2 are vulnerable to Host Header Injection. By luring a victim application user to click on a link, an unauthenticated attacker can use the “forgot password” f… CWE-74
Injection 		CVE-2021-25994 2024-11-21 14:55 2022-01-3 Show GitHub Exploit DB Packet Storm
196030 9.8 CRITICAL
Network 		talkyard talkyard In Talkyard, regular versions v0.2021.20 through v0.2021.33 and dev versions v0.2021.20 through v0.2021.34, are vulnerable to Insufficient Session Expiration. This may allow an attacker to reuse the … CWE-613
 Insufficient Session Expiration 		CVE-2021-25981 2024-11-21 14:55 2022-01-3 Show GitHub Exploit DB Packet Storm