Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
258761 9.3 危険 マイクロソフト - Microsoft Windows の Web Services on Devices API (WSDAPI) における任意のコードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2009-2512 2010-01-4 15:23 2009-11-10 Show GitHub Exploit DB Packet Storm
258762 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2722 2010-01-4 14:56 2009-08-10 Show GitHub Exploit DB Packet Storm
258763 10 危険 アップル
VMware
サン・マイクロシステムズ		 - Sun Java SE の Provider クラスにおける詳細不明な脆弱性 CWE-noinfo
情報不足 		CVE-2009-2723 2010-01-4 14:55 2009-08-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194291 9.8 CRITICAL
Network 		lucysecurity security_awareness LUCY Security Awareness Software through 4.7.x allows unauthenticated remote code execution because the Migration Tool (in the Support section) allows upload of .php files within a system.tar.gz file… CWE-78
OS Command  		CVE-2021-28132 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194292 9.8 CRITICAL
Network 		clipper_project clipper Clipper before 1.0.5 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the dangerous openExternal AP… NVD-CWE-noinfo
CVE-2021-28134 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194293 9.8 CRITICAL
Network 		open5gs open5gs A request-validation issue was discovered in Open5GS 2.1.3 through 2.2.x before 2.2.1. The WebUI component allows an unauthenticated user to use a crafted HTTP API request to create, read, update, or… CWE-306
Missing Authentication for Critical Function 		CVE-2021-28122 2024-11-21 14:59 2021-03-11 Show GitHub Exploit DB Packet Storm
194294 9.8 CRITICAL
Network 		twinkletray twinkle_tray Twinkle Tray (aka twinkle-tray) through 1.13.3 allows remote command execution. A remote attacker may send a crafted IPC message to the exposed vulnerable ipcRenderer IPC interface, which invokes the… NVD-CWE-noinfo
CVE-2021-28119 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194295 5.3 MEDIUM
Network 		squid-cache
fedoraproject
debian 		squid
fedora
debian_linux 		Squid through 4.14 and 5.x through 5.0.5, in some configurations, allows information disclosure because of an out-of-bounds read in WCCP protocol data. This can be leveraged as part of a chain for re… CWE-125
Out-of-bounds Read 		CVE-2021-28116 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194296 6.1 MEDIUM
Network 		ougc_feedback_project ougc_feedback The OUGC Feedback plugin before 1.8.23 for MyBB allows XSS via the comment field of feedback during an edit operation. CWE-79
Cross-site Scripting 		CVE-2021-28115 2024-11-21 14:59 2021-03-10 Show GitHub Exploit DB Packet Storm
194297 7.8 HIGH
Local 		deutschepost mailoptimizer Deutsche Post Mailoptimizer 4.3 before 2020-11-09 allows Directory Traversal via a crafted ZIP archive to the Upload feature or the MO Connect component. This can lead to remote code execution. CWE-22
Path Traversal 		CVE-2021-28042 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194298 7.1 HIGH
Network 		openbsd
fedoraproject
netapp
oracle 		openssh
fedora
cloud_backup
solidfire
hci_management_node
hci_compute_node_firmware
hci_storage_node_firmware
zfs_storage_appliance
communications_offline_mediation_controller 		ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an … CWE-415
 Double Free 		CVE-2021-28041 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194299 7.5 HIGH
Network 		ossec ossec An issue was discovered in OSSEC 3.6.0. An uncontrolled recursion vulnerability in os_xml.c occurs when a large number of opening and closing XML tags is used. Because recursion is used in _ReadElem … CWE-674
 Uncontrolled Recursion 		CVE-2021-28040 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm
194300 6.5 MEDIUM
Local 		netapp cloud_backup
solidfire_baseboard_management_controller_firmware 		An issue was discovered in the Linux kernel 5.9.x through 5.11.3, as used with Xen. In some less-common configurations, an x86 PV guest OS user can crash a Dom0 or driver domain via a large amount of… CWE-131
Incorrect Calculation of Buffer Size 		CVE-2021-28039 2024-11-21 14:59 2021-03-6 Show GitHub Exploit DB Packet Storm