Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 14, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
259181	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo32 コーデックの ir32_32.dll におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2009-4313	2010-01-25 11:53	2009-12-8	Show	GitHub Exploit DB Packet Storm

259182	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4312	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

259183	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおける任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2009-4311	2010-01-25 11:52	2009-12-8	Show	GitHub Exploit DB Packet Storm

259184	9.3	危険	マイクロソフト	-	Indeo コーデックに複数の脆弱性	CWE-119 バッファエラー	CVE-2009-4310	2010-01-25 11:52	2009-12-15	Show	GitHub Exploit DB Packet Storm

259185	9.3	危険	マイクロソフト	-	Microsoft Windows の Windows Media Player 用の Intel Indeo41 コーデックにおけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2009-4309	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

259186	9.3	危険	マイクロソフト	-	Microsoft Windows の Indeo コーデックにおけるサービス運用妨害 (DoS) の脆弱性	CWE-94 コード・インジェクション	CVE-2009-4210	2010-01-25 11:51	2009-12-8	Show	GitHub Exploit DB Packet Storm

259187	5	警告	アップルサイバートラスト株式会社 IPsec-Tools レッドハット	-	Ipsec-tools の証明書検証および NAT-Traversal におけるサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-1632	2010-01-25 11:48	2009-05-14	Show	GitHub Exploit DB Packet Storm

259188	4	警告	PostgreSQL.org サイバートラスト株式会社ターボリナックスサン・マイクロシステムズレッドハット	-	PostgreSQL のエラーメッセージの変換処理に関するサービス運用妨害 (DoS) の脆弱性	CWE-399 リソース管理の問題	CVE-2009-0922	2010-01-25 11:48	2009-03-17	Show	GitHub Exploit DB Packet Storm

259189	5.7	警告	日本電気インターネットイニシアティブヤマハ古河電気工業	-	IPv6 を実装した複数の製品にサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	-	2010-01-25 11:47	2009-10-26	Show	GitHub Exploit DB Packet Storm

259190	9.3	危険	マイクロソフト	-	複数の Microsoft 製品のテキストコンバーターにおける整数オーバーフローの脆弱性	CWE-94 コード・インジェクション	CVE-2009-2506	2010-01-22 10:27	2009-12-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 14, 2026, 4:12 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196631	9.8	CRITICAL Network	just-safe-set_project	just-safe-set	Prototype pollution vulnerability in ‘just-safe-set’ versions 1.0.0 through 2.2.1 allows an attacker to cause a denial of service and may lead to remote code execution.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-25952	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196632	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the imagelist view of com_media leads to a XSS vulnerability.	CWE-79 Cross-site Scripting	CVE-2021-26039	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196633	7.5	HIGH Network	joomla	joomla\!	An issue was discovered in Joomla! 2.5.0 through 3.9.27. Install action in com_installer lack the required hardcoded ACL checks for superusers. A default system is not affected cause the default ACL …	CWE-754 Improper Check for Unusual or Exceptional Conditions	CVE-2021-26038	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196634	5.3	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 2.5.0 through 3.9.27. CMS functions did not properly termine existing user sessions when a user's password was changed or the user was blocked.	CWE-613 Insufficient Session Expiration	CVE-2021-26037	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196635	7.5	HIGH Network	joomla	joomla\!	An issue was discovered in Joomla! 2.5.0 through 3.9.27. Missing validation of input could lead to a broken usergroups table.	CWE-20 Improper Input Validation	CVE-2021-26036	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196636	6.1	MEDIUM Network	joomla	joomla\!	An issue was discovered in Joomla! 3.0.0 through 3.9.27. Inadequate escaping in the rules field of the JForm API leads to a XSS vulnerability.	CWE-79 Cross-site Scripting	CVE-2021-26035	2024-11-21 14:55	2021-07-7	Show	GitHub Exploit DB Packet Storm

196637	7.5	HIGH Network	xml2dict_project	xml2dict	XXE vulnerability in 'XML2Dict' version 0.2.2 allows an attacker to cause a denial of service.	CWE-611 XXE	CVE-2021-25951	2024-11-21 14:55	2021-06-30	Show	GitHub Exploit DB Packet Storm

196638	7.8	HIGH Local	avaya	aura_device_services	An arbitrary code execution vulnerability was discovered in Avaya Aura Device Services that may potentially allow a local user to execute specially crafted scripts. Affects 7.0 through 8.1.4.0 versio…	NVD-CWE-noinfo	CVE-2021-25654	2024-11-21 14:55	2021-06-26	Show	GitHub Exploit DB Packet Storm

196639	8.1	HIGH Network	open-emr	openemr	In OpenEMR, versions 5.0.0 to 6.0.0.1 are vulnerable to weak password requirements as it does not enforce a maximum password length limit. If a malicious user is aware of the first 72 characters of t…	CWE-521 Weak Password Requirements	CVE-2021-25923	2024-11-21 14:55	2021-06-24	Show	GitHub Exploit DB Packet Storm

196640	5.4	MEDIUM Network	avaya	aura_experience_portal	Stored XSS injection vulnerabilities were discovered in the Avaya Aura Experience Portal Web management which could allow an authenticated user to potentially disclose sensitive information. Affected…	CWE-79 Cross-site Scripting	CVE-2021-25656	2024-11-21 14:55	2021-06-24	Show	GitHub Exploit DB Packet Storm