Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 24, 2026, 12:02 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
259321 5 警告 The PHP Group
アップル
ターボリナックス
レッドハット		 - PHP の JSON_parser 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-1271 2010-10-19 15:16 2009-04-8 Show GitHub Exploit DB Packet Storm
259322 7.5 危険 アップル
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - FreeType2 における一つずれエラーの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1808 2010-10-19 15:15 2008-06-17 Show GitHub Exploit DB Packet Storm
259323 7.5 危険 アップル
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - FreeType2 におけるメモリ破壊の脆弱性 CWE-189
数値処理の問題 		CVE-2008-1807 2010-10-19 15:15 2008-06-17 Show GitHub Exploit DB Packet Storm
259324 7.5 危険 アップル
サイバートラスト株式会社
ターボリナックス
サン・マイクロシステムズ
レッドハット		 - FreeType2 におけるヒープベースのバッファオーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2008-1806 2010-10-19 15:15 2008-06-17 Show GitHub Exploit DB Packet Storm
259325 2.6 注意 The PHP Group
サイバートラスト株式会社
ターボリナックス
レッドハット		 - PHP におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-5814 2010-10-19 15:14 2008-12-19 Show GitHub Exploit DB Packet Storm
259326 9.3 危険 Google - Google Chrome の Gears プラグインにおける任意のコードを実行される脆弱性 CWE-Other
その他 		CVE-2009-3932 2010-10-19 15:02 2009-11-5 Show GitHub Exploit DB Packet Storm
259327 4.3 警告 Google - Google Chrome の src/webkit/glue/webframeloaderclient_impl.cc におけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2009-3934 2010-10-19 15:02 2009-11-5 Show GitHub Exploit DB Packet Storm
259328 9.3 危険 Google - Google Chrome のブラックリストにおける危険なファイルのダウンロードを強制される脆弱性 CWE-20
不適切な入力確認 		CVE-2009-3931 2010-10-19 15:01 2009-11-5 Show GitHub Exploit DB Packet Storm
259329 7.5 危険 Google - Google Chrome における X.509 証明書の処理に関する任意の SSL サーバになりすまされる脆弱性 CWE-310
暗号の問題 		CVE-2009-3456 2010-10-19 15:01 2009-09-29 Show GitHub Exploit DB Packet Storm
259330 5 警告 Google - Google Chrome におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2008-7246 2010-10-19 15:01 2008-09-8 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200541 5.7 MEDIUM
Adjacent 		zte zxhn_h196q_firmware A ZTE product has an information leak vulnerability. An attacker with higher authority can go beyond their authority to access files in other directories by performing specific operations, resulting … CWE-863
 Incorrect Authorization 		CVE-2021-21725 2024-11-21 14:48 2021-03-6 Show GitHub Exploit DB Packet Storm
200542 4.8 MEDIUM
Network 		glpi-project glpi GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is an XSS vulnerab… - CVE-2021-21314 2024-11-21 14:48 2021-03-4 Show GitHub Exploit DB Packet Storm
200543 3.3 LOW
Local 		datadoghq datadog-api-client-java The Java client for the Datadog API before version 1.0.0-beta.9 has a local information disclosure of sensitive information downloaded via the API using the API Client. The Datadog API is executed on… NVD-CWE-Other
CVE-2021-21331 2024-11-21 14:48 2021-03-4 Show GitHub Exploit DB Packet Storm
200544 6.1 MEDIUM
Network 		glpi-project glpi GLPI is open source software which stands for Gestionnaire Libre de Parc Informatique and it is a Free Asset and IT Management Software package. In GLPI before verison 9.5.4, there is a vulnerability… CWE-79
Cross-site Scripting 		CVE-2021-21313 2024-11-21 14:48 2021-03-4 Show GitHub Exploit DB Packet Storm
200545 9.0 CRITICAL
Network 		pugjs pug
pug-code-gen 		Pug is an npm package which is a high-performance template engine. In pug before version 3.0.1, if a remote attacker was able to control the `pretty` option of the pug compiler, e.g. if you spread a … - CVE-2021-21353 2024-11-21 14:48 2021-03-3 Show GitHub Exploit DB Packet Storm
200546 9.1 CRITICAL
Network 		anuko time_tracker Anuko Time Tracker is an open source, web-based time tracking application written in PHP. In TimeTracker before version 1.19.24.5415 tokens used in password reset feature in Time Tracker are based on… - CVE-2021-21352 2024-11-21 14:48 2021-03-3 Show GitHub Exploit DB Packet Storm
200547 4.9 MEDIUM
Network 		dell openmanage_server_administrator Dell EMC OpenManage Server Administrator (OMSA) versions 9.5 and prior contain a path traversal vulnerability. A remote user with admin privileges could potentially exploit this vulnerability to view… CWE-22
Path Traversal 		CVE-2021-21514 2024-11-21 14:48 2021-03-3 Show GitHub Exploit DB Packet Storm
200548 9.8 CRITICAL
Network 		dell openmanage_server_administrator Dell EMC OpenManage Server Administrator (OMSA) version 9.5 Microsoft Windows installations with Distributed Web Server (DWS) enabled configuration contains an authentication bypass vulnerability. A … CWE-287
Improper Authentication 		CVE-2021-21513 2024-11-21 14:48 2021-03-3 Show GitHub Exploit DB Packet Storm
200549 9.8 CRITICAL
Network 		fastify-http-proxy_project fastify-http-proxy fastify-http-proxy is an npm package which is a fastify plugin for proxying your http requests to another server, with hooks. By crafting a specific URL, it is possible to escape the prefix of the pr… - CVE-2021-21322 2024-11-21 14:48 2021-03-2 Show GitHub Exploit DB Packet Storm
200550 10.0 CRITICAL
Network 		fastify-reply-from_project fastify-reply-from fastify-reply-from is an npm package which is a fastify plugin to forward the current http request to another server. In fastify-reply-from before version 4.0.2, by crafting a specific URL, it is pos… - CVE-2021-21321 2024-11-21 14:48 2021-03-2 Show GitHub Exploit DB Packet Storm