Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
260471	7.5	危険	シスコシステムズ	-	Cisco Content Services Switch における HTTP Request Smuggling 攻撃の脆弱性	CWE-20 不適切な入力確認	CVE-2010-1576	2010-07-27 17:29	2010-07-2	Show	GitHub Exploit DB Packet Storm

260472	7.5	危険	シスコシステムズ	-	Cisco Content Services Switch における認証を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2010-1575	2010-07-27 17:28	2010-07-2	Show	GitHub Exploit DB Packet Storm

260473	6.8	警告	サイバートラスト株式会社 The Perl Foundation レッドハット	-	Perl の Archive::Tar モジュールにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2007-4829	2010-07-26 18:29	2007-11-2	Show	GitHub Exploit DB Packet Storm

260474	9.3	危険	マイクロソフト	-	Microsoft Windows Help and Support Center に脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2010-1885	2010-07-23 18:55	2010-06-10	Show	GitHub Exploit DB Packet Storm

260475	4.9	警告	マイクロソフト	-	Microsoft Windows の Canonical Display Driver における任意のコードを実行される脆弱性	CWE-DesignError	CVE-2009-3678	2010-07-23 18:55	2010-05-14	Show	GitHub Exploit DB Packet Storm

260476	9.3	危険	サン・マイクロシステムズレッドハットリアルネットワークス	-	Realnetworks RealPlayer における ASM RuleBook の処理に関する脆弱性	CWE-119 バッファエラー	CVE-2009-4247	2010-07-23 18:55	2010-01-19	Show	GitHub Exploit DB Packet Storm

260477	10	危険	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の LoginModule 実装における認証要求を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-4548	2010-07-22 20:51	2007-08-13	Show	GitHub Exploit DB Packet Storm

260478	5	警告	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の management EJB における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5085	2010-07-22 20:51	2007-09-6	Show	GitHub Exploit DB Packet Storm

260479	7.5	危険	サイバートラスト株式会社 Apache Software Foundation	-	Apache Geronimo の SQLLoginModule における認証を回避される脆弱性	CWE-287 不適切な認証	CVE-2007-5797	2010-07-22 20:51	2007-10-22	Show	GitHub Exploit DB Packet Storm

260480	6.8	警告	InterSect Alliance International Pty	-	Snare Agent の Web インターフェースにクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2010-2594	2010-07-22 20:51	2010-06-30	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199521	4.4	MEDIUM Local	google	android	Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_show_on_qspanel value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent denial…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-25474	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199522	4.4	MEDIUM Local	google	android	Assuming a shell privilege is gained, an improper exception handling for multi_sim_bar_hide_by_meadia_full value in SystemUI prior to SMR Oct-2021 Release 1 allows an attacker to cause a permanent de…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-25473	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199523	3.3	LOW Local	google	android	An improper access control vulnerability in BluetoothSettingsProvider prior to SMR Oct-2021 Release 1 allows untrusted application to overwrite some Bluetooth information.	NVD-CWE-Other	CVE-2021-25472	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199524	7.5	HIGH Network	google	android	A lack of replay attack protection in Security Mode Command process prior to SMR Oct-2021 Release 1 can lead to denial of service on mobile network connection and battery depletion.	NVD-CWE-noinfo	CVE-2021-25471	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199525	7.9	HIGH Local	google	android	An improper caller check logic of SMC call in TEEGRIS secure OS prior to SMR Oct-2021 Release 1 can be used to compromise TEE.	NVD-CWE-Other	CVE-2021-25470	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199526	6.7	MEDIUM Local	google	android	A possible stack-based buffer overflow vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows arbitrary code execution.	CWE-787 Out-of-bounds Write	CVE-2021-25469	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199527	4.4	MEDIUM Local	google	android	A possible guessing and confirming a byte memory vulnerability in Widevine trustlet prior to SMR Oct-2021 Release 1 allows attackers to read arbitrary memory address.	NVD-CWE-noinfo	CVE-2021-25468	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199528	6.7	MEDIUM Local	google	android	Assuming system privilege is gained, possible buffer overflow vulnerabilities in the Vision DSP kernel driver prior to SMR Oct-2021 Release 1 allows privilege escalation to Root by hijacking loaded l…	CWE-120 Classic Buffer Overflow	CVE-2021-25467	2024-11-21 14:55	2021-10-7	Show	GitHub Exploit DB Packet Storm

199529	5.4	MEDIUM Network	janeczku	calibre-web	In “Calibre-web” application, v0.6.0 to v0.6.12, are vulnerable to Stored XSS in “Metadata”. An attacker that has access to edit the metadata information, can inject JavaScript payload in the descrip…	CWE-79 Cross-site Scripting	CVE-2021-25964	2024-11-21 14:55	2021-10-5	Show	GitHub Exploit DB Packet Storm

199530	6.1	MEDIUM Network	shuup	shuup	In Shuup, versions 1.6.0 through 2.10.8 are vulnerable to reflected Cross-Site Scripting (XSS) that allows execution of arbitrary javascript code on a victim browser. This vulnerability exists due to…	CWE-79 Cross-site Scripting	CVE-2021-25963	2024-11-21 14:55	2021-09-30	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed