Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 27, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
531 5 警告 BB4 Big Brother BB4のBig Brotherにおける情報漏えいに関する脆弱性 CWE-200
情報漏えい 		CVE-1999-1462 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
532 7.2 危険 digital unix digitalのunixにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1458 2026-06-23 11:22 1999-01-25 Show GitHub Exploit DB Packet Storm
533 5 警告 thttpd thttpd HTTP server thttpdのthttpd HTTP serverにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1456 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
534 7.2 危険 BMC Software Patrol Agent BMC SoftwareのPatrol Agentにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1459 2026-06-23 11:22 1998-11-2 Show GitHub Exploit DB Packet Storm
535 4.6 警告 SVGALib SVGALib SVGALibにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1483 2026-06-23 11:22 1997-06-19 Show GitHub Exploit DB Packet Storm
536 7.2 危険 SGI IRIX SGIのIRIXにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1461 2026-06-23 11:22 1997-05-7 Show GitHub Exploit DB Packet Storm
537 2.1 注意 サン・マイクロシステムズ Solaris サン・マイクロシステムズのSolarisにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1449 2026-06-23 11:22 1997-05-19 Show GitHub Exploit DB Packet Storm
538 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1428 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
539 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1427 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
540 6.2 警告 サン・マイクロシステムズ Solstice AdminSuite サン・マイクロシステムズのSolstice AdminSuiteにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1426 2026-06-23 11:22 1997-11-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
190741 6.1 MEDIUM
Network 		yclas yclas Static (Persistent) XSS Vulnerability exists in version 4.3.0 of Yclas when using the install/view/form.php script. An attacker can store XSS in the database through the vulnerable SITE_NAME paramete… CWE-79
Cross-site Scripting 		CVE-2021-38710 2024-11-21 15:17 2021-08-19 Show GitHub Exploit DB Packet Storm
190742 6.1 MEDIUM
Network 		cyberoamworks netgenie_c0101b1-20141120-ng11vo_firmware Cyberoam NetGenie C0101B1-20141120-NG11VO devices through 2021-08-14 allow tweb/ft.php?u=[XSS] attacks. CWE-79
Cross-site Scripting 		CVE-2021-38702 2024-11-21 15:17 2021-08-18 Show GitHub Exploit DB Packet Storm
190743 7.8 HIGH
Local 		tranquil wapt Incorrect Access Control in Tranquil WAPT Enterprise - before 1.8.2.7373 and before 2.0.0.9450 allows guest OS users to escalate privileges via WAPT Agent. NVD-CWE-Other
CVE-2021-38608 2024-11-21 15:17 2021-08-17 Show GitHub Exploit DB Packet Storm
190744 5.4 MEDIUM
Network 		crocoblock jetengine Crocoblock JetEngine before 2.6.1 allows XSS by remote authenticated users via a custom form input. CWE-79
Cross-site Scripting 		CVE-2021-38607 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190745 5.4 MEDIUM
Network 		imgurl_project imgurl imgURL 2.31 allows XSS via an X-Forwarded-For HTTP header. CWE-79
Cross-site Scripting 		CVE-2021-38713 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190746 7.5 HIGH
Network 		onenav onenav OneNav 0.9.12 allows Information Disclosure of the onenav.db3 contents. NOTE: the vendor's recommended solution is to block the access via an NGINX configuration file. CWE-668
 Exposure of Resource to Wrong Sphere 		CVE-2021-38712 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190747 7.5 HIGH
Network 		gitit_project gitit In gitit before 0.15.0.0, the Export feature can be exploited to leak information from files. CWE-552
 Files or Directories Accessible to External Parties 		CVE-2021-38711 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190748 6.1 MEDIUM
Network 		compo composr_cms In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via the staff_messaging messaging system for XSS. CWE-79
Cross-site Scripting 		CVE-2021-38709 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190749 5.4 MEDIUM
Network 		compo composr_cms In ocProducts Composr CMS before 10.0.38, an attacker can inject JavaScript via Comcode for XSS. CWE-79
Cross-site Scripting 		CVE-2021-38708 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm
190750 5.4 MEDIUM
Network 		tastyigniter tastyigniter TastyIgniter 3.0.7 allows XSS via /account, /reservation, /admin/dashboard, and /admin/system_logs. CWE-79
Cross-site Scripting 		CVE-2021-38699 2024-11-21 15:17 2021-08-16 Show GitHub Exploit DB Packet Storm