Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 26, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
561 7.2 危険 dec DEC OpenVMS decのDEC OpenVMSにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1395 2026-06-23 11:22 1992-11-17 Show GitHub Exploit DB Packet Storm
562 4.6 警告 digital Ultrix digitalのUltrixにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1415 2026-06-23 11:22 1991-08-23 Show GitHub Exploit DB Packet Storm
563 7.2 危険 NeXT NeXT
NeXTSTEP 		NeXTのNeXTSTEP等の複数製品における不特定の脆弱性 CWE-Other
その他 		CVE-1999-1392 2026-06-23 11:22 1990-10-3 Show GitHub Exploit DB Packet Storm
564 7.2 危険 NeXT NeXT NeXTにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1391 2026-06-23 11:22 1990-10-3 Show GitHub Exploit DB Packet Storm
565 4.6 警告 dec DEC OpenVMS decのDEC OpenVMSにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1315 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
566 7.2 危険 SCO UnixWare NovellのUnixWareにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1307 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
567 3.6 注意 Cray Inc. UNICOS Cray Inc.のUNICOSにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1300 2026-06-23 11:22 1999-12-31 Show GitHub Exploit DB Packet Storm
568 5.1 警告 シマンテック Norton Utilities シマンテックのNorton Utilitiesにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1380 2026-06-23 11:22 1997-05-4 Show GitHub Exploit DB Packet Storm
569 7.5 危険 FreeBSD FreeBSD FreeBSDにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-1298 2026-06-23 11:22 1997-04-7 Show GitHub Exploit DB Packet Storm
570 4.6 警告 tcsh
GNU Project		 tcsh
bash 		GNU Project等の複数ベンダの製品における認可・権限・アクセス制御に関する脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-1999-1383 2026-06-23 11:22 1996-09-13 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 27, 2026, 4:35 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191441 9.8 CRITICAL
Network 		trixie tx9_automatic_food_dispenser_firmware TX9 Automatic Food Dispenser v3.2.57 devices allow access to a shell as root/superuser, a related issue to CVE-2019-16734. To connect, the telnet service is used on port 23 with the default password … CWE-798
 Use of Hard-coded Credentials 		CVE-2021-37555 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191442 9.8 CRITICAL
Network 		naviwebs navigatecms In NavigateCMS version 2.9.4 and below, function `block` is vulnerable to sql injection on parameter `block-order`, which results in arbitrary sql query execution in the backend database. CWE-89
SQL Injection 		CVE-2021-37478 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191443 9.8 CRITICAL
Network 		naviwebs navigatecms In NavigateCMS version 2.9.4 and below, function in `structure.php` is vulnerable to sql injection on parameter `children_order`, which results in arbitrary sql query execution in the backend databas… CWE-89
SQL Injection 		CVE-2021-37477 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191444 9.8 CRITICAL
Network 		naviwebs navigatecms In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `id` through a post request, which results in arbitrary sql query execution in the backen… CWE-89
SQL Injection 		CVE-2021-37476 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191445 9.8 CRITICAL
Network 		naviwebs navigatecms In NavigateCMS version 2.9.4 and below, function in `templates.php` is vulnerable to sql injection on parameter `template-properties-order`, which results in arbitrary sql query execution in the back… CWE-89
SQL Injection 		CVE-2021-37475 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191446 9.8 CRITICAL
Network 		naviwebs navigatecms In NavigateCMS version 2.9.4 and below, function in `product.php` is vulnerable to sql injection on parameter `products-order` through a post request, which results in arbitrary sql query execution i… CWE-89
SQL Injection 		CVE-2021-37473 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191447 8.8 HIGH
Network 		rpcms rpcms In RPCMS v1.8 and below, attackers can interact with API and change variable "role" to "admin" to achieve admin user registration. NVD-CWE-Other
CVE-2021-37394 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191448 5.4 MEDIUM
Network 		rpcms rpcms In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. Attacker can use "update password" function to inject XSS payloads into nickname variable, a… CWE-79
Cross-site Scripting 		CVE-2021-37393 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191449 5.4 MEDIUM
Network 		rpcms rpcms In RPCMS v1.8 and below, the "nickname" variable is not properly sanitized before being displayed on page. When the API functions are enabled, the attacker can use API to update user nickname with XS… CWE-79
Cross-site Scripting 		CVE-2021-37392 2024-11-21 15:15 2021-07-27 Show GitHub Exploit DB Packet Storm
191450 5.4 MEDIUM
Network 		misp misp app/View/GalaxyClusters/add.ctp in MISP 2.4.146 allows Stored XSS when forking a galaxy cluster. CWE-79
Cross-site Scripting 		CVE-2021-37534 2024-11-21 15:15 2021-07-26 Show GitHub Exploit DB Packet Storm