Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
831	5	警告	WebCom	Guestbook CGI	WebComのGuestbook CGIにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0467	2026-06-23 11:22	1999-04-1	Show	GitHub Exploit DB Packet Storm

832	2.1	注意	L0pht	L0phtCrack	L0phtのL0phtCrackにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0458	2026-06-23 11:22	1999-01-6	Show	GitHub Exploit DB Packet Storm

833	7.5	危険	allaire	ColdFusion Server	allaireのColdFusion Serverにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0455	2026-06-23 11:22	1999-12-25	Show	GitHub Exploit DB Packet Storm

834	5	警告	ramp networks	WebRamp	ramp networksのWebRampにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0437	2026-06-23 11:22	1999-03-1	Show	GitHub Exploit DB Packet Storm

835	4.6	警告	レッドハット Slackware SUSE X.Org Foundation NetBSD	Slackware Linux Red Hat Linux SUSE LINUX x11r6 NetBSD	NetBSD等の複数ベンダの製品における不特定の脆弱性	CWE-Other その他	CVE-1999-0433	2026-06-23 11:22	1999-03-21	Show	GitHub Exploit DB Packet Storm

836	7.2	危険	NetBSD	umapfs	NetBSDのumapfsにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0420	2026-06-23 11:22	1999-03-17	Show	GitHub Exploit DB Packet Storm

837	10	危険	サン・マイクロシステムズ	Cobalt RaQ	サン・マイクロシステムズのCobalt RaQにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0408	2026-06-23 11:22	1999-02-25	Show	GitHub Exploit DB Packet Storm

838	7.5	危険	SmartMax Software	MailMax	SmartMax SoftwareのMailMaxにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0404	2026-06-23 11:22	1999-02-14	Show	GitHub Exploit DB Packet Storm

839	5	警告	Allwinner Technology Co. Ltd.	Linux	cyrixのLinuxにおける不特定の脆弱性	CWE-Other その他	CVE-1999-0403	2026-06-23 11:22	1999-02-1	Show	GitHub Exploit DB Packet Storm

840	4.6	警告	SSH コミュニケーションズ・セキュリティ ssh2 project	SSH daemon ssh2	SSH コミュニケーションズ・セキュリティのSSH2等の複数製品における不特定の脆弱性	CWE-Other その他	CVE-1999-0398	2026-06-23 11:22	1999-01-1	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 29, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
191071	5.4	MEDIUM Network	open-xchange	ox_app_suite	OX App Suite through through 7.10.5 allows XSS via a crafted snippet that has an app loader reference within an app loader URL.	CWE-79 Cross-site Scripting	CVE-2021-38374	2024-11-21 15:16	2021-11-22	Show	GitHub Exploit DB Packet Storm

191072	7.5	HIGH Network	wipro	holmes	The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote attackers to read arbitrary files via absolute path traversal in the SearchString JSON field in /home/downl…	CWE-22 Path Traversal	CVE-2021-38146	2024-11-21 15:16	2021-11-22	Show	GitHub Exploit DB Packet Storm

191073	2.7	LOW Network	elastic	kibana	It was discovered that Kibana’s JIRA connector & IBM Resilient connector could be used to return HTTP response data on internal hosts, which may be intentionally hidden from public view. Using this v…	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-37939	2024-11-21 15:16	2021-11-19	Show	GitHub Exploit DB Packet Storm

191074	4.3	MEDIUM Network	elastic	kibana	It was discovered that on Windows operating systems specifically, Kibana was not validating a user supplied path, which would load .pbf files. Because of this, a malicious user could arbitrarily trav…	CWE-22 Path Traversal	CVE-2021-37938	2024-11-21 15:16	2021-11-19	Show	GitHub Exploit DB Packet Storm

191075	5.3	MEDIUM Network	asus	gt-axe11000_firmware rt-ax3000_firmware rt-ax55_firmware rt-ax58u_firmware tuf-ax3000_firmware	ASUS routers Wi-Fi protected access protocol (WPA2 and WPA3-SAE) has improper control of Interaction frequency vulnerability, an unauthenticated attacker can remotely disconnect other users' connecti…	-	CVE-2021-37910	2024-11-21 15:16	2021-11-12	Show	GitHub Exploit DB Packet Storm

191076	8.1	HIGH Network	apache debian	traffic_server debian_linux	Improper Authentication vulnerability in TLS origin verification of Apache Traffic Server allows for man in the middle attacks. This issue affects Apache Traffic Server 8.0.0 to 8.0.8.	CWE-287 Improper Authentication	CVE-2021-38161	2024-11-21 15:16	2021-11-4	Show	GitHub Exploit DB Packet Storm

191077	5.5	MEDIUM Local	google debian	chrome debian_linux	Insufficient validation of untrusted input Downloads in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a malicious file.	CWE-20 Improper Input Validation	CVE-2021-37996	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

191078	6.5	MEDIUM Network	google debian	chrome debian_linux	Inappropriate implementation in WebApp Installer in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially overlay and spoof the contents of the Omnibox (URL bar) via a crafted …	NVD-CWE-noinfo	CVE-2021-37995	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

191079	6.5	MEDIUM Network	google debian	chrome debian_linux	Inappropriate implementation in iFrame Sandbox in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to bypass navigation restrictions via a crafted HTML page.	NVD-CWE-noinfo	CVE-2021-37994	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

191080	8.8	HIGH Network	google debian	chrome debian_linux	Use after free in PDF Accessibility in Google Chrome prior to 95.0.4638.54 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page.	CWE-416 Use After Free	CVE-2021-37993	2024-11-21 15:16	2021-11-3	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed