Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 29, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
841 5 警告 Sendmail Consortium sendmail Eric Allmanのsendmailにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0393 2026-06-23 11:22 1999-01-1 Show GitHub Exploit DB Packet Storm
842 5 警告 Thomas Boutell cgic Library Thomas Boutellのcgic Libraryにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0392 2026-06-23 11:22 1999-01-10 Show GitHub Exploit DB Packet Storm
843 4.6 警告 DataLynx suGuard DataLynxのsuGuardにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0388 2026-06-23 11:22 1999-01-1 Show GitHub Exploit DB Packet Storm
844 7.5 危険 ACC Comunicacion Tigris ACC ComunicacionのTigrisにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0383 2026-06-23 11:22 1999-02-2 Show GitHub Exploit DB Packet Storm
845 4.6 警告 seattlelab slmail seattle lab softwareのSLmailにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0380 2026-06-23 11:22 1999-02-25 Show GitHub Exploit DB Packet Storm
846 5 警告 L0pht L0phtCrack L0phtのL0phtCrackにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0463 2026-06-23 11:22 1998-12-1 Show GitHub Exploit DB Packet Storm
847 7.5 危険 Marc Schaefer ptylogin Marc Schaeferのptyloginにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0359 2026-06-23 11:22 2001-03-12 Show GitHub Exploit DB Packet Storm
848 7.5 危険 Network Flight Recorder Network Flight Recorder Network Flight Recorderにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0375 2026-06-23 11:22 1999-02-16 Show GitHub Exploit DB Packet Storm
849 1.2 注意 Pan Thomakos Lynx University of KansasのLynxにおける不特定の脆弱性 CWE-Other
その他 		CVE-1999-0371 2026-06-23 11:22 1999-02-11 Show GitHub Exploit DB Packet Storm
850 7.5 危険 Sendmail Consortium
MetaInfo		 MetaIP
sendmail 		MetaInfoのMetaIP等の複数製品における不特定の脆弱性 CWE-Other
その他 		CVE-1999-0365 2026-06-23 11:22 1999-02-4 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 30, 2026, 4:22 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
191071 6.5 MEDIUM
Network 		thedaylightstudio fuel_cms FUEL CMS 1.5.0 login.php contains a cross-site request forgery (CSRF) vulnerability CWE-352
 Origin Validation Error 		CVE-2021-38721 2024-11-21 15:17 2021-09-10 Show GitHub Exploit DB Packet Storm
191072 9.8 CRITICAL
Network 		apache airflow The variable import endpoint was not protected by authentication in Airflow >=2.0.0, <2.1.3. This allowed unauthenticated users to hit that endpoint to add/modify Airflow variables used in DAGs, pote… CWE-306
Missing Authentication for Critical Function 		CVE-2021-38540 2024-11-21 15:17 2021-09-10 Show GitHub Exploit DB Packet Storm
191073 9.8 CRITICAL
Network 		advantech webaccess A stack-based buffer overflow vulnerability in Advantech WebAccess Versions 9.02 and prior caused by a lack of proper validation of the length of user-supplied data may allow remote code execution. - CVE-2021-38408 2024-11-21 15:17 2021-09-9 Show GitHub Exploit DB Packet Storm
191074 5.4 MEDIUM
Network 		cliniccases cliniccases Persistent cross-site scripting (XSS) vulnerabilities in ClinicCases 7.3.3 allow low-privileged attackers to introduce arbitrary JavaScript to account parameters. The XSS payloads will execute in the… CWE-79
Cross-site Scripting 		CVE-2021-38707 2024-11-21 15:17 2021-09-8 Show GitHub Exploit DB Packet Storm
191075 8.8 HIGH
Network 		cliniccases cliniccases messages_load.php in ClinicCases 7.3.3 suffers from a blind SQL injection vulnerability, which allows low-privileged attackers to execute arbitrary SQL commands through a vulnerable parameter. CWE-89
SQL Injection 		CVE-2021-38706 2024-11-21 15:17 2021-09-8 Show GitHub Exploit DB Packet Storm
191076 8.8 HIGH
Network 		cliniccases cliniccases ClinicCases 7.3.3 is affected by Cross-Site Request Forgery (CSRF). A successful attack would consist of an authenticated user following a malicious link, resulting in arbitrary actions being carried… CWE-352
 Origin Validation Error 		CVE-2021-38705 2024-11-21 15:17 2021-09-8 Show GitHub Exploit DB Packet Storm
191077 6.1 MEDIUM
Network 		cliniccases cliniccases Multiple reflected cross-site scripting (XSS) vulnerabilities in ClinicCases 7.3.3 allow unauthenticated attackers to introduce arbitrary JavaScript by crafting a malicious URL. This can result in ac… CWE-79
Cross-site Scripting 		CVE-2021-38704 2024-11-21 15:17 2021-09-8 Show GitHub Exploit DB Packet Storm
191078 6.5 MEDIUM
Network 		hashicorp consul HashiCorp Consul and Consul Enterprise 1.10.1 Txn.Apply endpoint allowed services to register proxies for other services, enabling access to service traffic. Fixed in 1.8.15, 1.9.9 and 1.10.2. CWE-862
 Missing Authorization 		CVE-2021-38698 2024-11-21 15:17 2021-09-7 Show GitHub Exploit DB Packet Storm
191079 8.8 HIGH
Network 		eigentech natural_language_processing In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/ user creation endpoint allows a standard user to create a super user account with a defined password. This directly leads to privil… NVD-CWE-Other
CVE-2021-38617 2024-11-21 15:17 2021-09-7 Show GitHub Exploit DB Packet Storm
191080 8.8 HIGH
Network 		eigentech natural_language_processing In Eigen NLP 3.10.1, a lack of access control on the /auth/v1/user/{user-guid}/ user edition endpoint could permit any logged-in user to increase their own permissions via a user_permissions array in… NVD-CWE-Other
CVE-2021-38616 2024-11-21 15:17 2021-09-7 Show GitHub Exploit DB Packet Storm