Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 7, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224221 6.8 警告 OpenText - OpenText/IXOS ECM for SAP NetWeaver における任意の ABAP コードを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-3243 2013-10-30 16:37 2013-04-24 Show GitHub Exploit DB Packet Storm
224222 6.8 警告 KTH - WaveSurfer で使用される The Snack Sound Toolkit におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2012-6303 2013-10-30 16:25 2013-09-11 Show GitHub Exploit DB Packet Storm
224223 6.8 警告 Aircrack-ng
Gentoo Linux		 - Aircrack-ng におけるヒープベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2010-1159 2013-10-30 16:15 2010-04-24 Show GitHub Exploit DB Packet Storm
224224 3.3 注意 レッドハット - Red Hat JBoss Enterprise Portal Platform のデフォルト設定における重要な情報を取得される脆弱性 CWE-287
不適切な認証 		CVE-2013-2102 2013-10-30 15:41 2013-10-16 Show GitHub Exploit DB Packet Storm
224225 1.9 注意 Canonical - X.org X server におけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-1056 2013-10-30 15:29 2013-10-17 Show GitHub Exploit DB Packet Storm
224226 3.7 注意 レッドハット - Red Hat JBoss Enterprise Application Platform および JBoss Portal における特定のアプリケーションの認証の決定を制御される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4572 2013-10-30 13:55 2013-05-20 Show GitHub Exploit DB Packet Storm
224227 4.3 警告 レッドハット - Red Hat JBoss Web におけるセッション id を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-4529 2013-10-30 13:45 2012-10-11 Show GitHub Exploit DB Packet Storm
224228 3.5 注意 Drupal - Drupal の File モジュールにおける任意のプライベートファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-0827 2013-10-30 12:12 2012-02-1 Show GitHub Exploit DB Packet Storm
224229 6.8 警告 Drupal - Drupal の Aggregator モジュールにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2012-0826 2013-10-30 12:06 2012-02-1 Show GitHub Exploit DB Packet Storm
224230 6.8 警告 Drupal - Drupal における重要な AX 情報を変更される脆弱性 CWE-200
情報漏えい 		CVE-2012-0825 2013-10-30 12:01 2012-02-1 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 7, 2026, 4:13 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
199471 5.4 MEDIUM
Adjacent 		sloan optima_eaf-100_firmware
optima_eaf-150_firmware
optima_eaf-200_firmware
optima_eaf-225_firmware
optima_eaf-250_firmware
optima_eaf-275_firmware
optima_eaf-350_firmware
optima_eaf… 		There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kin… CWE-306
Missing Authentication for Critical Function 		CVE-2021-20107 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199472 6.7 MEDIUM
Local 		tenable nessus Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaini… NVD-CWE-noinfo
CVE-2021-20079 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199473 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to an open redirect in Safari_init.php due to an improperly sanitized 'ref' parameter. CWE-601
Open Redirect 		CVE-2021-20105 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199474 8.1 HIGH
Network 		machform machform Machform prior to version 16 is vulnerable to unauthenticated remote code execution due to insufficient sanitization of file attachments uploaded with forms through upload.php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-20104 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199475 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to stored cross-site scripting due to insufficient sanitization of file attachments uploaded with forms through upload.php. CWE-79
Cross-site Scripting 		CVE-2021-20103 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199476 8.8 HIGH
Network 		machform machform Machform prior to version 16 is vulnerable to cross-site request forgery due to a lack of CSRF tokens in place. CWE-352
 Origin Validation Error 		CVE-2021-20102 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199477 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to HTTP host header injection due to improperly validated host headers. This could cause a victim to receive malformed content. CWE-74
Injection 		CVE-2021-20101 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
199478 6.7 MEDIUM
Local 		tenable nessus Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex… NVD-CWE-noinfo
CVE-2021-20100 2024-11-21 14:45 2021-06-28 Show GitHub Exploit DB Packet Storm
199479 6.7 MEDIUM
Local 		tenable nessus Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex… NVD-CWE-noinfo
CVE-2021-20099 2024-11-21 14:45 2021-06-28 Show GitHub Exploit DB Packet Storm
199480 7.5 HIGH
Network 		sonicwall sonicos
sonicosv 		A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-20019 2024-11-21 14:45 2021-06-24 Show GitHub Exploit DB Packet Storm