Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 4:10 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224271	6.5	警告	CiviCRM	-	CiviCRM の Quick Search API におけるレイヤの検証を回避される脆弱性	CWE-89 SQLインジェクション	CVE-2013-4662	2014-01-31 14:37	2013-06-10	Show	GitHub Exploit DB Packet Storm

224272	6.5	警告	CiviCRM	-	CiviCRM におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4661	2014-01-31 14:36	2013-06-4	Show	GitHub Exploit DB Packet Storm

224273	6.8	警告	Iconify.it	-	SkyBlueCanvas CMS の cms/data/skins/techjunkie/fragments/contacts/functions.php における任意のコマンドを実行される脆弱性	CWE-134 書式文字列の問題	CVE-2014-1683	2014-01-31 14:23	2014-01-22	Show	GitHub Exploit DB Packet Storm

224274	6.8	警告	Spring Signage	-	Digital Signage Xibo の index.php におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-4889	2014-01-31 14:10	2013-07-22	Show	GitHub Exploit DB Packet Storm

224275	4.3	警告	Spring Signage	-	Digital Signage Xibo の index.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4888	2014-01-31 14:10	2013-07-22	Show	GitHub Exploit DB Packet Storm

224276	7.5	危険	Spring Signage	-	Digital Signage Xibo の index.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-4887	2014-01-31 14:09	2013-07-1	Show	GitHub Exploit DB Packet Storm

224277	4.3	警告	トリップワイヤ	-	Tripwire Enterprise の ajaxRequest/methodCall.do におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5005	2014-01-31 13:47	2013-07-29	Show	GitHub Exploit DB Packet Storm

224278	6.5	警告	Courion	-	Courion Access Risk Management Suite のパスワードリセット機能における Internet Explorer の使用制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2747	2014-01-31 13:46	2013-08-15	Show	GitHub Exploit DB Packet Storm

224279	5	警告	op5	-	op5 Monitor における任意のファイルを読まれる脆弱性	CWE-noinfo 情報不足	CVE-2013-6141	2014-01-31 12:29	2013-09-3	Show	GitHub Exploit DB Packet Storm

224280	4.3	警告	AlgoSec	-	AlgoSec Firewall Analyzer の BusinessFlow/login におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7318	2014-01-31 12:28	2013-08-8	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197781	5.5	MEDIUM Local	trendmicro	apex_central apex_one cloud_edge deep_security control_manager deep_discovery_analyzer deep_discovery_email_inspector deep_discovery_inspector interscan_messaging_security_vir…	Trend Micro's Virus Scan API (VSAPI) and Advanced Threat Scan Engine (ATSE) - are vulnerable to a memory exhaustion vulnerability that may lead to denial-of-service or system freeze if exploited by a…	CWE-400 Uncontrolled Resource Consumption	CVE-2021-25252	2024-11-21 14:54	2021-03-4	Show	GitHub Exploit DB Packet Storm

197782	7.8	HIGH Local	saltstack	salt	CWE - CWE-287: Improper Authentication vulnerability in SUSE Linux Enterprise Server 15 SP 3; openSUSE Tumbleweed allows local attackers to execute arbitrary code via salt without the need to specify…	-	CVE-2021-25315	2024-11-21 14:54	2021-03-3	Show	GitHub Exploit DB Packet Storm

197783	7.5	HIGH Network	google	android	Calling of non-existent provider in MobileWips application prior to SMR Feb-2021 Release 1 allows unauthorized actions including denial of service attack by hijacking the provider.	NVD-CWE-noinfo	CVE-2021-25330	2024-11-21 14:54	2021-03-3	Show	GitHub Exploit DB Packet Storm

197784	9.8	CRITICAL Network	gigaset	dx600a_firmware	The telnet administrator service running on port 650 on Gigaset DX600A v41.00-175 devices does not implement any lockout or throttling functionality. This situation (together with the weak password p…	CWE-307 CWE-521 mproper Restriction of Excessive Authentication Attempts Weak Password Requirements	CVE-2021-25309	2024-11-21 14:54	2021-03-2	Show	GitHub Exploit DB Packet Storm

197785	7.5	HIGH Network	gigaset	dx600a_firmware	A buffer overflow vulnerability in the AT command interface of Gigaset DX600A v41.00-175 devices allows remote attackers to force a device reboot by sending relatively long AT commands.	CWE-120 Classic Buffer Overflow	CVE-2021-25306	2024-11-21 14:54	2021-03-2	Show	GitHub Exploit DB Packet Storm

197786	7.0	HIGH Local	apache debian oracle	tomcat debian_linux managed_file_transfer instantis_enterprisetrack agile_plm database siebel_ui_framework mysql_enterprise_monitor graph_server_and_client communications_c…	The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikel…	NVD-CWE-noinfo	CVE-2021-25329	2024-11-21 14:54	2021-03-1	Show	GitHub Exploit DB Packet Storm

197787	7.5	HIGH Network	apache debian oracle	tomcat debian_linux managed_file_transfer instantis_enterprisetrack agile_plm database siebel_ui_framework mysql_enterprise_monitor graph_server_and_client communications_c…	When responding to new h2c connection requests, Apache Tomcat versions 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41 and 8.5.0 to 8.5.61 could duplicate request headers and a limited amount of request body…	CWE-200 Information Exposure	CVE-2021-25122	2024-11-21 14:54	2021-03-1	Show	GitHub Exploit DB Packet Storm

197788	4.4	MEDIUM Local	saltstack fedoraproject debian	salt fedora debian_linux	An issue was discovered in through SaltStack Salt before 3002.5. salt.modules.cmdmod can log credentials to the info or error log level.	CWE-532 CWE-522 Inclusion of Sensitive Information in Log Files Insufficiently Protected Credentials	CVE-2021-25284	2024-11-21 14:54	2021-02-27	Show	GitHub Exploit DB Packet Storm

197789	9.8	CRITICAL Network	saltstack fedoraproject debian	salt fedora debian_linux	An issue was discovered in through SaltStack Salt before 3002.5. The jinja renderer does not protect against server side template injection attacks.	CWE-94 Code Injection	CVE-2021-25283	2024-11-21 14:54	2021-02-27	Show	GitHub Exploit DB Packet Storm

197790	9.1	CRITICAL Network	saltstack fedoraproject debian	salt fedora debian_linux	An issue was discovered in through SaltStack Salt before 3002.5. The salt.wheel.pillar_roots.write method is vulnerable to directory traversal.	CWE-22 Path Traversal	CVE-2021-25282	2024-11-21 14:54	2021-02-27	Show	GitHub Exploit DB Packet Storm