Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 11, 2026, 6:13 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224411	10	危険	マイクロソフト	-	複数の Microsoft 製品のデフォルト設定における任意のコードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2013-1330	2013-12-12 18:54	2013-09-10	Show	GitHub Exploit DB Packet Storm

224412	9.3	危険	マイクロソフト	-	複数の Microsoft 製品の GDI+ における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3906	2013-12-12 18:08	2013-11-5	Show	GitHub Exploit DB Packet Storm

224413	5	警告	シスコシステムズ	-	Cisco Cloud Portal における不特定のタイプのファイルを読まれる脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6708	2013-12-12 17:56	2013-12-9	Show	GitHub Exploit DB Packet Storm

224414	6.8	警告	IBM	-	IBM Forms Viewer におけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-5447	2013-12-12 17:41	2013-12-5	Show	GitHub Exploit DB Packet Storm

224415	4.3	警告	マイクロソフト	-	Microsoft Exchange Server の Outlook Web Access におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5072	2013-12-12 17:16	2013-12-10	Show	GitHub Exploit DB Packet Storm

224416	4.3	警告	マイクロソフト	-	Microsoft Office 2013 および 2013 RT における認証トークンを取得される脆弱性	CWE-200 情報漏えい	CVE-2013-5054	2013-12-12 17:09	2013-12-10	Show	GitHub Exploit DB Packet Storm

224417	4.3	警告	マイクロソフト	-	Microsoft ASP.NET SignalR および Visual Studio Team Foundation Server におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5042	2013-12-12 17:07	2013-12-10	Show	GitHub Exploit DB Packet Storm

224418	4.3	警告	マイクロソフト	-	Microsoft Office 2007 および 2010 の hxds.dll における任意のコードを実行される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5057	2013-12-12 17:03	2013-12-10	Show	GitHub Exploit DB Packet Storm

224419	6.9	警告	マイクロソフト	-	Microsoft Windows XP および Windows Server 2003 の LRPC クライアントにおけるスタックベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2013-3878	2013-12-12 16:59	2013-12-10	Show	GitHub Exploit DB Packet Storm

224420	4.9	警告	マイクロソフト	-	複数の Microsoft Windows 製品のカーネルモードドライバにおける整数オーバーフローの脆弱性	CWE-189 数値処理の問題	CVE-2013-5058	2013-12-12 16:55	2013-12-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 11, 2026, 5:13 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
199961	7.0	HIGH Local	adobe	illustrator	Adobe Illustrator version 25.0 (and earlier) is affected by an uncontrolled search path element that could result in arbitrary code execution in the context of the current user. Exploitation of this …	-	CVE-2021-21007	2024-11-21 14:47	2021-01-14	Show	GitHub Exploit DB Packet Storm

199962	8.6	HIGH Local	adobe	photoshop	Adobe Photoshop version 22.1 (and earlier) is affected by a heap buffer overflow vulnerability when handling a specially crafted font file. Successful exploitation could lead to arbitrary code execut…	-	CVE-2021-21006	2024-11-21 14:47	2021-01-14	Show	GitHub Exploit DB Packet Storm

199963	5.3	MEDIUM Network	laravel	laravel	Laravel is a web application framework. Versions of Laravel before 6.20.11, 7.30.2 and 8.22.1 contain a query binding exploitation. This same exploit applies to the illuminate/database package which …	CWE-89 SQL Injection	CVE-2021-21263	2024-11-21 14:47	2021-01-20	Show	GitHub Exploit DB Packet Storm

199964	8.8	HIGH Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3 there is a critical "zip slip" vulnerability. This issue may lead to arbitrary file write. The KubernetesResource REST endpoint…	-	CVE-2021-21251	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199965	6.5	MEDIUM Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, there is a critical vulnerability which may lead to arbitrary file read. When BuildSpec is provided in XML format, the spec is…	-	CVE-2021-21250	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199966	8.8	HIGH Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, there is an issue involving YAML parsing which can lead to post-auth remote code execution. In order to parse and process YAML…	CWE-502 Deserialization of Untrusted Data	CVE-2021-21249	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199967	8.8	HIGH Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, there is a critical vulnerability involving the build endpoint parameters. InputSpec is used to define parameters of a Build s…	CWE-94 Code Injection	CVE-2021-21248	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199968	8.8	HIGH Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, the application's BasePage registers an AJAX event listener (`AbstractPostAjaxBehavior`) in all pages other than the login pag…	CWE-502 Deserialization of Untrusted Data	CVE-2021-21247	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199969	7.5	HIGH Network	onedev_project	onedev	OneDev is an all-in-one devops platform. In OneDev before version 4.0.3, the REST UserResource endpoint performs a security check to make sure that only administrators can list user details. However …	-	CVE-2021-21246	2024-11-21 14:47	2021-01-16	Show	GitHub Exploit DB Packet Storm

199970	7.5	HIGH Network	jqueryvalidation netapp	jquery_validation snapcenter	The jQuery Validation Plugin provides drop-in validation for your existing forms. It is published as an npm package "jquery-validation". jquery-validation before version 1.19.3 contains one or more r…	-	CVE-2021-21252	2024-11-21 14:47	2021-01-14	Show	GitHub Exploit DB Packet Storm