Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224421 5.5 警告 CloudBees - CloudBees Jenkins 用 Exclusion プラグインにおけるリソースを一覧表示される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6373 2013-11-28 11:37 2013-11-20 Show GitHub Exploit DB Packet Storm
224422 4.3 警告 PaloSanto Solutions - Elastix の xmlservices/E_book.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6608 2013-11-28 11:30 2012-11-19 Show GitHub Exploit DB Packet Storm
224423 3.5 注意 Moodle - Moodle の mod/quiz/report/responses/responses_table.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4525 2013-11-28 11:18 2013-11-25 Show GitHub Exploit DB Packet Storm
224424 6.8 警告 Moodle - Moodle の repository/filesystem/lib.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-4524 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
224425 3.5 注意 Moodle - Moodle の message/lib.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4523 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
224426 5 警告 Moodle - Moodle の lib/filelib.php における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-4522 2013-11-28 11:17 2013-11-25 Show GitHub Exploit DB Packet Storm
224427 4.3 警告 Splunk - Splunk の Splunk Web におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6870 2013-11-28 11:03 2013-11-15 Show GitHub Exploit DB Packet Storm
224428 6.8 警告 HTTP-Body Project - Perl 用 HTTP-Body の HTTP::Body::Multipart における攻撃を行われる脆弱性 CWE-noinfo
情報不足 		CVE-2013-4407 2013-11-27 18:17 2013-11-21 Show GitHub Exploit DB Packet Storm
224429 3.3 注意 Robert Ancell
Canonical		 - LightDM における制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4459 2013-11-27 18:08 2013-11-6 Show GitHub Exploit DB Packet Storm
224430 1.9 注意 OpenStack - OpenStack Ceilometer における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-6384 2013-11-27 17:58 2013-10-25 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197611 5.3 MEDIUM
Network 		forms_project forms The package forms before 1.2.1, from 1.3.0 and before 1.3.2 are vulnerable to Regular Expression Denial of Service (ReDoS) via email validation. NVD-CWE-noinfo
CVE-2021-23388 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197612 5.5 MEDIUM
Local 		f5 nginx_controller The Nginx Controller 3.x before 3.7.0 agent configuration file /etc/controller-agent/agent.conf is world readable with current permission bits set to 644. CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2021-23021 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197613 5.5 MEDIUM
Local 		f5 nginx_controller The NAAS 3.x before 3.10.0 API keys were generated using an insecure pseudo-random string and hashing algorithm which could lead to predictable keys. CWE-330
 Use of Insufficiently Random Values 		CVE-2021-23020 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197614 7.8 HIGH
Local 		f5 nginx_controller The NGINX Controller 2.0.0 thru 2.9.0 and 3.x before 3.15.0 Administrator password may be exposed in the systemd.txt file that is included in the NGINX support package. CWE-522
 Insufficiently Protected Credentials 		CVE-2021-23019 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197615 7.7 HIGH
Network 		f5
openresty
fedoraproject
netapp
oracle 		nginx
openresty
fedora
ontap_select_deploy_administration_utility
communications_operations_monitor
enterprise_session_border_controller
communications_session_border_controller
 A security issue in nginx resolver was identified, which might allow an attacker who is able to forge UDP packets from the DNS server to cause 1-byte memory overwrite, resulting in worker process cra… - CVE-2021-23017 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197616 7.4 HIGH
Network 		f5 nginx_controller Intra-cluster communication does not use TLS. The services within the NGINX Controller 3.x before 3.4.0 namespace are using cleartext protocols inside the cluster. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-23018 2024-11-21 14:51 2021-06-1 Show GitHub Exploit DB Packet Storm
197617 6.1 MEDIUM
Network 		trailing-slash_project trailing-slash The package trailing-slash before 2.0.1 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.com//attacker… CWE-601
Open Redirect 		CVE-2021-23387 2024-11-21 14:51 2021-05-25 Show GitHub Exploit DB Packet Storm
197618 6.5 MEDIUM
Network 		dns-packet_project dns-packet This affects the package dns-packet before 5.2.2. It creates buffers with allocUnsafe and does not always fill them before forming network packets. This can expose internal application memory over un… CWE-909
 Missing Initialization of Resource 		CVE-2021-23386 2024-11-21 14:51 2021-05-21 Show GitHub Exploit DB Packet Storm
197619 5.4 MEDIUM
Network 		koa-remove-trailing-slashes_project koa-remove-trailing-slashes The package koa-remove-trailing-slashes before 2.0.2 are vulnerable to Open Redirect via the use of trailing double slashes in the URL when accessing the vulnerable endpoint (such as https://example.… CWE-601
Open Redirect 		CVE-2021-23384 2024-11-21 14:51 2021-05-18 Show GitHub Exploit DB Packet Storm
197620 5.5 MEDIUM
Local 		argoproj argo_cd Exposure of System Data to an Unauthorized Control Sphere vulnerability in web UI of Argo CD allows attacker to cause leaked secret data into web UI error messages and logs. This issue affects Argo C… CWE-209
Information Exposure Through an Error Message 		CVE-2021-23135 2024-11-21 14:51 2021-05-13 Show GitHub Exploit DB Packet Storm