Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 10, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224471 4.3 警告 DELL EMC (旧 EMC Corporation) - EMC RSA Data Protection Manager アプライアンスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-3288 2013-11-27 09:44 2013-11-21 Show GitHub Exploit DB Packet Storm
224472 3.3 注意 Hercules Team
レッドハット		 - Augeas の transform_save の transform_save 関数における任意のファイルを上書きされる脆弱性 CWE-22
パス・トラバーサル 		CVE-2012-6607 2013-11-26 18:35 2012-01-6 Show GitHub Exploit DB Packet Storm
224473 3.7 注意 Hercules Team
レッドハット		 - Augeas の transfer.c の clone_file 関数における任意のファイルを上書きされる脆弱性 CWE-noinfo
情報不足 		CVE-2012-0787 2013-11-26 18:35 2013-01-6 Show GitHub Exploit DB Packet Storm
224474 3.3 注意 Hercules Team
レッドハット		 - Augeas の transform_save の transform_save 関数における任意のファイルを上書きされる脆弱性 CWE-59
リンク解釈の問題 		CVE-2012-0786 2013-11-26 18:34 2012-01-6 Show GitHub Exploit DB Packet Storm
224475 7.9 危険 Xen プロジェクト - Xen におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-6375 2013-11-26 16:31 2013-11-20 Show GitHub Exploit DB Packet Storm
224476 7.8 危険 D-Link Systems, Inc. - D-Link DES-3800 シリーズにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-5998 2013-11-26 16:14 2013-11-22 Show GitHub Exploit DB Packet Storm
224477 6.8 警告 D-Link Systems, Inc. - D-Link DES-3800 シリーズにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足 		CVE-2013-5997 2013-11-26 16:07 2013-11-22 Show GitHub Exploit DB Packet Storm
224478 4 警告 キングソフト株式会社 - KDrive個人版 PCクライアントソフトにおける SSL サーバ証明書の検証不備の脆弱性 CWE-Other
その他 		CVE-2013-5999 2013-11-26 15:54 2013-11-22 Show GitHub Exploit DB Packet Storm
224479 7.8 危険 Triangle Research International - Triangle Research International Nano-10 PLC デバイスにおけるサービス運用妨害 (DoS) の脆弱性 CWE-20
不適切な入力確認 		CVE-2013-5741 2013-11-26 15:44 2013-10-22 Show GitHub Exploit DB Packet Storm
224480 4.3 警告 Kirill Novitchenko - WordPress 用 Tweet Blender プラグインにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6342 2013-11-26 15:37 2013-11-15 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197631 9.8 CRITICAL
Network 		f5 big-ip_access_policy_manager On version 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, 12.1.x before 12.1.6, and all versions of 16.0.x and 11.6.x., BIG-IP APM AD (Active Directory) authentication can be bypas… CWE-287
Improper Authentication 		CVE-2021-23008 2024-11-21 14:51 2021-05-10 Show GitHub Exploit DB Packet Storm
197632 9.8 CRITICAL
Network 		handlebarsjs
netapp 		handlebars
e-series_performance_analyzer 		The package handlebars before 4.7.7 are vulnerable to Prototype Pollution when selecting certain compiling options to compile templates coming from an untrusted source. CWE-1321
 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') 		CVE-2021-23383 2024-11-21 14:51 2021-05-4 Show GitHub Exploit DB Packet Storm
197633 7.5 HIGH
Network 		path-parse_project path-parse All versions of package path-parse are vulnerable to Regular Expression Denial of Service (ReDoS) via splitDeviceRe, splitTailRe, and splitPathRe regular expressions. ReDoS exhibits polynomial worst-… NVD-CWE-noinfo
CVE-2021-23343 2024-11-21 14:51 2021-05-4 Show GitHub Exploit DB Packet Storm
197634 5.3 MEDIUM
Network 		browserslist_project browserslist The package browserslist from 4.0.0 and before 4.16.5 are vulnerable to Regular Expression Denial of Service (ReDoS) during parsing of queries. CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23364 2024-11-21 14:51 2021-04-29 Show GitHub Exploit DB Packet Storm
197635 7.5 HIGH
Network 		postcss postcss The package postcss before 8.2.13 are vulnerable to Regular Expression Denial of Service (ReDoS) via getAnnotationURL() and loadAnnotation() in lib/previous-map.js. The vulnerable regexes are caused … CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-23382 2024-11-21 14:51 2021-04-27 Show GitHub Exploit DB Packet Storm
197636 9.1 CRITICAL
Network 		tyk tyk-identity-broker The package github.com/tyktechnologies/tyk-identity-broker before 1.1.1 are vulnerable to Authentication Bypass via the Go XML parser which can cause SAML authentication bypass. This is because the X… CWE-287
Improper Authentication 		CVE-2021-23365 2024-11-21 14:51 2021-04-26 Show GitHub Exploit DB Packet Storm
197637 9.8 CRITICAL
Network 		killing_project killing This affects all versions of package killing. If attacker-controlled user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process exec fu… CWE-78
OS Command  		CVE-2021-23381 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
197638 7.3 HIGH
Network 		roar-pidusage_project roar-pidusage This affects all versions of package roar-pidusage. If attacker-controlled user input is given to the stat function of this package on certain operating systems, it is possible for an attacker to exe… CWE-78
OS Command  		CVE-2021-23380 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
197639 9.8 CRITICAL
Network 		portkiller_project portkiller This affects all versions of package portkiller. If (attacker-controlled) user input is given, it is possible for an attacker to execute arbitrary commands. This is due to use of the child_process ex… CWE-78
OS Command  		CVE-2021-23379 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm
197640 9.8 CRITICAL
Network 		picotts_project picotts This affects all versions of package picotts. If attacker-controlled user input is given to the say function, it is possible for an attacker to execute arbitrary commands. This is due to use of the c… CWE-78
OS Command  		CVE-2021-23378 2024-11-21 14:51 2021-04-19 Show GitHub Exploit DB Packet Storm