Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224641 4.3 警告 Andy's PHP Knowledgebase Project - Andy's PHP Knowledgebase の register.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-7289 2014-01-14 17:58 2013-12-24 Show GitHub Exploit DB Packet Storm
224642 7.5 危険 Cynthia Fridsma - Horizon Quick Content Management System の download.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-7139 2014-01-14 17:41 2013-12-25 Show GitHub Exploit DB Packet Storm
224643 5 警告 Cynthia Fridsma - Horizon Quick Content Management System の lib/functions/d-load.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7138 2014-01-14 17:41 2013-12-25 Show GitHub Exploit DB Packet Storm
224644 4.3 警告 Seagate Technology LLC - Seagate BlackArmor NAS 220 デバイスのファームウェアにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6923 2014-01-14 17:41 2014-01-6 Show GitHub Exploit DB Packet Storm
224645 9.3 危険 Libreswan Project - libreswan の Red Hat Enterprise Linux および Fedora パッケージ用 libreswan.spec ファイルにおける脆弱性 CWE-362
競合状態 		CVE-2013-7283 2014-01-14 17:40 2013-12-11 Show GitHub Exploit DB Packet Storm
224646 5 警告 Ecava - Ecava IntegraXor の SCADA サーバにおける任意のプロジェクトバックアップファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2014-0752 2014-01-14 17:39 2014-01-8 Show GitHub Exploit DB Packet Storm
224647 7.8 危険 QNAP Systems - QNAP QTS にディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-7174 2014-01-14 17:18 2014-01-8 Show GitHub Exploit DB Packet Storm
224648 4.3 警告 シスコシステムズ - Cisco Secure Access Control System の Web インターフェースにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-6974 2014-01-14 16:57 2014-01-10 Show GitHub Exploit DB Packet Storm
224649 6.8 警告 シスコシステムズ - Cisco Unity Connection のサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2014-0664 2014-01-14 16:26 2014-01-10 Show GitHub Exploit DB Packet Storm
224650 4.3 警告 シスコシステムズ - Cisco Secure Access Control System の Web フレームワークにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2014-0663 2014-01-14 16:25 2014-01-10 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200561 5.4 MEDIUM
Network 		jenkins repository_connector Jenkins Repository Connector Plugin 2.0.2 and earlier does not escape parameter names and descriptions for past builds, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by a… CWE-79
Cross-site Scripting 		CVE-2021-21618 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
200562 8.8 HIGH
Network 		jenkins configuration_slicing A cross-site request forgery (CSRF) vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations. CWE-352
 Origin Validation Error 		CVE-2021-21617 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
200563 4.6 MEDIUM
Network 		jenkins active_choices Jenkins Active Choices Plugin 2.5.2 and earlier does not escape reference parameter values, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure … CWE-79
Cross-site Scripting 		CVE-2021-21616 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
200564 5.3 MEDIUM
Network 		brave brave Brave is an open source web browser with a focus on privacy and security. In Brave versions 1.17.73-1.20.103, the CNAME adblocking feature added in Brave 1.17.73 accidentally initiated DNS requests t… - CVE-2021-21323 2024-11-21 14:48 2021-02-24 Show GitHub Exploit DB Packet Storm
200565 6.0 MEDIUM
Local 		dell emc_powerprotect_cyber_recovery Dell EMC PowerProtect Cyber Recovery, version 19.7.0.1, contains an Information Disclosure vulnerability. A locally authenticated high privileged Cyber Recovery user may potentially exploit this vuln… CWE-200
Information Exposure 		CVE-2021-21512 2024-11-21 14:48 2021-02-20 Show GitHub Exploit DB Packet Storm
200566 5.4 MEDIUM
Network 		apereo opencast Opencast is a free, open-source platform to support the management of educational audio and video content. In Opencast before version 9.2 there is a vulnerability in which publishing an episode with … - CVE-2021-21318 2024-11-21 14:48 2021-02-19 Show GitHub Exploit DB Packet Storm
200567 5.3 MEDIUM
Network 		uap-core_project uap-core uap-core in an open-source npm package which contains the core of BrowserScope's original user agent string parser. In uap-core before version 0.11.0, some regexes are vulnerable to regular expressio… CWE-1333
 Inefficient Regular Expression Complexity 		CVE-2021-21317 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
200568 7.8 HIGH
Local 		less-openui5_project less-openui5 less-openui5 is an npm package which enables building OpenUI5 themes with Less.js. In less-openui5 before version 0.10., when processing theming resources (i.e. `*.less` files) with less-openui5 that… - CVE-2021-21316 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
200569 7.8 HIGH
Local 		systeminformation
apache 		systeminformation
cordova 		The System Information Library for Node.JS (npm package "systeminformation") is an open source collection of functions to retrieve detailed hardware, system and OS information. In systeminformation b… CWE-78
OS Command  		CVE-2021-21315 2024-11-21 14:48 2021-02-17 Show GitHub Exploit DB Packet Storm
200570 8.1 HIGH
Network 		dell emc_avamar_server
emc_integrated_data_protection_appliance 		Dell EMC Avamar Server, versions 19.3 and 19.4 contain an Improper Authorization vulnerability in the web UI. A remote low privileged attacker could potentially exploit this vulnerability, to gain un… NVD-CWE-Other
CVE-2021-21511 2024-11-21 14:48 2021-02-16 Show GitHub Exploit DB Packet Storm