Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224681	6.8	警告	シスコシステムズ	-	Cisco Unified Communications Manager の Enterprise License Manager におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-3472	2013-09-2 12:31	2013-08-28	Show	GitHub Exploit DB Packet Storm

224682	4.3	警告	シスコシステムズ	-	Cisco Identity Services Engine の captive portal アプリケーションにおける平文のユーザ名およびパスワードを破られる脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-3471	2013-09-2 12:27	2013-08-28	Show	GitHub Exploit DB Packet Storm

224683	7.8	危険	シスコシステムズ	-	Cisco Unified IP Phone 8945 のソフトウェアにおけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-3468	2013-09-2 12:21	2013-08-28	Show	GitHub Exploit DB Packet Storm

224684	9.3	危険	シスコシステムズ	-	Cisco Secure Access Control Server の EAP-FAST 認証モジュールにおける任意のコマンドを実行される脆弱性	CWE-287 不適切な認証	CVE-2013-3466	2013-09-2 12:11	2013-08-28	Show	GitHub Exploit DB Packet Storm

224685	7.5	危険	Adam Zaninovich	-	Ruby 用 sounder gem の lib/sounder/sound.rb における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-5647	2013-09-2 11:04	2013-08-9	Show	GitHub Exploit DB Packet Storm

224686	3.5	注意	Roundcube.net	-	Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5646	2013-09-2 09:58	2013-08-4	Show	GitHub Exploit DB Packet Storm

224687	4.3	警告	Roundcube.net	-	Roundcube Webmail におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5645	2013-09-2 09:51	2013-08-1	Show	GitHub Exploit DB Packet Storm

224688	7.5	危険	The Cacti Group	-	Cacti の cacti/host.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-5589	2013-08-30 16:46	2013-08-24	Show	GitHub Exploit DB Packet Storm

224689	4.3	警告	The Cacti Group	-	Cacti におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5588	2013-08-30 16:44	2013-08-24	Show	GitHub Exploit DB Packet Storm

224690	7.8	危険	FreeBSD	-	FreeBSD のカーネルの SCTP の実装におけるカーネルスタックメモリから重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2013-5209	2013-08-30 16:42	2012-08-22	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
197801	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 41 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20142	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197802	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 32 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20141	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197803	8.8	HIGH Adjacent	gryphonconnect	gryphon_tower_firmware	An unauthenticated command injection vulnerability exists in the parameters of operation 10 in the controller_server service on Gryphon Tower routers. An unauthenticated remote attacker on the same n…	CWE-78 OS Command	CVE-2021-20140	2024-11-21 14:46	2021-12-10	Show	GitHub Exploit DB Packet Storm

197804	6.1	MEDIUM Network	ibm netapp	cognos_analytics oncommand_insight	IBM Cognos Analytics 11.1.7 and 11.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality…	CWE-79 Cross-site Scripting	CVE-2021-20493	2024-11-21 14:46	2021-12-4	Show	GitHub Exploit DB Packet Storm

197805	7.5	HIGH Network	ibm netapp	cognos_analytics oncommand_insight	IBM Cognos Analytics 11.1.7 and 11.2.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts. IBM X-Force ID: 196339.	CWE-521 Weak Password Requirements	CVE-2021-20470	2024-11-21 14:46	2021-12-4	Show	GitHub Exploit DB Packet Storm

197806	7.5	HIGH Network	ibm	qradar_security_information_and_event_manager	IBM QRadar SIEM 7.3 and 7.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 196074.	CWE-326 Inadequate Encryption Strength	CVE-2021-20400	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197807	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Improper Input Validation vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R Series R…	CWE-20 Improper Input Validation	CVE-2021-20611	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197808	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Improper Handling of Length Parameter Inconsistency vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120S…	NVD-CWE-Other	CVE-2021-20610	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197809	7.5	HIGH Network	mitsubishi	melsec_iq-r_r00_cpu_firmware melsec_iq-r_r01_cpu_firmware melsec_iq-r_r02_cpu_firmware melsec_iq-r_r04_cpu_firmware melsec_iq-r_r08_cpu_firmware melsec_iq-r_r120_cpu_firmware melsec…	Uncontrolled Resource Consumption vulnerability in Mitsubishi Electric MELSEC iQ-R Series R00/01/02CPU, MELSEC iQ-R Series R04/08/16/32/120(EN)CPU, MELSEC iQ-R Series R08/16/32/120SFCPU, MELSEC iQ-R …	CWE-400 Uncontrolled Resource Consumption	CVE-2021-20609	2024-11-21 14:46	2021-12-2	Show	GitHub Exploit DB Packet Storm

197810	7.5	HIGH Network	mitsubishielectric	gt_softgot2000 got_simple_gs2110-wtbd_firmware got_simple_gs2107-wtbd_firmware got2000_gt2104-rtbd_firmware got2000_gt2103-pmbd_firmware got2000_gt2103-pmbds_firmware got2000_gt2103…	Improper input validation vulnerability in GOT2000 series GT27 model all versions, GOT2000 series GT25 model all versions, GOT2000 series GT23 model all versions, GOT2000 series GT21 model all versio…	CWE-20 Improper Input Validation	CVE-2021-20601	2024-11-21 14:46	2021-11-24	Show	GitHub Exploit DB Packet Storm