Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 13, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224731 6.8 警告 William Morgan - Sup の lib/sup/message_chunks.rb における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4479 2013-12-10 15:51 2013-10-28 Show GitHub Exploit DB Packet Storm
224732 6.8 警告 William Morgan - Sup における任意のコマンドを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4478 2013-12-10 15:51 2013-10-28 Show GitHub Exploit DB Packet Storm
224733 4.3 警告 シスコシステムズ - Cisco Adaptive Security Appliance ソフトウェアのコネクションマネージャの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-399
リソース管理の問題 		CVE-2013-6707 2013-12-10 15:28 2013-12-6 Show GitHub Exploit DB Packet Storm
224734 4.9 警告 IBM - IBM SmartCloud Provisioning における仮想システムのデプロイメントを変更される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5455 2013-12-10 15:27 2013-12-5 Show GitHub Exploit DB Packet Storm
224735 10 危険 シーメンス - Siemens SINAMICS S/G コントローラのファームウェアにおけるアクセス制限を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-6920 2013-12-10 15:26 2013-12-4 Show GitHub Exploit DB Packet Storm
224736 5.8 警告 Drupal - Drupal の Overlay モジュールにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-6389 2013-12-10 15:13 2013-11-20 Show GitHub Exploit DB Packet Storm
224737 6.8 警告 Drupal - Drupal におけるセキュリティ文字列を予測される脆弱性 CWE-310
暗号の問題 		CVE-2013-6386 2013-12-10 15:13 2013-11-20 Show GitHub Exploit DB Packet Storm
224738 5.1 警告 Drupal - Drupal の form API における任意のコードを実行するようなアプリケーション固有の影響を誘発される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-6385 2013-12-10 15:12 2013-11-20 Show GitHub Exploit DB Packet Storm
224739 6.8 警告 Steven Jones - Drupal 用 Context モジュールの plugins/context_reaction_block.inc 内の _json_decode 関数における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション 		CVE-2013-4446 2013-12-10 15:12 2013-10-16 Show GitHub Exploit DB Packet Storm
224740 4.9 警告 Steven Jones - Drupal 用 Context モジュールの json レンダリング機能におけるブロックのアクセストークンを推測される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-4445 2013-12-10 15:11 2013-10-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 13, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
200071 8.8 HIGH
Network 		adobe incopy Adobe InCopy version 16.0 (and earlier) is affected by an path traversal vulnerability when parsing a crafted file. An unauthenticated attacker could leverage this vulnerability to achieve remote cod… - CVE-2021-21090 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200072 6.1 MEDIUM
Network 		adobe experience_manager
experience_manager_cloud_service 		AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by a stored Cross-Site Scripting (XSS) vulnerability that could be abus… - CVE-2021-21084 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200073 7.5 HIGH
Network 		adobe experience_manager
experience_manager_cloud_service 		AEM's Cloud Service offering, as well as versions 6.5.7.0 (and below), 6.4.8.3 (and below) and 6.3.3.8 (and below) are affected by an Improper Access Control vulnerability. An unauthenticated attacke… NVD-CWE-Other
CVE-2021-21083 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200074 6.1 MEDIUM
Network 		ec-cube ec-cube Cross-site scripting vulnerability in EC-CUBE EC-CUBE 4.0.0 to 4.0.5-p1 (EC-CUBE 4 series) allows a remote attacker to inject an arbitrary script by leading an administrator or a user to a specially … CWE-79
Cross-site Scripting 		CVE-2021-20751 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200075 6.1 MEDIUM
Network 		ec-cube ec-cube Cross-site scripting vulnerability in EC-CUBE EC-CUBE 3.0.0 to 3.0.18-p2 (EC-CUBE 3 series) and EC-CUBE 4.0.0 to 4.0.5-p1 (EC-CUBE 4 series) allows a remote attacker to inject an arbitrary script by … CWE-79
Cross-site Scripting 		CVE-2021-20750 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200076 5.4 MEDIUM
Network 		nendeb fudousan_plugin
fudousan_plugin_pro_multi-user
fudousan_plugin_pro_single-user 		Cross-site scripting vulnerability in Fudousan plugin ver5.7.0 and earlier, Fudousan Plugin Pro Single-User Type ver5.7.0 and earlier, and Fudousan Plugin Pro Multi-User Type ver5.7.0 and earlier all… CWE-79
Cross-site Scripting 		CVE-2021-20749 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200077 5.4 MEDIUM
Network 		wordpress_popular_posts_project wordpress_popular_posts Cross-site scripting vulnerability in WordPress Popular Posts 5.3.2 and earlier allows a remote authenticated attacker to inject an arbitrary script via unspecified vectors. CWE-79
Cross-site Scripting 		CVE-2021-20746 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200078 7.8 HIGH
Local 		inkdrop inkdrop Inkdrop versions prior to v5.3.1 allows an attacker to execute arbitrary OS commands on the system where it runs by loading a file or code snippet containing an invalid iframe into Inkdrop. CWE-78
OS Command  		CVE-2021-20745 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200079 8.8 HIGH
Network 		hitachi
nec 		virtual_file_platform
nas_gateway_nh4a_firmware
nas_gateway_nh8a_firmware
nas_gateway_nh4b_firmware
nas_gateway_nh8b_firmware
nas_gateway_nh4c_firmware
nas_gateway_nh8c_firmware 		Hitachi Virtual File Platform Versions prior to 5.5.3-09 and Versions prior to 6.4.3-09, and NEC Storage M Series NAS Gateway Nh4a/Nh8a versions prior to FOS 5.5.3-08(NEC2.5.4a) and Nh4b/Nh8b, Nh4c/N… CWE-78
OS Command  		CVE-2021-20740 2024-11-21 14:47 2021-06-28 Show GitHub Exploit DB Packet Storm
200080 7.5 HIGH
Network 		phoenixcontact fl_comserver_uni_232\/422\/485_firmware
fl_comserver_uni_232\/422\/485-t_firmware 		In Phoenix Contact FL COMSERVER UNI in versions < 2.40 a invalid Modbus exception response can lead to a temporary denial of service. - CVE-2021-21002 2024-11-21 14:47 2021-06-26 Show GitHub Exploit DB Packet Storm