Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 3, 2026, 6:08 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224761 4.3 警告 ジュニパーネットワークス - IVE OS を搭載した Juniper Junos Pulse Secure Access Service におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5649 2013-09-18 18:59 2013-09-12 Show GitHub Exploit DB Packet Storm
224762 4.3 警告 Moodle - Moodle におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4341 2013-09-18 18:49 2013-09-16 Show GitHub Exploit DB Packet Storm
224763 7.5 危険 Moodle - Moodle における Microsoft SQL Server に対して SQL インジェクション攻撃を実行される脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4313 2013-09-18 18:48 2013-09-16 Show GitHub Exploit DB Packet Storm
224764 5.8 警告 Moodle - Moodle の Amazon S3 ライブラリの repository/s3/S3.php における SSL サーバになりすまされる脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6087 2013-09-18 18:42 2013-09-16 Show GitHub Exploit DB Packet Storm
224765 4.3 警告 Chama-Net - ChamaCargo におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4704 2013-09-18 16:12 2013-09-13 Show GitHub Exploit DB Packet Storm
224766 6.9 警告 シトリックス・システムズ
インテル		 - 複数の Intel 製品で使用される Intel Trusted Execution Technology SINIT Authenticated Code Modules における Trusted Execution Technology 保護メカニズムを回避される脆弱性 CWE-noinfo
情報不足 		CVE-2013-5740 2013-09-18 16:10 2013-07-1 Show GitHub Exploit DB Packet Storm
224767 10 危険 ヒューレット・パッカード - 複数の HP 製品の Agent サーブレットにおける任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-4813 2013-09-18 14:30 2013-09-9 Show GitHub Exploit DB Packet Storm
224768 10 危険 ヒューレット・パッカード - 複数の HP 製品の SNAC registration server におけるファイルをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4812 2013-09-18 14:28 2013-09-9 Show GitHub Exploit DB Packet Storm
224769 10 危険 ヒューレット・パッカード - 複数の HP 製品の SNAC registration server におけるファイルをアップロードされる脆弱性 CWE-20
不適切な入力確認 		CVE-2013-4811 2013-09-18 14:24 2013-09-9 Show GitHub Exploit DB Packet Storm
224770 10 危険 ヒューレット・パッカード - 複数の HP 製品における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4809 2013-09-18 14:18 2013-09-9 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 3, 2026, 4:18 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197991 5.4 MEDIUM
Network 		ibm content_navigator IBM Content Navigator 3.0.CD is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potential… CWE-79
Cross-site Scripting 		CVE-2021-20448 2024-11-21 14:46 2021-04-28 Show GitHub Exploit DB Packet Storm
197992 5.5 MEDIUM
Local 		ibm spectrum_protect_client
spectrum_protect_for_space_management 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 is vulnerable to a stack-based buffer overflow, caused by improper bounds checking. A local attacker could overflow a buffer and cause the applica… CWE-787
 Out-of-bounds Write 		CVE-2021-20546 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197993 6.2 MEDIUM
Local 		ibm spectrum_protect_plus IBM Spectrum Protect Plus File Systems Agent 10.1.6 and 10.1.7 stores potentially sensitive information in log files that could be read by a local user. IBM X-Force ID: 198836. CWE-532
 Inclusion of Sensitive Information in Log Files 		CVE-2021-20536 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197994 7.8 HIGH
Local 		ibm spectrum_protect_backup-archive_client
spectrum_protect_for_virtual_environments 		IBM Spectrum Protect Client 8.1.0.0 through 8.1.11.0 could allow a local user to escalate their privileges to take full control of the system due to insecure directory permissions. IBM X-Force ID: 19… CWE-276
Incorrect Default Permissions  		CVE-2021-20532 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197995 6.5 MEDIUM
Network 		ibm spectrum_protect_plus IBM Spectrum Protect Plus 10.1.0 through 10.1.7 uses Cross-Origin Resource Sharing (CORS) which could allow an attacker to carry out privileged actions and retrieve sensitive information as the domai… NVD-CWE-Other
CVE-2021-20432 2024-11-21 14:46 2021-04-27 Show GitHub Exploit DB Packet Storm
197996 6.1 MEDIUM
Network 		nec aterm_wg1900hp2_firmware
aterm_wg1900hp_firmware
aterm_wg1800hp4_firmware
aterm_wg1800hp3_firmware
aterm_wg1200hs3_firmware
aterm_wg1200hs2_firmware
aterm_wg1200hp3_firmware
ater… 		Cross-site scripting vulnerability in NEC Aterm devices (Aterm WG1900HP2 firmware Ver.1.3.1 and earlier, Aterm WG1900HP firmware Ver.2.5.1 and earlier, Aterm WG1800HP4 firmware Ver.1.3.1 and earlier,… CWE-79
Cross-site Scripting 		CVE-2021-20680 2024-11-21 14:46 2021-04-26 Show GitHub Exploit DB Packet Storm
197997 8.2 HIGH
Network 		ibm i IBM i 7.1, 7.2, 7.3, and 7.4 SMTP allows a network attacker to send emails to non-existent local-domain recipients to the SMTP server, caused by using a non-default configuration. An attacker could e… NVD-CWE-noinfo
CVE-2021-20501 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
197998 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 7.0, 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to e… CWE-611
XXE 		CVE-2021-20454 2024-11-21 14:46 2021-04-21 Show GitHub Exploit DB Packet Storm
197999 8.2 HIGH
Network 		ibm websphere_application_server IBM WebSphere Application Server 8.0, 8.5, and 9.0 is vulnerable to a XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose… CWE-611
XXE 		CVE-2021-20453 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm
198000 6.1 MEDIUM
Local 		samba
redhat
fedoraproject 		cifs-utils
enterprise_linux
fedora 		A flaw was found in cifs-utils in versions before 6.13. A user when mounting a krb5 CIFS file system from within a container can use Kerberos credentials of the host. The highest threat from this vul… CWE-269
 Improper Privilege Management 		CVE-2021-20208 2024-11-21 14:46 2021-04-20 Show GitHub Exploit DB Packet Storm