Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
224791	4	警告	op5	-	op5 Monitor および op5 Appliance の monitor/index.php における重要な情報を取得される脆弱性	CWE-200 情報漏えい	CVE-2012-0263	2014-01-7 14:32	2012-01-20	Show	GitHub Exploit DB Packet Storm

224792	10	危険	op5	-	op5 Monitor および op5 Appliance の system-op5config の op5config/welcome における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0262	2014-01-7 14:28	2012-01-20	Show	GitHub Exploit DB Packet Storm

224793	10	危険	op5	-	op5 Monitor および op5 Appliance の system-portal の license.php における任意のコマンドを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2012-0261	2014-01-7 14:27	2012-01-20	Show	GitHub Exploit DB Packet Storm

224794	7.5	危険	Synology Inc.	-	Synology DiskStation Manager の FileBrowser コンポーネントにおけるディレクトリトラバーサルの脆弱性	CWE-22 パス・トラバーサル	CVE-2013-6987	2014-01-7 12:07	2013-12-19	Show	GitHub Exploit DB Packet Storm

224795	4.3	警告	Mislav Marohnic	-	Ruby 用 will_paginate gem におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6459	2014-01-7 11:39	2013-09-18	Show	GitHub Exploit DB Packet Storm

224796	4.3	警告	CloudBees	-	CloudBees Jenkins のデフォルトの markup formatter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5573	2014-01-7 11:20	2013-12-17	Show	GitHub Exploit DB Packet Storm

224797	6.5	警告	Zenphoto	-	Zenphoto の zp-core/zp-extensions/wordpress_import.php における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-7242	2014-01-7 10:50	2013-10-1	Show	GitHub Exploit DB Packet Storm

224798	4.3	警告	Zenphoto	-	Zenphoto の zp-core/zp-extensions/mergedRSS.php 内の export 関数におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-7241	2014-01-7 10:49	2013-10-1	Show	GitHub Exploit DB Packet Storm

224799	6.5	警告	シスコシステムズ	-	Cisco Unified Presence Server の Web インターフェースにおける SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6983	2014-01-6 18:30	2014-01-3	Show	GitHub Exploit DB Packet Storm

224800	6.8	警告	The JForum Team	-	JForum の Admin モジュールの admBase/login.page におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2013-7209	2014-01-6 18:29	2013-12-26	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196881	8.1	HIGH Network	synology	diskstation_manager vs960hd_firmware skynas_firmware diskstation_manager_unified_controller	Stack-based buffer overflow vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary code via syno_finder…	CWE-119 Incorrect Access of Indexable Resource ('Range Error')	CVE-2021-26561	2024-11-21 14:56	2021-02-27	Show	GitHub Exploit DB Packet Storm

196882	7.4	HIGH Network	synology	diskstation_manager vs960hd_firmware skynas_firmware diskstation_manager_unified_controller	Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to spoof servers via …	CWE-319 Cleartext Transmission of Sensitive Information	CVE-2021-26560	2024-11-21 14:56	2021-02-27	Show	GitHub Exploit DB Packet Storm

196883	8.1	HIGH Network	microsoft fedoraproject	visual_studio_2019 .net_core powershell_core .net fedora	.NET Core Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-26701	2024-11-21 14:56	2021-02-26	Show	GitHub Exploit DB Packet Storm

196884	7.8	HIGH Local	microsoft	visual_studio_code_npm-script_extension	Visual Studio Code npm-script Extension Remote Code Execution Vulnerability	NVD-CWE-noinfo	CVE-2021-26700	2024-11-21 14:56	2021-02-26	Show	GitHub Exploit DB Packet Storm

196885	7.2	HIGH Network	arubanetworks	clearpass_policy_manager	A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based m…	CWE-78 OS Command	CVE-2021-26680	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196886	7.2	HIGH Network	arubanetworks	clearpass_policy_manager	A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based m…	CWE-78 OS Command	CVE-2021-26679	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196887	7.8	HIGH Local	arubanetworks	clearpass_policy_manager	A local authenticated escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard co…	NVD-CWE-noinfo	CVE-2021-26677	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196888	5.3	MEDIUM Network	rangerstudio	directus	In Directus 8.x through 8.8.1, an attacker can learn sensitive information such as the version of the CMS, the PHP version used by the site, and the name of the DBMS, simply by view the result of the…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-26595	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196889	8.8	HIGH Network	rangerstudio	directus	In Directus 8.x through 8.8.1, an attacker can switch to the administrator role (via the PATCH method) without any control by the back end. NOTE: This vulnerability only affects products that are no …	CWE-269 Improper Privilege Management	CVE-2021-26594	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm

196890	7.5	HIGH Network	rangerstudio	directus	In Directus 8.x through 8.8.1, an attacker can see all users in the CMS using the API /users/{id}. For each call, they get in response a lot of information about the user (such as email address, firs…	CWE-200 Information Exposure	CVE-2021-26593	2024-11-21 14:56	2021-02-24	Show	GitHub Exploit DB Packet Storm