Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224811 4.3 警告 Atlassian - Atlassian JIRA の Admin Panel におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5319 2013-08-22 15:24 2013-08-6 Show GitHub Exploit DB Packet Storm
224812 7.5 危険 Benjamin ARNAUDETR - Ginkgo CMS における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-5318 2013-08-22 15:23 2013-08-12 Show GitHub Exploit DB Packet Storm
224813 3.5 注意 RiteCMS - RiteCMS におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5317 2013-08-22 15:23 2013-07-30 Show GitHub Exploit DB Packet Storm
224814 6.8 警告 RiteCMS - RiteCMS におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-5316 2013-08-22 15:22 2013-07-30 Show GitHub Exploit DB Packet Storm
224815 4.3 警告 Alcatel-Lucent - 複数の Alcatel-Lucent Omnitouch 製品の MyTeamwork サービスにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4653 2013-08-22 15:19 2013-07-2 Show GitHub Exploit DB Packet Storm
224816 6.8 警告 WinSCP
Debian
Simon Tatham
Novell		 - PuTTY および WinSCP などの製品における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2013-4852 2013-08-21 20:03 2013-07-9 Show GitHub Exploit DB Packet Storm
224817 2.1 注意 Simon Tatham - PuTTY の rsa_verify 関数におけるプライベート RSA および DSA 鍵を破られる脆弱性 CWE-200
情報漏えい 		CVE-2013-4208 2013-08-21 20:00 2013-07-14 Show GitHub Exploit DB Packet Storm
224818 4.3 警告 Simon Tatham - PuTTY の sshbn.c におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4207 2013-08-21 19:58 2013-08-5 Show GitHub Exploit DB Packet Storm
224819 6.8 警告 Simon Tatham - PuTTY の sshbn.c 内の modmul 関数におけるヒープベースのバッファアンダーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-4206 2013-08-21 19:54 2013-07-9 Show GitHub Exploit DB Packet Storm
224820 2.6 注意 OWS - Drupal 用 scald モジュールの MEE サブモジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-5315 2013-08-21 19:52 2013-07-24 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197821 5.4 MEDIUM
Adjacent 		sloan optima_eaf-100_firmware
optima_eaf-150_firmware
optima_eaf-200_firmware
optima_eaf-225_firmware
optima_eaf-250_firmware
optima_eaf-275_firmware
optima_eaf-350_firmware
optima_eaf… 		There exists an unauthenticated BLE Interface in Sloan SmartFaucets including Optima EAF, Optima ETF/EBF, BASYS EFX, and Flushometers including SOLIS. The vulnerability allows for unauthenticated kin… CWE-306
Missing Authentication for Critical Function 		CVE-2021-20107 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197822 6.7 MEDIUM
Local 		tenable nessus Nessus versions 8.13.2 and earlier were found to contain a privilege escalation vulnerability which could allow a Nessus administrator user to upload a specially crafted file that could lead to gaini… NVD-CWE-noinfo
CVE-2021-20079 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197823 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to an open redirect in Safari_init.php due to an improperly sanitized 'ref' parameter. CWE-601
Open Redirect 		CVE-2021-20105 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197824 8.1 HIGH
Network 		machform machform Machform prior to version 16 is vulnerable to unauthenticated remote code execution due to insufficient sanitization of file attachments uploaded with forms through upload.php. CWE-434
 Unrestricted Upload of File with Dangerous Type  		CVE-2021-20104 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197825 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to stored cross-site scripting due to insufficient sanitization of file attachments uploaded with forms through upload.php. CWE-79
Cross-site Scripting 		CVE-2021-20103 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197826 8.8 HIGH
Network 		machform machform Machform prior to version 16 is vulnerable to cross-site request forgery due to a lack of CSRF tokens in place. CWE-352
 Origin Validation Error 		CVE-2021-20102 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197827 6.1 MEDIUM
Network 		machform machform Machform prior to version 16 is vulnerable to HTTP host header injection due to improperly validated host headers. This could cause a victim to receive malformed content. CWE-74
Injection 		CVE-2021-20101 2024-11-21 14:45 2021-06-30 Show GitHub Exploit DB Packet Storm
197828 6.7 MEDIUM
Local 		tenable nessus Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex… NVD-CWE-noinfo
CVE-2021-20100 2024-11-21 14:45 2021-06-28 Show GitHub Exploit DB Packet Storm
197829 6.7 MEDIUM
Local 		tenable nessus Nessus Agent 8.2.4 and earlier for Windows were found to contain multiple local privilege escalation vulnerabilities which could allow an authenticated, local administrator to run specific Windows ex… NVD-CWE-noinfo
CVE-2021-20099 2024-11-21 14:45 2021-06-28 Show GitHub Exploit DB Packet Storm
197830 7.5 HIGH
Network 		sonicwall sonicos
sonicosv 		A vulnerability in SonicOS where the HTTP server response leaks partial memory by sending a crafted HTTP request, this can potentially lead to an internal sensitive data disclosure vulnerability. CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-20019 2024-11-21 14:45 2021-06-24 Show GitHub Exploit DB Packet Storm