Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 2, 2026, noon
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 224871 | 9.3 | 危険 | XnSoft | - | XnView におけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-2577 | 2013-08-19 14:31 | 2013-07-18 | Show | GitHub Exploit DB Packet Storm |
| 224872 | 4.3 | 警告 | Novell Canonical MongoDB Inc. |
- | MongoDB で使用される mongo-python-driver におけるサービス運用妨害 (DoS) の脆弱性 |
CWE-DesignError
|
CVE-2013-2132 | 2013-08-19 13:46 | 2013-05-31 | Show | GitHub Exploit DB Packet Storm |
| 224873 | 4.3 | 警告 | Happyworm ownCloud |
- | ownCloud Server などの製品で使用される jPlayer の Flash SWF コンポーネントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-1942 | 2013-08-19 13:32 | 2013-03-21 | Show | GitHub Exploit DB Packet Storm |
| 224874 | 10 | 危険 | Apache Software Foundation | - | Apache Open For Business Project における任意の Unified Expression Language 機能を実行される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-2250 | 2013-08-16 11:45 | 2013-07-20 | Show | GitHub Exploit DB Packet Storm |
| 224875 | 4.3 | 警告 | Apache Software Foundation | - | Apache Open For Business Project の Webtools アプリケーションにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-2137 | 2013-08-16 11:37 | 2013-07-20 | Show | GitHub Exploit DB Packet Storm |
| 224876 | 7.5 | 危険 | BigTree CMS | - | BigTree CMS の core/inc/bigtree/cms.php における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-4879 | 2013-08-15 19:02 | 2013-07-3 | Show | GitHub Exploit DB Packet Storm |
| 224877 | 4.3 | 警告 | BigTree CMS | - | BigTree CMS の core/admin/modules/developer/modules/views/add.php におけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-4880 | 2013-08-15 19:00 | 2013-07-17 | Show | GitHub Exploit DB Packet Storm |
| 224878 | 7.5 | 危険 | Moxi9 | - | PHPFox における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-5121 | 2013-08-15 18:39 | 2013-08-7 | Show | GitHub Exploit DB Packet Storm |
| 224879 | 7.5 | 危険 | Moxi9 | - | PHPFox における SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-5120 | 2013-08-15 18:33 | 2013-07-30 | Show | GitHub Exploit DB Packet Storm |
| 224880 | 7.5 | 危険 | LibRaw | - | LibRaw の exposure correction コードにおけるバッファオーバーフローの脆弱性 |
CWE-119
バッファエラー |
CVE-2013-2127 | 2013-08-15 18:04 | 2013-05-24 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 2, 2026, 4:18 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 197681 | 5.4 |
MEDIUM
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… |
CWE-79
Cross-site Scripting |
CVE-2021-20506 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197682 | 5.4 |
MEDIUM
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… |
CWE-79
Cross-site Scripting |
CVE-2021-20504 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197683 | 5.4 |
MEDIUM
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… |
CWE-79
Cross-site Scripting |
CVE-2021-20503 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197684 | 7.1 |
HIGH
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to expose sensitive informati… |
CWE-611
XXE |
CVE-2021-20502 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197685 | 5.4 |
MEDIUM
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… |
CWE-79
Cross-site Scripting |
CVE-2021-20447 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197686 | 5.4 |
MEDIUM
Network |
ibm |
rational_engineering_lifecycle_manager rational_team_concert engineering_workflow_management engineering_lifecycle_management engineering_insights engineering_requirements_quality_assi… |
IBM Jazz Foundation Products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentia… |
CWE-79
Cross-site Scripting |
CVE-2021-20352 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197687 | 7.1 |
HIGH
Network |
ibm | cloud_pak_for_automation | IBM Cloud Pak for Automation 20.0.2 and 20.0.3 IF002 are vulnerable to an XML External Entity Injection (XXE) attack when processing XML data. A remote attacker could exploit this vulnerability to ex… |
CWE-611
XXE |
CVE-2021-20482 | 2024-11-21 14:46 | 2021-03-31 | Show | GitHub Exploit DB Packet Storm |
| 197688 | 7.2 |
HIGH
Network |
linuxfoundation | container_network_interface | An improper limitation of path name flaw was found in containernetworking/cni in versions before 0.8.1. When specifying the plugin to load in the 'type' field in the network configuration, it is poss… |
CWE-22
Path Traversal |
CVE-2021-20206 | 2024-11-21 14:46 | 2021-03-27 | Show | GitHub Exploit DB Packet Storm |
| 197689 | 5.3 |
MEDIUM
Network |
redhat netapp quarkus oracle |
resteasy oncommand_insight quarkus communications_cloud_native_core_console |
A flaw was found in RESTEasy in all versions of RESTEasy up to 4.6.0.Final. The endpoint class and method names are returned as part of the exception response when RESTEasy cannot convert one of the … | - | CVE-2021-20289 | 2024-11-21 14:46 | 2021-03-27 | Show | GitHub Exploit DB Packet Storm |
| 197690 | 6.6 |
MEDIUM
Local |
upx_project | upx | A flaw was found in upx canPack in p_lx_elf.cpp in UPX 3.96. This flaw allows attackers to cause a denial of service (SEGV or buffer overflow and application crash) or possibly have unspecified other… |
CWE-787
Out-of-bounds Write |
CVE-2021-20285 | 2024-11-21 14:46 | 2021-03-27 | Show | GitHub Exploit DB Packet Storm |