Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
224981 5.8 警告 TYPO3 Association - TYPO3 の OpenID エクステンションにおけるオープンリダイレクトの脆弱性 CWE-20
不適切な入力確認 		CVE-2013-7079 2013-12-25 17:31 2013-12-10 Show GitHub Exploit DB Packet Storm
224982 6.5 警告 TYPO3 Association - TYPO3 の Content Editing Wizards コンポーネントにおける任意の PHP オブジェクトをアンシリアライズされる脆弱性 CWE-310
暗号の問題 		CVE-2013-7075 2013-12-25 17:31 2013-12-10 Show GitHub Exploit DB Packet Storm
224983 4 警告 TYPO3 Association - TYPO3 の Content Editing Wizards コンポーネントにおける任意の TYPO3 テーブルの列を読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-7073 2013-12-25 17:30 2013-12-10 Show GitHub Exploit DB Packet Storm
224984 5 警告 Debian
Phil Schwartz
Fedora Project		 - DenyHosts におけるサービス運用妨害 (DoS) の脆弱性 CWE-287
不適切な認証 		CVE-2013-6890 2013-12-25 16:25 2013-12-22 Show GitHub Exploit DB Packet Storm
224985 5.4 警告 シスコシステムズ - Cisco IOS XE の VTY 認証の実装における認証を回避される脆弱性 CWE-287
不適切な認証 		CVE-2013-6979 2013-12-25 16:10 2013-12-24 Show GitHub Exploit DB Packet Storm
224986 9.3 危険 レッドハット - Red Hat Subscription Asset Manager の Candlepin における脆弱性 CWE-287
不適切な認証 		CVE-2013-6439 2013-12-25 15:41 2013-12-19 Show GitHub Exploit DB Packet Storm
224987 4.3 警告 ZNC - Windows 用 ZNC で使用される ZNC の Fish プラグインにおけるスタックベースのバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2013-7049 2013-12-25 15:10 2013-12-11 Show GitHub Exploit DB Packet Storm
224988 4.3 警告 レッドハット - Red Hat JBoss Portal の GateIn Portal コンポーネントにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-4424 2013-12-25 14:51 2013-12-16 Show GitHub Exploit DB Packet Storm
224989 3.5 注意 IBM - IBM Security Access Manager for Enterprise Single Sign-On の IMS サーバにおけるログファイルを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-5420 2013-12-25 14:34 2013-12-20 Show GitHub Exploit DB Packet Storm
224990 7.5 危険 レッドハット - Red Hat Enterprise MRG Grid の cumin 用の Web インターフェースにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2013-4461 2013-12-25 14:05 2013-12-17 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
196881 8.1 HIGH
Network 		synology diskstation_manager
vs960hd_firmware
skynas_firmware
diskstation_manager_unified_controller 		Stack-based buffer overflow vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to execute arbitrary code via syno_finder… CWE-119
Incorrect Access of Indexable Resource ('Range Error')  		CVE-2021-26561 2024-11-21 14:56 2021-02-27 Show GitHub Exploit DB Packet Storm
196882 7.4 HIGH
Network 		synology diskstation_manager
vs960hd_firmware
skynas_firmware
diskstation_manager_unified_controller 		Cleartext transmission of sensitive information vulnerability in synoagentregisterd in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows man-in-the-middle attackers to spoof servers via … CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2021-26560 2024-11-21 14:56 2021-02-27 Show GitHub Exploit DB Packet Storm
196883 8.1 HIGH
Network 		microsoft
fedoraproject 		visual_studio_2019
.net_core
powershell_core
.net
fedora 		.NET Core Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2021-26701 2024-11-21 14:56 2021-02-26 Show GitHub Exploit DB Packet Storm
196884 7.8 HIGH
Local 		microsoft visual_studio_code_npm-script_extension Visual Studio Code npm-script Extension Remote Code Execution Vulnerability NVD-CWE-noinfo
CVE-2021-26700 2024-11-21 14:56 2021-02-26 Show GitHub Exploit DB Packet Storm
196885 7.2 HIGH
Network 		arubanetworks clearpass_policy_manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based m… CWE-78
OS Command  		CVE-2021-26680 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm
196886 7.2 HIGH
Network 		arubanetworks clearpass_policy_manager A remote authenticated command injection vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in the ClearPass web-based m… CWE-78
OS Command  		CVE-2021-26679 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm
196887 7.8 HIGH
Local 		arubanetworks clearpass_policy_manager A local authenticated escalation of privilege vulnerability was discovered in Aruba ClearPass Policy Manager version(s): Prior to 6.9.5, 6.8.8-HF1, 6.7.14-HF1. A vulnerability in ClearPass OnGuard co… NVD-CWE-noinfo
CVE-2021-26677 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm
196888 5.3 MEDIUM
Network 		rangerstudio directus In Directus 8.x through 8.8.1, an attacker can learn sensitive information such as the version of the CMS, the PHP version used by the site, and the name of the DBMS, simply by view the result of the… CWE-312
 Cleartext Storage of Sensitive Information 		CVE-2021-26595 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm
196889 8.8 HIGH
Network 		rangerstudio directus In Directus 8.x through 8.8.1, an attacker can switch to the administrator role (via the PATCH method) without any control by the back end. NOTE: This vulnerability only affects products that are no … CWE-269
 Improper Privilege Management 		CVE-2021-26594 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm
196890 7.5 HIGH
Network 		rangerstudio directus In Directus 8.x through 8.8.1, an attacker can see all users in the CMS using the API /users/{id}. For each call, they get in response a lot of information about the user (such as email address, firs… CWE-200
Information Exposure 		CVE-2021-26593 2024-11-21 14:56 2021-02-24 Show GitHub Exploit DB Packet Storm