Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225171	6.8	警告	MediaWiki	-	MediaWiki 用の CentralAuth 拡張機能におけるクロスサイトリクエストフォージェリの脆弱性	CWE-352 同一生成元ポリシー違反	CVE-2012-5394	2013-12-17 16:38	2012-10-3	Show	GitHub Exploit DB Packet Storm

225172	9	危険	マカフィー	-	McAfee Email Gateway における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2013-7104	2013-12-17 16:31	2013-12-3	Show	GitHub Exploit DB Packet Storm

225173	9	危険	マカフィー	-	McAfee Email Gateway における任意のコマンドを実行される脆弱性	CWE-78 OSコマンド・インジェクション	CVE-2013-7103	2013-12-17 16:30	2013-12-3	Show	GitHub Exploit DB Packet Storm

225174	6.5	警告	マカフィー	-	McAfee Email Gateway の /admin/cgi-bin/rpc/doReport/18 における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-7092	2013-12-17 16:29	2013-12-3	Show	GitHub Exploit DB Packet Storm

225175	5	警告	Philippe Jounin	-	Tftpd32 のクライアントにおけるフォーマットストリングの脆弱性	CWE-134 書式文字列の問題	CVE-2013-6809	2013-12-17 15:49	2013-12-1	Show	GitHub Exploit DB Packet Storm

225176	6.8	警告	Xen プロジェクト	-	Xen におけるサービス運用妨害 (DoS) の脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-6400	2013-12-17 15:20	2013-12-10	Show	GitHub Exploit DB Packet Storm

225177	4.3	警告	Munin	-	Munin の Munin::Master::Node におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-6359	2013-12-17 14:52	2013-11-11	Show	GitHub Exploit DB Packet Storm

225178	5	警告	Munin	-	Munin の lib/Munin/Master/HTMLConfig.pm の get_group_tree 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-6048	2013-12-17 14:51	2013-11-11	Show	GitHub Exploit DB Packet Storm

225179	4	警告	SonarSource S.A	-	SonarQube 用 Jenkins Plugin における重要な情報を取得される脆弱性	CWE-310 暗号の問題	CVE-2013-5676	2013-12-17 14:31	2013-12-6	Show	GitHub Exploit DB Packet Storm

225180	4.3	警告	ジュニパーネットワークス	-	Juniper IDP の Web 管理コンポーネントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6957	2013-12-17 14:10	2013-12-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
201841	8.8	HIGH Network	acemetrix	jquery-deparam	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-deparam 0.5.1 allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20087	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201842	8.8	HIGH Network	jquery-sparkle_project	jquery-sparkle	Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') in jquery-sparkle 1.5.2-beta allows a malicious user to inject properties into Object.prototype.	CWE-1321 Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution')	CVE-2021-20084	2024-11-21 14:45	2021-04-24	Show	GitHub Exploit DB Packet Storm

201843	4.9	MEDIUM Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to read an arbitrary file on the remote host.	CWE-22 Path Traversal	CVE-2021-20023	2024-11-21 14:45	2021-04-20	Show	GitHub Exploit DB Packet Storm

201844	9.8	CRITICAL Network	sonicwall	global_management_system	A command execution vulnerability in SonicWall GMS 9.3 allows a remote unauthenticated attacker to locally escalate privilege to root.	CWE-287 Improper Authentication	CVE-2021-20020	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201845	6.1	MEDIUM Network	zohocorp	manageengine_servicedesk_plus	Insufficient output sanitization in ManageEngine ServiceDesk Plus before version 11200 and ManageEngine AssetExplorer before version 6800 allows a remote, unauthenticated attacker to conduct persiste…	CWE-79 Cross-site Scripting	CVE-2021-20080	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201846	7.2	HIGH Network	sonicwall	email_security hosted_email_security	SonicWall Email Security version 10.0.9.x contains a vulnerability that allows a post-authenticated attacker to upload an arbitrary file to the remote host.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-20022	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201847	9.8	CRITICAL Network	sonicwall	email_security hosted_email_security	A vulnerability in the SonicWall Email Security version 10.0.9.x allows an attacker to create an administrative account by sending a crafted HTTP request to the remote host.	CWE-269 Improper Privilege Management	CVE-2021-20021	2024-11-21 14:45	2021-04-10	Show	GitHub Exploit DB Packet Storm

201848	7.8	HIGH Local	qualcomm	aqt1000_firmware pm8005_firmware pm855_firmware pm855p_firmware pm8998_firmware pmi8998_firmware qat3550_firmware qca1062_firmware qca1064_firmware qca2066_firmware qca6…	Memory corruption due to improper input validation while processing IO control which is nonstandard in Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer Electronics Connectivity, Snapd…	CWE-787 Out-of-bounds Write	CVE-2021-1892	2024-11-21 14:45	2021-04-7	Show	GitHub Exploit DB Packet Storm

201849	8.8	HIGH Network	apple debian fedoraproject	safari iphone_os watchos tvos macos ipados debian_linux fedora	A memory corruption issue was addressed with improved validation. This issue is fixed in iOS 14.4.1 and iPadOS 14.4.1, Safari 14.0.3 (v. 14610.4.3.1.7 and 15610.4.3.1.7), watchOS 7.3.2, macOS Big Sur…	CWE-787 Out-of-bounds Write	CVE-2021-1844	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm

201850	9.8	CRITICAL Network	apple	mac_os_x iphone_os tvos watchos ipad_os macos	A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.2, Security Update 2021-001 Catalina, Security Update 2021-001 Mojave, watchOS 7.3, tvOS 14.4, iOS …	NVD-CWE-noinfo	CVE-2021-1818	2024-11-21 14:45	2021-04-3	Show	GitHub Exploit DB Packet Storm