Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 31, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
225421 4.3 警告 Shushu Inbar - Drupal 用 Exposed Filter Data モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6575 2013-07-1 14:37 2012-09-5 Show GitHub Exploit DB Packet Storm
225422 4.3 警告 Antti Alamaki - Drupal 用 Fonecta verify モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6574 2013-07-1 14:37 2012-09-8 Show GitHub Exploit DB Packet Storm
225423 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の nsContentUtils::RemoveScriptBlocker 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1681 2013-06-28 15:11 2013-05-14 Show GitHub Exploit DB Packet Storm
225424 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の nsFrameList::FirstChild 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1680 2013-06-28 15:08 2013-05-14 Show GitHub Exploit DB Packet Storm
225425 5 警告 Apache Software Foundation - Subversion の mod_dav_svn Apache HTTPD サーバモジュールにおけるサービス運用妨害 (DoS) の脆弱性 CWE-Other
その他 		CVE-2013-1847 2013-06-28 15:07 2013-03-29 Show GitHub Exploit DB Packet Storm
225426 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の mozilla::plugins::child::_geturlnotify 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1679 2013-06-28 15:07 2013-05-14 Show GitHub Exploit DB Packet Storm
225427 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の _cairo_xlib_surface_add_glyph 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1678 2013-06-28 15:05 2013-05-14 Show GitHub Exploit DB Packet Storm
225428 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の gfxSkipCharsIterator::SetOffsets 関数における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-1677 2013-06-28 15:03 2013-05-14 Show GitHub Exploit DB Packet Storm
225429 10 危険 Mozilla Foundation - Mozilla Firefox および Thunderbird の SelectionIterator::GetNextSegment 関数における任意のコードを実行される脆弱性 CWE-119
バッファエラー 		CVE-2013-1676 2013-06-28 15:01 2013-05-14 Show GitHub Exploit DB Packet Storm
225430 4.3 警告 Mozilla Foundation - Mozilla Firefox および Thunderbird における重要な情報を取得される脆弱性 CWE-119
バッファエラー 		CVE-2013-1675 2013-06-28 14:58 2013-05-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 31, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
197101 9.8 CRITICAL
Network 		rsshub rsshub RSSHub is an open source, easy to use, and extensible RSS feed generator. In RSSHub before version 7f1c430 (non-semantic versioning) there is a risk of code injection. Some routes use `eval` or `Func… - CVE-2021-21278 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
197102 5.4 MEDIUM
Network 		flarum sticky Flarum is an open source discussion platform for websites. The "Flarum Sticky" extension versions 0.1.0-beta.14 and 0.1.0-beta.15 has a cross-site scripting vulnerability. A change in release beta 14… - CVE-2021-21283 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
197103 6.5 MEDIUM
Network 		tendermint tendermint Tendermint Core is an open source Byzantine Fault Tolerant (BFT) middleware that takes a state transition machine - written in any programming language - and securely replicates it on many machines. … - CVE-2021-21271 2024-11-21 14:47 2021-01-27 Show GitHub Exploit DB Packet Storm
197104 4.3 MEDIUM
Network 		report_project
oracle 		report
communications_cloud_native_core_network_slice_selection_function
communications_pricing_design_center 		The MediaWiki "Report" extension has a Cross-Site Request Forgery (CSRF) vulnerability. Before fixed version, there was no protection against CSRF checks on Special:Report, so requests to report a re… CWE-352
 Origin Validation Error 		CVE-2021-21275 2024-11-21 14:47 2021-01-26 Show GitHub Exploit DB Packet Storm
197105 5.5 MEDIUM
Local 		octopus octopusdsc OctopusDSC is a PowerShell module with DSC resources that can be used to install and configure an Octopus Deploy Server and Tentacle agent. In OctopusDSC version 4.0.977 and earlier a customer API ke… - CVE-2021-21270 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm
197106 7.7 HIGH
Network 		deislabs oras ORAS is open source software which enables a way to push OCI Artifacts to OCI Conformant registries. ORAS is both a CLI for initial testing and a Go Module. In ORAS from version 0.4.0 and before vers… CWE-59
Link Following 		CVE-2021-21272 2024-11-21 14:47 2021-01-26 Show GitHub Exploit DB Packet Storm
197107 5.4 MEDIUM
Network 		bigprof online_invoicing_system Online Invoicing System (OIS) is open source software which is a lean invoicing system for small businesses, consultants and freelancers created using AppGini. In OIS version 4.0 there is a stored XS… - CVE-2021-21260 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm
197108 6.1 MEDIUM
Network 		hedgedoc hedgedoc HedgeDoc is open source software which lets you create real-time collaborative markdown notes. In HedgeDoc before version 1.7.2, an attacker can inject arbitrary JavaScript into a HedgeDoc note, whic… - CVE-2021-21259 2024-11-21 14:47 2021-01-23 Show GitHub Exploit DB Packet Storm
197109 5.3 MEDIUM
Network 		onlinevotingsystem_project onlinevotingsystem OnlineVotingSystem is an open source project hosted on GitHub. OnlineVotingSystem before version 1.1.2 hashes user passwords without a salt, which is vulnerable to dictionary attacks. Therefore there… CWE-916
 Use of Password Hash With Insufficient Computational Effort 		CVE-2021-21253 2024-11-21 14:47 2021-01-22 Show GitHub Exploit DB Packet Storm
197110 6.5 MEDIUM
Network 		pysaml2_project
debian 		pysaml2
debian_linux 		PySAML2 is a pure python implementation of SAML Version 2 Standard. PySAML2 before 6.5.0 has an improper verification of cryptographic signature vulnerability. Users of pysaml2 that use the default C… - CVE-2021-21239 2024-11-21 14:47 2021-01-22 Show GitHub Exploit DB Packet Storm