Vulnerability Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 2, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
225601	6.5	警告	Project Redcap	-	REDCap におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4609	2013-06-18 17:23	2013-02-15	Show	GitHub Exploit DB Packet Storm

225602	4.3	警告	Project Redcap	-	REDCap におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4608	2013-06-18 17:21	2013-03-1	Show	GitHub Exploit DB Packet Storm

225603	6.5	警告	Project Redcap	-	REDCap における任意のコマンドを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-6567	2013-06-18 17:20	2012-07-27	Show	GitHub Exploit DB Packet Storm

225604	4.3	警告	Project Redcap	-	REDCap におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6566	2013-06-18 17:20	2012-08-17	Show	GitHub Exploit DB Packet Storm

225605	3.5	注意	Project Redcap	-	REDCap におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6565	2013-06-18 17:18	2012-08-24	Show	GitHub Exploit DB Packet Storm

225606	4.3	警告	Project Redcap	-	REDCap におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2012-6564	2013-06-18 17:05	2012-10-2	Show	GitHub Exploit DB Packet Storm

225607	7.5	危険	VMware	-	VMware vCenter Chargeback Manager における任意のコードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-3520	2013-06-18 16:11	2013-06-11	Show	GitHub Exploit DB Packet Storm

225608	10	危険	ヒューレット・パッカード	-	HP Integrated Lights-Out 3 および Integrated Lights-Out 4 における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-2338	2013-06-18 16:06	2013-06-17	Show	GitHub Exploit DB Packet Storm

225609	4.3	警告	ヒューレット・パッカード	-	HP Service Manager および ServiceCenter におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2337	2013-06-18 16:05	2013-06-10	Show	GitHub Exploit DB Packet Storm

225610	5	警告	ヒューレット・パッカード	-	HP Service Manager および ServiceCenter における重要な情報を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-2336	2013-06-18 16:05	2013-06-10	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 2, 2026, 4:18 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
196601	5.3	MEDIUM Adjacent	dell	emc_networker	Dell EMC NetWorker, versions 18.x, 19.1.x, 19.2.x 19.3.x, 19.4, and 19.4.0.1 contain an Improper Certificate Validation vulnerability in the client (NetWorker Management Console) components which use…	CWE-295 Improper Certificate Validation	CVE-2021-21559	2024-11-21 14:48	2021-06-9	Show	GitHub Exploit DB Packet Storm

196602	6.5	MEDIUM Network	zte	zxa10_f821_firmware zxa10_f822_firmware zxa10_f819_firmware zxa10_f832_firmware zxa10_f839_firmware zxa10_f809_firmware zxa10_f822p_firmware zxa10_f832v2_firmware	Some PON MDU devices of ZTE stored sensitive information in plaintext, and users with login authority can obtain it by inputing command. This affects: ZTE PON MDU device ZXA10 F821 V1.7.0P3T22, ZXA10…	CWE-312 Cleartext Storage of Sensitive Information	CVE-2021-21734	2024-11-21 14:48	2021-05-28	Show	GitHub Exploit DB Packet Storm

196603	5.4	MEDIUM Network	jenkins	markdown_formatter	Jenkins Markdown Formatter Plugin 0.1.0 and earlier does not sanitize crafted link target URLs, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with the abilit…	CWE-79 Cross-site Scripting	CVE-2021-21660	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

196604	8.1	HIGH Network	jenkins	urltrigger	Jenkins URLTrigger Plugin 0.48 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21659	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

196605	9.1	CRITICAL Network	jenkins	nuget	Jenkins Nuget Plugin 1.0 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21658	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

196606	8.8	HIGH Network	jenkins	filesystem_trigger	Jenkins Filesystem Trigger Plugin 0.40 and earlier does not configure its XML parser to prevent XML external entity (XXE) attacks.	-	CVE-2021-21657	2024-11-21 14:48	2021-05-26	Show	GitHub Exploit DB Packet Storm

196607	8.8	HIGH Local	microsoft	windows_10	Dell Wyse Windows Embedded System versions WIE10 LTSC 2019 and earlier contain an improper authorization vulnerability. A local authenticated malicious user with low privileges may potentially exploi…	NVD-CWE-Other	CVE-2021-21552	2024-11-21 14:48	2021-05-22	Show	GitHub Exploit DB Packet Storm

196608	8.8	HIGH Network	dell	xtremio_management_server	Dell EMC XtremIO Versions prior to 6.3.3-8, contain a Cross-Site Request Forgery Vulnerability in XMS. A non-privileged attacker could potentially exploit this vulnerability, leading to a privileged …	CWE-352 Origin Validation Error	CVE-2021-21549	2024-11-21 14:48	2021-05-22	Show	GitHub Exploit DB Packet Storm

196609	4.9	MEDIUM Network	zte	zxcdn	The management system of ZXCDN is impacted by the information leak vulnerability. Attackers can make further analysis according to the information returned by the program, and then obtain some sensit…	CWE-200 Information Exposure	CVE-2021-21733	2024-11-21 14:48	2021-05-19	Show	GitHub Exploit DB Packet Storm

196610	7.5	HIGH Network	zte	axon_11_5g_firmware	A mobile phone of ZTE is impacted by improper access control vulnerability. Due to improper permission settings, third-party applications can read some files in the proc file system without authoriza…	NVD-CWE-Other	CVE-2021-21732	2024-11-21 14:48	2021-05-19	Show	GitHub Exploit DB Packet Storm

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed