Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 24, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226161	5.1	警告	Drupal	-	Drupal の form API における任意のコードを実行するようなアプリケーション固有の影響を誘発される脆弱性	CWE-94 コード・インジェクション	CVE-2013-6385	2013-12-10 15:12	2013-11-20	Show	GitHub Exploit DB Packet Storm

226162	6.8	警告	Steven Jones	-	Drupal 用 Context モジュールの plugins/context_reaction_block.inc 内の _json_decode 関数における任意の PHP コードを実行される脆弱性	CWE-94 コード・インジェクション	CVE-2013-4446	2013-12-10 15:12	2013-10-16	Show	GitHub Exploit DB Packet Storm

226163	4.9	警告	Steven Jones	-	Drupal 用 Context モジュールの json レンダリング機能におけるブロックのアクセストークンを推測される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-4445	2013-12-10 15:11	2013-10-16	Show	GitHub Exploit DB Packet Storm

226164	4.3	警告	Sven Fuchs	-	Ruby 用 i18n gem の exceptions.rb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-4492	2013-12-10 12:38	2013-12-3	Show	GitHub Exploit DB Packet Storm

226165	4.3	警告	Ruby on Rails project	-	Ruby on Rails の actionpack/lib/action_view/helpers/text_helper.rb におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6416	2013-12-10 12:29	2013-12-3	Show	GitHub Exploit DB Packet Storm

226166	7.2	危険	Novell	-	SUSE horde5 パッケージにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-1090	2013-12-9 18:21	2013-12-4	Show	GitHub Exploit DB Packet Storm

226167	4.3	警告	The Jamroom Network	-	Jamroom 用 Search モジュールにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6804	2013-12-9 18:08	2013-11-13	Show	GitHub Exploit DB Packet Storm

226168	4.3	警告	Ganglia	-	Ganglia Web の header.php におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6395	2013-12-9 17:50	2013-11-22	Show	GitHub Exploit DB Packet Storm

226169	4.3	警告	Claroline Consortium	-	Claroline におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-6267	2013-12-9 15:54	2013-11-25	Show	GitHub Exploit DB Packet Storm

226170	7.5	危険	Dokeos	-	Dokeos における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-6341	2013-12-9 14:29	2013-11-27	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 24, 2026, 4 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
202081	7.8	HIGH Local	cisco	anyconnect_secure_mobility_client	Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to hijack DLL or executab…	CWE-427 Uncontrolled Search Path Element	CVE-2021-1426	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202082	7.8	HIGH Local	cisco	enterprise_nfv_infrastructure_software	A vulnerability in Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, local attacker to perform a command injection attack on an affected device. The vulnerability is …	-	CVE-2021-1421	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202083	6.1	MEDIUM Network	cisco	ucs_manager integrated_management_controller encs_5100_firmware encs_5400_firmware c220_m6_firmware c225_m6_firmware c240_m6_firmware c245_m6_firmware c125_m5_firmware c220…	A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web pa…	-	CVE-2021-1397	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202084	8.1	HIGH Network	cisco	unified_communications_manager_im_and_presence_service	Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service could allow an authenticated, remote attacker to conduct SQL injection…	CWE-89 SQL Injection	CVE-2021-1365	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202085	8.1	HIGH Network	cisco	unified_communications_manager_im_and_presence_service	Multiple vulnerabilities in the web-based management interface of Cisco Unified Communications Manager IM & Presence Service could allow an authenticated, remote attacker to conduct SQL injection…	-	CVE-2021-1363	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202086	8.8	HIGH Adjacent	cisco	sd-wan_vmanage catalyst_sd-wan_manager	A vulnerability in the web-based messaging service interface of Cisco SD-WAN vManage Software could allow an unauthenticated, adjacent attacker to bypass authentication and authorization and modify t…	NVD-CWE-Other	CVE-2021-1284	2024-11-21 14:44	2021-05-6	Show	GitHub Exploit DB Packet Storm

202087	7.5	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	Multiple vulnerabilities in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (…	-	CVE-2021-1504	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

202088	7.5	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	A vulnerability in the SIP inspection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to c…	NVD-CWE-noinfo	CVE-2021-1501	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

202089	5.3	MEDIUM Network	cisco snort	firepower_threat_defense ios_xe snort	Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerabili…	CWE-755 Improper Handling of Exceptional Conditions	CVE-2021-1495	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm

202090	7.1	HIGH Network	cisco	firepower_threat_defense adaptive_security_appliance_software	A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to ca…	-	CVE-2021-1493	2024-11-21 14:44	2021-04-30	Show	GitHub Exploit DB Packet Storm