Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 21, 2026, noon

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
226711	5.1	警告	RightHere LLC	-	WordPress 用 Complete Gallery Manager プラグインの frames/upload-images.php における任意のコードを実行される脆弱性	CWE-Other その他	CVE-2013-5962	2013-10-2 14:43	2013-09-19	Show	GitHub Exploit DB Packet Storm

226712	6.8	警告	Danny Morris	-	WordPress 用 Lazy SEO プラグインの lazyseo.php における任意の PHP コードを実行される脆弱性	CWE-Other その他	CVE-2013-5961	2013-10-2 14:24	2013-09-22	Show	GitHub Exploit DB Packet Storm

226713	4	警告	レッドハット	-	libvirt の qemu driver におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-2230	2013-10-2 14:13	2013-07-30	Show	GitHub Exploit DB Packet Storm

226714	5	警告	レッドハット	-	libvirt の interface/interface_backend_netcf.c 内の virConnectListAllInterfaces メソッドにおけるメモリ二重解放の脆弱性	CWE-399 リソース管理の問題	CVE-2013-2218	2013-10-2 13:59	2013-07-1	Show	GitHub Exploit DB Packet Storm

226715	4.3	警告	シスコシステムズ	-	Cisco Identity Services Engine の Mobile Device Management ポータルにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-5504	2013-10-1 19:54	2013-09-28	Show	GitHub Exploit DB Packet Storm

226716	5	警告	シスコシステムズ	-	Cisco Video Surveillance Operations Manager の管理 Web インターフェイスにおける配信動画を見られる脆弱性	CWE-287 不適切な認証	CVE-2013-3417	2013-10-1 19:53	2013-09-30	Show	GitHub Exploit DB Packet Storm

226717	5	警告	シスコシステムズ	-	Cisco IOS XR の CRS Carrier-Grade サービスエンジンおよび ASR 9000 Integrated Service Module におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-5498	2013-10-1 19:53	2013-09-26	Show	GitHub Exploit DB Packet Storm

226718	6.3	警告	シスコシステムズ	-	Cisco Unified Computing System の PALO アダプターカード上で稼働するリモートデバッグシェルにおける権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-1313	2013-10-1 19:52	2013-09-26	Show	GitHub Exploit DB Packet Storm

226719	4.3	警告	アップル	-	Apple iOS の Sandbox サブシステムにおけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-5154	2013-10-1 18:17	2013-09-18	Show	GitHub Exploit DB Packet Storm

226720	3.7	注意	アップル	-	Apple iOS のパスコードロックにおけるパスコード要求を回避される脆弱性	CWE-362 競合状態	CVE-2013-5147	2013-10-1 18:14	2013-09-18	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 21, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
195281	7.5	HIGH Network	rust-lang	rust	In the standard library in Rust before 1.50.0, read_to_end() does not validate the return value from Read in an unsafe context. This bug could lead to a buffer overflow.	CWE-252 Unchecked Return Value	CVE-2021-28875	2024-11-21 15:00	2021-04-12	Show	GitHub Exploit DB Packet Storm

195282	7.0	HIGH Local	erlang	erlang\/otp	A local privilege escalation vulnerability was discovered in Erlang/OTP prior to version 23.2.3. By adding files to an existing installation's directory, a local attacker could hijack accounts of oth…	CWE-426 Untrusted Search Path	CVE-2021-29221	2024-11-21 15:00	2021-04-9	Show	GitHub Exploit DB Packet Storm

195283	7.8	HIGH Local	linux fedoraproject debian netapp	linux_kernel fedora debian_linux cloud_backup solidfire hci_management_node h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware<…	BPF JIT compilers in the Linux kernel through 5.11.12 have incorrect computation of branch displacements, allowing them to execute arbitrary code within the kernel context. This affects arch/x86/net/…	CWE-77 Command Injection	CVE-2021-29154	2024-11-21 15:00	2021-04-9	Show	GitHub Exploit DB Packet Storm

195284	9.8	CRITICAL Network	nagios	network_analyzer	SQL injection vulnerability in Nagios Network Analyzer before 2.4.3 via the o[col] parameter to api/checks/read/.	CWE-89 SQL Injection	CVE-2021-28925	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195285	6.1	MEDIUM Network	nagios	network_analyzer	Self Authenticated XSS in Nagios Network Analyzer before 2.4.2 via the nagiosna/groups/queries page.	CWE-79 Cross-site Scripting	CVE-2021-28924	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195286	5.5	MEDIUM Local	asus	gputweak_ii	AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to trigger a stack-based buffer overflow. This could enable low-privileged users to achieve Denial of Servi…	CWE-787 Out-of-bounds Write	CVE-2021-28686	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195287	7.8	HIGH Local	asus	gputweak_ii	AsIO2_64.sys and AsIO2_32.sys in ASUS GPUTweak II before 2.3.0.3 allow low-privileged users to interact directly with physical memory (by calling one of several driver routines that map physical memo…	NVD-CWE-Other	CVE-2021-28685	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195288	7.8	HIGH Local	libretro	retroarch	The text-to-speech engine in libretro RetroArch for Windows 1.9.0 passes unsanitized input to PowerShell through platform_win32.c via the accessibility_speak_windows function, which allows attackers …	CWE-78 OS Command	CVE-2021-28927	2024-11-21 15:00	2021-04-8	Show	GitHub Exploit DB Packet Storm

195289	6.5	MEDIUM Local	linux debian	linux_kernel debian_linux	The fix for XSA-365 includes initialization of pointers such that subsequent cleanup code wouldn't use uninitialized or stale values. This initialization went too far and may under certain conditions…	CWE-665 Improper Initialization	CVE-2021-28688	2024-11-21 15:00	2021-04-7	Show	GitHub Exploit DB Packet Storm

195290	5.5	MEDIUM Local	linuxfoundation sylabs	umoci singularity	Open Container Initiative umoci before 0.4.7 allows attackers to overwrite arbitrary host paths via a crafted image that causes symlink traversal when "umoci unpack" or "umoci raw unpack" is used.	CWE-20 Improper Input Validation	CVE-2021-29136	2024-11-21 15:00	2021-04-7	Show	GitHub Exploit DB Packet Storm