Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 27, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
226861 3.7 注意 libvirt.org - libvirt における異なるデバイスを関連づける脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-2693 2013-01-22 17:19 2012-06-17 Show GitHub Exploit DB Packet Storm
226862 5 警告 GNOME Project - gdk-pixbuf の io-xbm.c における整数オーバーフローの脆弱性 CWE-189
数値処理の問題 		CVE-2012-2370 2013-01-22 17:15 2012-04-14 Show GitHub Exploit DB Packet Storm
226863 7.5 危険 IBM - IBM Rational Automation Framework におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-4816 2013-01-22 17:12 2012-12-14 Show GitHub Exploit DB Packet Storm
226864 2.1 注意 Linux - Linux Kernel と一緒に配布される hypervkvpd における Netlink 通信を偽装される脆弱性 CWE-20
不適切な入力確認 		CVE-2012-2669 2013-01-22 17:11 2012-07-16 Show GitHub Exploit DB Packet Storm
226865 3.6 注意 X.Org Foundation
XFree86 Project		 - X.Org および XFree86 用 xfs フォントサーバにおけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2012-1699 2013-01-22 16:45 2012-07-24 Show GitHub Exploit DB Packet Storm
226866 5 警告 The PHP Group - PHP の ext/openssl/openssl.c におけるプロセスメモリから重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2012-6113 2013-01-22 16:06 2012-03-16 Show GitHub Exploit DB Packet Storm
226867 4.9 警告 シスコシステムズ - Cisco Nexus 7000 シリーズのスイッチ上で稼働する Cisco NX-OS におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-399
リソース管理の問題 		CVE-2012-6396 2013-01-22 16:05 2013-01-10 Show GitHub Exploit DB Packet Storm
226868 6.8 警告 BitTorrent, Inc. - uTorrent の create torrent dialog 機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー 		CVE-2009-5134 2013-01-22 16:04 2013-01-18 Show GitHub Exploit DB Packet Storm
226869 6.3 警告 シスコシステムズ - Cisco Adaptive Security Appliances におけるサービス運用妨害 (デバイスクラッシュ) の脆弱性 CWE-20
不適切な入力確認 		CVE-2012-6395 2013-01-22 16:03 2013-01-12 Show GitHub Exploit DB Packet Storm
226870 4.3 警告 IBM - IBM Intelligent Operations Center におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2012-6360 2013-01-22 16:02 2012-12-14 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 28, 2026, 4:16 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
195661 5.4 MEDIUM
Network 		dell emc_sourceone Dell EMC SourceOne, versions 7.2SP10 and prior, contain a Stored Cross-Site Scripting vulnerability. A remote low privileged attacker may potentially exploit this vulnerability, to hijack user sessio… CWE-79
Cross-site Scripting 		CVE-2021-21515 2024-11-21 14:48 2021-03-2 Show GitHub Exploit DB Packet Storm
195662 4.4 MEDIUM
Local 		zte zxr10_8900e_firmware A ZTE product has a memory leak vulnerability. Due to the product's improper handling of memory release in certain scenarios, a local attacker with device permissions repeatedly attenuated the optica… CWE-401
 Missing Release of Memory after Effective Lifetime 		CVE-2021-21724 2024-11-21 14:48 2021-02-26 Show GitHub Exploit DB Packet Storm
195663 6.1 MEDIUM
Network 		aiohttp
debian
fedoraproject 		aiohttp
debian_linux
fedora 		aiohttp is an asynchronous HTTP client/server framework for asyncio and Python. In aiohttp before version 3.7.4 there is an open redirect vulnerability. A maliciously crafted link to an aiohttp-based… - CVE-2021-21330 2024-11-21 14:48 2021-02-26 Show GitHub Exploit DB Packet Storm
195664 5.3 MEDIUM
Network 		vapor_project vapor Vapor is a web framework for Swift. In Vapor before version 4.40.1, there is a DoS attack against anyone who Bootstraps a metrics backend for their Vapor app. The following is the attack vector: 1. s… - CVE-2021-21328 2024-11-21 14:48 2021-02-26 Show GitHub Exploit DB Packet Storm
195665 5.4 MEDIUM
Network 		jenkins artifact_repository_parameter Jenkins Artifact Repository Parameter Plugin 1.0.0 and earlier does not escape parameter names and descriptions, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attacker… CWE-79
Cross-site Scripting 		CVE-2021-21622 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195666 5.3 MEDIUM
Network 		jenkins support_core Jenkins Support Core Plugin 2.72 and earlier provides the serialized user authentication as part of the "About user (basic authentication details only)" information, which can include the session ID … CWE-200
Information Exposure 		CVE-2021-21621 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195667 4.3 MEDIUM
Network 		jenkins claim A cross-site request forgery (CSRF) vulnerability in Jenkins Claim Plugin 2.18.1 and earlier allows attackers to change claims. CWE-352
 Origin Validation Error 		CVE-2021-21620 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195668 5.4 MEDIUM
Network 		jenkins claim Jenkins Claim Plugin 2.18.1 and earlier does not escape the user display name, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers who are able to control the disp… CWE-79
Cross-site Scripting 		CVE-2021-21619 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195669 5.4 MEDIUM
Network 		jenkins repository_connector Jenkins Repository Connector Plugin 2.0.2 and earlier does not escape parameter names and descriptions for past builds, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by a… CWE-79
Cross-site Scripting 		CVE-2021-21618 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm
195670 8.8 HIGH
Network 		jenkins configuration_slicing A cross-site request forgery (CSRF) vulnerability in Jenkins Configuration Slicing Plugin 1.51 and earlier allows attackers to apply different slice configurations. CWE-352
 Origin Validation Error 		CVE-2021-21617 2024-11-21 14:48 2021-02-25 Show GitHub Exploit DB Packet Storm