Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 2:01 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227081 7.5 危険 OS4Ed - openSIS の ajax.php における任意の PHP コードを実行される脆弱性 CWE-94
コード・インジェクション
CVE-2013-1349 2013-12-11 19:50 2013-05-15 Show GitHub Exploit DB Packet Storm
227082 2.1 注意 CMS Made Simple - CMS Made Simple の admin/editevent.php におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-3929 2013-12-11 17:45 2013-12-6 Show GitHub Exploit DB Packet Storm
227083 6.8 警告 Sharetronix - Sharetronix におけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反
CVE-2013-5355 2013-12-11 17:36 2013-12-5 Show GitHub Exploit DB Packet Storm
227084 7.5 危険 Sharetronix - Sharetronix における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション
CVE-2013-5354 2013-12-11 17:35 2013-12-5 Show GitHub Exploit DB Packet Storm
227085 4.7 警告 Linux - Linux Kernel の ipc/shm.c におけるサービス運用妨害 (DoS) の脆弱性 CWE-362
競合状態
CVE-2013-7026 2013-12-11 17:34 2013-11-29 Show GitHub Exploit DB Packet Storm
227086 4.7 警告 Linux - Linux Kernel の net/ipv6/ip6_fib.c の fib6_add 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-6431 2013-12-11 17:33 2013-10-13 Show GitHub Exploit DB Packet Storm
227087 3.6 注意 Linux - Linux Kernel の kernel/trace/trace_event_perf.c の perf_trace_event_perm 関数における関数のトレースを有効にされる脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-2930 2013-12-11 17:31 2013-11-29 Show GitHub Exploit DB Packet Storm
227088 6.1 警告 Linux - Linux Kernel の net/wireless/radiotap.c の ieee80211_radiotap_iterator_init 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-7027 2013-12-11 17:29 2013-11-4 Show GitHub Exploit DB Packet Storm
227089 6.8 警告 FFmpeg - FFmpeg の libavcodec/jpeg2000dec.c の jpeg2000_decode_tile 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-7024 2013-12-11 16:59 2013-10-13 Show GitHub Exploit DB Packet Storm
227090 6.8 警告 FFmpeg - FFmpeg の libavcodec/parser.c 内の ff_combine_frame 関数におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー
CVE-2013-7023 2013-12-11 16:52 2013-09-26 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
203241 6.5 MEDIUM
Network
sap cla-assistant In CLA-Assistant, versions before 2.8.5, due to improper access control an authenticated user could access API endpoints which are not intended to be used by the user. This could impact the integrity… NVD-CWE-Other
CVE-2021-21471 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203242 6.5 MEDIUM
Network
sap business_warehouse The BW Database Interface does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges that allows the user to practically read out any database ta… CWE-862
 Missing Authorization
CVE-2021-21468 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203243 4.3 MEDIUM
Network
sap banking_services SAP Banking Services (Generic Market Data) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges. An unauthorized User is allowed to display… CWE-862
 Missing Authorization
CVE-2021-21467 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203244 9.9 CRITICAL
Network
sap business_warehouse The BW Database Interface allows an attacker with low privileges to execute any crafted database queries, exposing the backend database. An attacker can include their own SQL commands which the datab… CWE-89
SQL Injection
CVE-2021-21465 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203245 4.3 MEDIUM
Network
sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-20
 Improper Input Validation 
CVE-2021-21464 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203246 4.4 MEDIUM
Local
sap enterprise_performance_management SAP EPM Add-in for Microsoft Office, version - 1010 and SAP EPM Add-in for SAP Analysis Office, version - 2.8, allows an authenticated attacker with user privileges to parse malicious XML files which… CWE-611
XXE
CVE-2021-21470 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203247 7.5 HIGH
Network
sap netweaver_master_data_management When security guidelines for SAP NetWeaver Master Data Management running on windows have not been thoroughly reviewed, it might be possible for an external operator to try and set custom paths in th… CWE-200
Information Exposure
CVE-2021-21469 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203248 8.8 HIGH
Network
sap bw\/4hana
business_warehouse
SAP Business Warehouse, versions 700, 701, 702, 711, 730, 731, 740, 750, 782 and SAP BW/4HANA, versions 100, 200, allow a low privileged attacker to inject code using a remote enabled function module… CWE-94
Code Injection
CVE-2021-21466 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203249 8.8 HIGH
Network
sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-125
Out-of-bounds Read
CVE-2021-21463 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm
203250 8.8 HIGH
Network
sap 3d_visual_enterprise_viewer SAP 3D Visual Enterprise Viewer, version - 9, allows a user to open manipulated PCX file received from untrusted sources which results in crashing of the application and becoming temporarily unavaila… CWE-787
 Out-of-bounds Write
CVE-2021-21462 2024-11-21 14:48 2021-01-13 Show GitHub Exploit DB Packet Storm