Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":July 1, 2026, 12:08 p.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show
Exploit
PoC
Search
227991 6.9 警告 Canonical - Ubuntu の Linux Kernel パッケージで配布される特定の perf 用 Ubuntu ビルドプロシージャにおける権限を取得される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1060 2013-10-29 18:41 2013-09-9 Show GitHub Exploit DB Packet Storm
227992 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1713 2013-10-29 18:40 2013-08-6 Show GitHub Exploit DB Packet Storm
227993 6.8 警告 Ben Gillbanks - TimThumb における任意のコードをアップロードされる脆弱性 CWE-20
不適切な入力確認
CVE-2011-4106 2013-10-29 18:38 2011-08-1 Show GitHub Exploit DB Packet Storm
227994 10 危険 Mozilla Foundation - 複数の Mozilla 製品の crypto.generateCRMFRequest 関数における任意の JavaScript コードを実行される脆弱性 CWE-20
不適切な入力確認
CVE-2013-1710 2013-10-29 18:38 2013-08-6 Show GitHub Exploit DB Packet Storm
227995 4.3 警告 Mozilla Foundation - 複数の Mozilla 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS)
CVE-2013-1709 2013-10-29 18:37 2013-08-6 Show GitHub Exploit DB Packet Storm
227996 10 危険 Mozilla Foundation - 複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性 CWE-noinfo
情報不足
CVE-2013-1701 2013-10-29 18:35 2013-08-6 Show GitHub Exploit DB Packet Storm
227997 9.3 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-399
リソース管理の問題
CVE-2013-1738 2013-10-29 18:28 2013-09-17 Show GitHub Exploit DB Packet Storm
227998 5 警告 Mozilla Foundation - 複数の Mozilla 製品におけるアクセス制限を回避される脆弱性 CWE-264
認可・権限・アクセス制御
CVE-2013-1737 2013-10-29 18:20 2013-09-17 Show GitHub Exploit DB Packet Storm
227999 10 危険 Mozilla Foundation - 複数の Mozilla 製品における任意のコードを実行される脆弱性 CWE-119
バッファエラー
CVE-2013-1736 2013-10-29 18:19 2013-09-17 Show GitHub Exploit DB Packet Storm
228000 5 警告 Wireshark - Wireshark の PPP 解析機能におけるバッファオーバーフローの脆弱性 CWE-119
バッファエラー
CVE-2013-4076 2013-10-29 18:04 2013-05-29 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:July 1, 2026, 4:27 a.m.

No CVSS Level
Attach Vector
Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194101 5.3 MEDIUM
Network
splunk splunk The Splunk Enterprise REST API allows enumeration of usernames via the lockout error message. The potential vulnerability impacts Splunk Enterprise instances before 8.1.7 when configured to repress v… CWE-203
 Information Exposure Through Discrepancy
CVE-2021-33845 2024-11-21 15:09 2022-05-7 Show GitHub Exploit DB Packet Storm
194102 5.4 MEDIUM
Network
rsa archer RSA Archer 6.x through 6.9 SP1 P4 (6.9.1.4) allows stored XSS. CWE-79
Cross-site Scripting
CVE-2021-33616 2024-11-21 15:09 2022-04-4 Show GitHub Exploit DB Packet Storm
194103 8.8 HIGH
Network
libsdl simple_directmedia_layer There is a heap overflow problem in video/SDL_pixels.c in SDL (Simple DirectMedia Layer) 2.x to 2.0.18 versions. By crafting a malicious .BMP file, an attacker can cause the application using this li… CWE-787
 Out-of-bounds Write
CVE-2021-33657 2024-11-21 15:09 2022-04-2 Show GitHub Exploit DB Packet Storm
194104 7.2 HIGH
Network
softwareag mashzone_nextgen MashZone NextGen through 10.7 GA allows a remote authenticated user, with access to the admin console, to upload a new JDBC driver that can execute arbitrary commands on the underlying host. This occ… NVD-CWE-noinfo
CVE-2021-33523 2024-11-21 15:09 2022-03-31 Show GitHub Exploit DB Packet Storm
194105 7.2 HIGH
Network
softwareag mashzone_nextgen MashZone NextGen through 10.7 GA has an SSRF vulnerability that allows an attacker to interact with arbitrary TCP services, by abusing the feature to check the availability of a PPM connection. This … CWE-918
Server-Side Request Forgery (SSRF) 
CVE-2021-33581 2024-11-21 15:09 2022-03-31 Show GitHub Exploit DB Packet Storm
194106 6.1 MEDIUM
Network
enhanced-github_project enhanced-github A Cross Site Scripting (XSS) vulnerabililty exists in enhanced-github v5.0.11 via the file name parameter. CWE-79
Cross-site Scripting
CVE-2021-33961 2024-11-21 15:09 2022-03-23 Show GitHub Exploit DB Packet Storm
194107 5.4 MEDIUM
Network
x2engine x2crm A Cross-Site Scripting (XSS) attack can cause arbitrary code (javascript) to run in a user’s browser while the browser is connected to a trusted website. As the vehicle for the attack, the applicatio… CWE-79
Cross-site Scripting
CVE-2021-33853 2024-11-21 15:09 2022-03-17 Show GitHub Exploit DB Packet Storm
194108 7.8 HIGH
Local
huawei atune atune before 0.3-0.8 log in as a local user and run the curl command to access the local atune url interface to escalate the local privilege or modify any file. Authentication is not forcibly enabled… CWE-306
Missing Authentication for Critical Function
CVE-2021-33658 2024-11-21 15:09 2022-03-12 Show GitHub Exploit DB Packet Storm
194109 5.5 MEDIUM
Local
rockcarry ffjpeg The function bitstr_tell at bitstr.c in ffjpeg commit 4ab404e has a NULL pointer dereference. CWE-476
 NULL Pointer Dereference
CVE-2021-34122 2024-11-21 15:09 2022-03-11 Show GitHub Exploit DB Packet Storm
194110 5.4 MEDIUM
Network
metaphorcreations post_duplicator A cross-site scripting (XSS) attack can cause arbitrary code (JavaScript) to run in a user's browser and can use an application as the vehicle for the attack. The XSS payload given in the "Duplicate … CWE-79
Cross-site Scripting
CVE-2021-33852 2024-11-21 15:09 2022-03-11 Show GitHub Exploit DB Packet Storm