Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228001 7.8 危険 シスコシステムズ - Cisco IOS の VRF-aware NAT 機能におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-362
競合状態 		CVE-2013-1142 2013-04-23 17:13 2013-03-27 Show GitHub Exploit DB Packet Storm
228002 6.4 警告 Ruby on Rails project - Ruby on Rails の Active Record コンポーネントにおけるデータ型インジェクション攻撃を実行される脆弱性 CWE-20
不適切な入力確認 		CVE-2013-3221 2013-04-23 17:12 2013-04-22 Show GitHub Exploit DB Packet Storm
228003 4.9 警告 Linux - Linux Kernel の net/vmw_vsock/af_vsock.c における重要な情報を取得される脆弱性 CWE-200
CWE-DesignError
CVE-2013-3237 2013-04-23 16:32 2013-04-7 Show GitHub Exploit DB Packet Storm
228004 4.9 警告 Linux - Linux Kernel の net/vmw_vsock/vmci_transport.c における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3236 2013-04-23 16:32 2013-04-7 Show GitHub Exploit DB Packet Storm
228005 10 危険 日立 - Hitachi IT Operations Director におけるバッファオーバーフローの脆弱性 CWE-noinfo
情報不足 		- 2013-04-23 15:12 2013-04-19 Show GitHub Exploit DB Packet Storm
228006 10 危険 Opera Software ASA - Opera における脆弱性 CWE-noinfo
情報不足 		CVE-2013-3211 2013-04-23 15:08 2013-04-4 Show GitHub Exploit DB Packet Storm
228007 5 警告 Opera Software ASA - Opera における重要な情報を取得される脆弱性 CWE-200
情報漏えい 		CVE-2013-3210 2013-04-23 15:07 2013-04-4 Show GitHub Exploit DB Packet Storm
228008 4.9 警告 Puppet
Canonical		 - Puppet における任意のカタログを読まれる脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1652 2013-04-23 13:54 2013-03-12 Show GitHub Exploit DB Packet Storm
228009 6.8 警告 Lester Chan - WordPress 用 WP-DownloadManager プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2697 2013-04-23 12:23 2013-04-5 Show GitHub Exploit DB Packet Storm
228010 4.3 警告 Novell - Novell GroupWise の WebAccess におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1086 2013-04-23 12:14 2013-04-16 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194331 7.8 HIGH
Local 		serenityos serenityos SerenityOS fixed as of c9f25bca048443e317f1994ba9b106f2386688c3 contains a buffer overflow vulnerability in LibTextCode through opening a crafted file. CWE-120
Classic Buffer Overflow 		CVE-2021-28874 2024-11-21 15:00 2021-04-6 Show GitHub Exploit DB Packet Storm
194332 7.8 HIGH
Local 		svelte svelte The unofficial Svelte extension before 104.8.0 for Visual Studio Code allows attackers to execute arbitrary code via a crafted workspace configuration. NVD-CWE-noinfo
CVE-2021-29261 2024-11-21 15:00 2021-04-5 Show GitHub Exploit DB Packet Storm
194333 7.8 HIGH
Local 		vim_project vim VSCodeVim before 1.19.0 allows attackers to execute arbitrary code via a crafted workspace configuration. NVD-CWE-noinfo
CVE-2021-28832 2024-11-21 15:00 2021-04-5 Show GitHub Exploit DB Packet Storm
194334 5.3 MEDIUM
Network 		magpierss_project magpierss Because of no validation on a curl command in MagpieRSS 0.72 in the /extlib/Snoopy.class.inc file, when you send a request to the /scripts/magpie_debug.php or /scripts/magpie_simple.php page, it's po… CWE-918
Server-Side Request Forgery (SSRF)  		CVE-2021-28941 2024-11-21 15:00 2021-04-3 Show GitHub Exploit DB Packet Storm
194335 9.8 CRITICAL
Network 		magpierss_project magpierss Because of a incorrect escaped exec command in MagpieRSS in 0.72 in the /extlib/Snoopy.class.inc file, it is possible to add a extra command to the curl binary. This creates an issue on the /scripts/… CWE-116
 Improper Encoding or Escaping of Output 		CVE-2021-28940 2024-11-21 15:00 2021-04-3 Show GitHub Exploit DB Packet Storm
194336 9.8 CRITICAL
Network 		dmasoftlab dma_radius_manager DMA Softlab Radius Manager 4.4.0 assigns the same session cookie to every admin session. The cookie is valid when the admin is logged in, but is invalid (temporarily) during times when the admin is l… CWE-287
Improper Authentication 		CVE-2021-29012 2024-11-21 15:00 2021-04-2 Show GitHub Exploit DB Packet Storm
194337 6.1 MEDIUM
Network 		dmasoftlab dma_radius_manager DMA Softlab Radius Manager 4.4.0 is affected by Cross Site Scripting (XSS) via the description, name, or address field (under admin.php). CWE-79
Cross-site Scripting 		CVE-2021-29011 2024-11-21 15:00 2021-04-2 Show GitHub Exploit DB Packet Storm
194338 6.5 MEDIUM
Network 		fireeye email_malware_protection_system eMPS 9.0.1.923211 on the Central Management of FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the job_id parameter to the email search feature. Accordi… CWE-89
SQL Injection 		CVE-2021-28970 2024-11-21 15:00 2021-04-2 Show GitHub Exploit DB Packet Storm
194339 6.5 MEDIUM
Network 		fireeye email_malware_protection_system eMPS 9.0.1.923211 on FireEye EX 3500 devices allows remote authenticated users to conduct SQL injection attacks via the sort_by parameter to the email search feature. According to the vendor, the iss… CWE-89
SQL Injection 		CVE-2021-28969 2024-11-21 15:00 2021-04-2 Show GitHub Exploit DB Packet Storm
194340 9.1 CRITICAL
Network 		netmask_project netmask Improper input validation of octal strings in netmask npm package v1.0.6 and below allows unauthenticated remote attackers to perform indeterminate SSRF, RFI, and LFI attacks on many of the dependent… CWE-704
 Incorrect Type Conversion or Cast 		CVE-2021-28918 2024-11-21 15:00 2021-04-1 Show GitHub Exploit DB Packet Storm