Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 10, 2026, 10 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228001	10	危険	Mozilla Foundation	-	複数の Mozilla 製品のブラウザエンジンにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0769	2013-02-25 15:41	2013-01-8	Show	GitHub Exploit DB Packet Storm

228002	4.3	警告	Sourcefabric	-	Newscoop におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0730	2013-02-25 15:38	2013-02-1	Show	GitHub Exploit DB Packet Storm

228003	6.2	警告	Linux	-	Linux Kernel の security/integrity/evm/evm_crypto.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0313	2013-02-25 15:37	2013-01-27	Show	GitHub Exploit DB Packet Storm

228004	6.2	警告	Fedora Project レッドハット	-	RHEL および Fedora Rawhide の pam_ssh_agent_auth モジュールにおける重要な情報を取得される脆弱性	CWE-20 不適切な入力確認	CVE-2012-5536	2013-02-25 15:34	2013-02-22	Show	GitHub Exploit DB Packet Storm

228005	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-noinfo 情報不足	CVE-2013-0746	2013-02-22 18:48	2013-01-8	Show	GitHub Exploit DB Packet Storm

228006	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品の AutoWrapperChanger クラスにおける任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2013-0745	2013-02-22 18:44	2013-01-8	Show	GitHub Exploit DB Packet Storm

228007	9.3	危険	Mozilla Foundation	-	複数の Mozilla 製品における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2013-0744	2013-02-22 18:41	2013-01-8	Show	GitHub Exploit DB Packet Storm

228008	5.1	警告	IBM	-	IBM Tivoli Storage Manager のクライアントにおける不特定のアクセス権を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-0472	2013-02-22 15:59	2012-01-31	Show	GitHub Exploit DB Packet Storm

228009	4.3	警告	IBM	-	IBM Tivoli Storage Manager のクライアントにおけるサービス運用妨害 (DoS) の脆弱性	CWE-noinfo 情報不足	CVE-2013-0471	2013-02-22 15:59	2012-01-31	Show	GitHub Exploit DB Packet Storm

228010	3.5	注意	IBM	-	複数の IBM 製品におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0478	2013-02-22 15:58	2013-02-21	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 10, 2026, 5 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194411	8.1	HIGH Network	johnsoncontrols	kantech_kt-1_door_controller_firmware	The KT-1 door controller is susceptible to replay or man-in-the-middle attacks where an attacker can record and replay TCP packets. This issue affects Johnson Controls KT-1 all versions up to and inc…	CWE-294 Authentication Bypass by Capture-replay	CVE-2021-27662	2024-11-21 14:58	2021-09-15	Show	GitHub Exploit DB Packet Storm

194412	6.1	MEDIUM Network	apache	zeppelin	Cross Site Scripting vulnerability in markdown interpreter of Apache Zeppelin allows an attacker to inject malicious scripts. This issue affects Apache Zeppelin Apache Zeppelin versions prior to 0.9.…	CWE-79 Cross-site Scripting	CVE-2021-27578	2024-11-21 14:58	2021-09-3	Show	GitHub Exploit DB Packet Storm

194413	5.3	MEDIUM Network	hashicorp	vault	HashiCorp Vault Enterprise 0.9.2 through 1.6.2 allowed the read of license metadata from DR secondaries without authentication. Fixed in 1.6.3.	CWE-306 Missing Authentication for Critical Function	CVE-2021-27668	2024-11-21 14:58	2021-09-1	Show	GitHub Exploit DB Packet Storm

194414	6.1	MEDIUM Network	easycorp	zentao	A cross site scripting (XSS) issue in EasyCorp ZenTao 12.5.3 allows remote attackers to execute arbitrary web script via various areas such as data-link-creator.	CWE-79 Cross-site Scripting	CVE-2021-27558	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194415	4.3	MEDIUM Network	easycorp	zentao	A cross-site request forgery (CSRF) vulnerability in the Cron job tab in EasyCorp ZenTao 12.5.3 allows attackers to update the fields of a Cron job.	CWE-352 Origin Validation Error	CVE-2021-27557	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194416	7.2	HIGH Network	easycorp	zentao	The Cron job tab in EasyCorp ZenTao 12.5.3 allows remote attackers (who have admin access) to execute arbitrary code by setting the type parameter to System.	CWE-78 OS Command	CVE-2021-27556	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194417	9.8	CRITICAL Network	johnsoncontrols	ac2000_firmware	A vulnerability in versions 10.1 through 10.5 of Johnson Controls CEM Systems AC2000 allows a remote attacker to access to the system without adequate authorization. This issue affects: Johnson Contr…	NVD-CWE-Other	CVE-2021-27663	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194418	3.5	LOW Network	acquia	mautic	The function mt_rand is used to generate session tokens, this function is cryptographically flawed due to its nature being one pseudorandomness, an attacker can take advantage of the cryptographicall…	CWE-338 Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)	CVE-2021-27913	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194419	5.4	MEDIUM Network	acquia	mautic	Mautic versions before 3.3.4/4.0.0 are vulnerable to an inline JS XSS attack when viewing Mautic assets by utilizing inline JS in the title and adding a broken image URL as a remote asset. This can o…	CWE-79 Cross-site Scripting	CVE-2021-27912	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm

194420	6.1	MEDIUM Network	acquia	mautic	Mautic versions before 3.3.4/4.0.0 are vulnerable to an inline JS XSS attack through the contact's first or last name and triggered when viewing a contact's details page then clicking on the action d…	CWE-79 Cross-site Scripting	CVE-2021-27911	2024-11-21 14:58	2021-08-31	Show	GitHub Exploit DB Packet Storm