Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 20, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228081	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の mozSpellChecker::SetCurrentDictionary 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3960	2013-06-11 14:57	2012-08-28	Show	GitHub Exploit DB Packet Storm

228082	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsRangeUpdater::SelAdjDeleteNode 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3959	2013-06-11 14:54	2012-08-28	Show	GitHub Exploit DB Packet Storm

228083	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsHTMLEditRules::DeleteNonTableElements 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3958	2013-06-11 14:50	2012-08-28	Show	GitHub Exploit DB Packet Storm

228084	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の nsBlockFrame::MarkLineDirty 関数におけるヒープベースのバッファオーバーフローの脆弱性	CWE-119 バッファエラー	CVE-2012-3957	2013-06-11 14:45	2012-08-28	Show	GitHub Exploit DB Packet Storm

228085	10	危険	Mozilla Foundation	-	複数の Mozilla 製品の MediaStreamGraphThreadRunnable::Run 関数における任意のコードを実行される脆弱性	CWE-399 リソース管理の問題	CVE-2012-3956	2013-06-11 14:42	2012-08-28	Show	GitHub Exploit DB Packet Storm

228086	6.8	警告	LibTIFF	-	LibTIFF の tiff2pdf におけるサービス運用妨害 (クラッシュ) の脆弱性	CWE-119 バッファエラー	CVE-2012-3401	2013-06-11 14:34	2012-08-13	Show	GitHub Exploit DB Packet Storm

228087	6.8	警告	Linux	-	Linux Kernel の net/batman-adv/icmp_socket.c におけるサービス運用妨害 (DoS) の脆弱性	CWE-119 バッファエラー	CVE-2011-4604	2013-06-10 15:27	2011-12-12	Show	GitHub Exploit DB Packet Storm

228088	5	警告	Webmin Project	-	Webmin の file/edit_html.cgi における任意のファイルを読まれる脆弱性	CWE-287 不適切な認証	CVE-2012-2983	2013-06-10 14:04	2012-09-11	Show	GitHub Exploit DB Packet Storm

228089	6.5	警告	Webmin Project	-	Webmin の file/show.cgi における任意のコマンドを実行される脆弱性	CWE-Other その他	CVE-2012-2982	2013-06-10 14:02	2012-09-11	Show	GitHub Exploit DB Packet Storm

228090	6	警告	Webmin Project	-	Webmin における任意の Perl コードを実行される脆弱性	CWE-20 不適切な入力確認	CVE-2012-2981	2013-06-10 14:00	2012-09-11	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 20, 2026, 4:01 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194121	6.1	MEDIUM Network	froala	froala_editor	Froala Editor 3.2.6 is affected by Cross Site Scripting (XSS). Under certain conditions, a base64 crafted string leads to persistent Cross-site scripting (XSS) vulnerability within the hyperlink crea…	CWE-79 Cross-site Scripting	CVE-2021-30109	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194122	6.1	MEDIUM Network	eng	knowage	Knowage Suite before 7.4 is vulnerable to cross-site scripting (XSS). An attacker can inject arbitrary external script in '/knowagecockpitengine/api/1.0/pages/execute' via the 'SBI_HOST' parameter.	CWE-79 Cross-site Scripting	CVE-2021-30058	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194123	4.8	MEDIUM Network	eng	knowage	A stored HTML injection vulnerability exists in Knowage Suite version 7.1. An attacker can inject arbitrary HTML in "/restful-services/2.0/analyticalDrivers" via the 'LABEL' and 'NAME' parameters.	CWE-74 Injection	CVE-2021-30057	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194124	5.4	MEDIUM Network	eng	knowage	Knowage Suite before 7.4 is vulnerable to reflected cross-site scripting (XSS). An attacker can inject arbitrary web script in /restful-services/publish via the 'EXEC_FROM' parameter that can lead to…	CWE-79 Cross-site Scripting	CVE-2021-30056	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194125	8.8	HIGH Network	eng	knowage	A SQL injection vulnerability in Knowage Suite version 7.1 exists in the documentexecution/url analytics driver component via the 'par_year' parameter when running a report.	CWE-89 SQL Injection	CVE-2021-30055	2024-11-21 15:03	2021-04-5	Show	GitHub Exploit DB Packet Storm

194126	7.3	HIGH Network	terra-master	f2-210_firmware	TerraMaster F2-210 devices through 2021-04-03 use UPnP to make the admin web server accessible over the Internet on TCP port 8181, which is arguably inconsistent with the "It is only available on the…	NVD-CWE-Other	CVE-2021-30127	2024-11-21 15:03	2021-04-4	Show	GitHub Exploit DB Packet Storm

194127	6.1	MEDIUM Network	docsifyjs	docsify	docsify 4.12.1 is affected by Cross Site Scripting (XSS) because the search component does not appropriately encode Code Blocks and mishandles the " character.	CWE-79 Cross-site Scripting	CVE-2021-30074	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194128	6.5	MEDIUM Network	lightmeter	controlcenter	Lightmeter ControlCenter 1.1.0 through 1.5.x before 1.5.1 allows anyone who knows the URL of a publicly available Lightmeter instance to access application settings, possibly including an SMTP passwo…	NVD-CWE-noinfo	CVE-2021-30126	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194129	6.1	MEDIUM Network	jamf	jamf	Jamf Pro before 10.28.0 allows XSS related to inventory history, aka PI-009376.	CWE-79 Cross-site Scripting	CVE-2021-30125	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm

194130	9.8	CRITICAL Network	dlink	dir-878_firmware	An issue was discovered in prog.cgi on D-Link DIR-878 1.30B08 devices. Because strcat is misused, there is a stack-based buffer overflow that does not require authentication.	CWE-787 Out-of-bounds Write	CVE-2021-30072	2024-11-21 15:03	2021-04-3	Show	GitHub Exploit DB Packet Storm