Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 17, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228181	6.8	警告	IBM	-	UNIX 用の IBM Sterling Connect:Direct におけるファイルシステムの読み取り権限および書き込み権限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2989	2013-05-30 16:37	2013-05-14	Show	GitHub Exploit DB Packet Storm

228182	4.3	警告	IBM	-	IBM Tivoli Monitoring の Tivoli Enterprise Portal browser クライアントにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0576	2013-05-30 16:36	2013-05-17	Show	GitHub Exploit DB Packet Storm

228183	4.3	警告	IBM	-	IBM WebSphere DataPower SOA アプライアンスにおけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0499	2013-05-30 16:34	2013-05-17	Show	GitHub Exploit DB Packet Storm

228184	7.2	危険	レッドハット	-	Red Hat livecd-tools における権限を取得される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2069	2013-05-30 14:07	2013-05-23	Show	GitHub Exploit DB Packet Storm

228185	4.9	警告	マイクロソフト	-	Microsoft Windows の win32k.sys の EPATHOBJ::bFlatten 関数におけるサービス運用妨害 (DoS) の脆弱性	CWE-22 パス・トラバーサル	CVE-2013-3661	2013-05-29 16:54	2013-05-17	Show	GitHub Exploit DB Packet Storm

228186	5	警告	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における重要な情報を取得される脆弱性	CWE-255 証明書・パスワード管理	CVE-2013-2959	2013-05-29 16:37	2013-05-13	Show	GitHub Exploit DB Packet Storm

228187	3.5	注意	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2957	2013-05-29 16:37	2013-05-13	Show	GitHub Exploit DB Packet Storm

228188	7.5	危険	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite における SQL インジェクションの脆弱性	CWE-89 SQLインジェクション	CVE-2013-2956	2013-05-29 16:36	2013-05-13	Show	GitHub Exploit DB Packet Storm

228189	3.5	注意	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-2955	2013-05-29 16:35	2013-05-13	Show	GitHub Exploit DB Packet Storm

228190	5	警告	IBM	-	IBM InfoSphere Optim Data Growth for Oracle E-Business Suite におけるアクセス権を取得される脆弱性	CWE-287 不適切な認証	CVE-2013-2954	2013-05-29 16:35	2013-05-13	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 17, 2026, 4:19 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194071	5.5	MEDIUM Local	gpac	gpac	There is a Null Pointer Dereference in function filter_core/filter_pck.c:gf_filter_pck_new_alloc_internal in GPAC 1.0.1. The pid comes from function av1dmx_parse_flush_sample, the ctx.opid maybe NULL…	CWE-476 NULL Pointer Dereference	CVE-2021-30015	2024-11-21 15:03	2021-04-20	Show	GitHub Exploit DB Packet Storm

194072	6.5	MEDIUM Network	textpattern	textpattern	Textpattern V4.8.4 contains an arbitrary file upload vulnerability where a plug-in can be loaded in the background without any security verification, which may lead to obtaining system permissions.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-30209	2024-11-21 15:03	2021-04-15	Show	GitHub Exploit DB Packet Storm

194073	8.8	HIGH Network	apache	openoffice	The project received a report that all versions of Apache OpenOffice through 4.1.8 can open non-http(s) hyperlinks. The problem has existed since about 2006 and the issue is also in 4.1.9. If the lin…	CWE-610 Externally Controlled Reference to a Resource in Another Sphere	CVE-2021-30245	2024-11-21 15:03	2021-04-16	Show	GitHub Exploit DB Packet Storm

194074	9.8	CRITICAL Network	jazzband	django_debug_toolbar	A SQL Injection issue in the SQL Panel in Jazzband Django Debug Toolbar before 1.11.1, 2.x before 2.2.1, and 3.x before 3.2.1 allows attackers to execute SQL statements by changing the raw_sql input …	CWE-89 SQL Injection	CVE-2021-30459	2024-11-21 15:03	2021-04-15	Show	GitHub Exploit DB Packet Storm

194075	9.8	CRITICAL Network	zerof	expert	The ZEROF Expert pro/2.0 application for mobile devices allows SQL Injection via the Authorization header to the /v2/devices/add endpoint.	CWE-89 SQL Injection	CVE-2021-30176	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm

194076	9.8	CRITICAL Network	zerof	web_server	ZEROF Web Server 1.0 (April 2021) allows SQL Injection via the /HandleEvent endpoint for the login page.	CWE-89 SQL Injection	CVE-2021-30175	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm

194077	5.4	MEDIUM Network	remoteclinic	remote_clinic	Cross Site Scripting (XSS) in Remote Clinic v2.0 via the First Name or Last Name field on staff/register.php.	CWE-79 Cross-site Scripting	CVE-2021-30044	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm

194078	5.4	MEDIUM Network	remoteclinic	remote_clinic	Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Clinic Name", "Clinic Address", "Clinic City", or "Clinic Contact" field on clinics/register.php	CWE-79 Cross-site Scripting	CVE-2021-30042	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm

194079	5.4	MEDIUM Network	remoteclinic	remote_clinic	Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Fever" or "Blood Pressure" field on the patients/register-report.php.	CWE-79 Cross-site Scripting	CVE-2021-30039	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm

194080	5.4	MEDIUM Network	remoteclinic	remote_clinic	Cross Site Scripting (XSS) in Remote Clinic v2.0 via the Symptons field on patients/register-report.php.	CWE-79 Cross-site Scripting	CVE-2021-30034	2024-11-21 15:03	2021-04-13	Show	GitHub Exploit DB Packet Storm