Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 15, 2026, 2 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228391 7.1 危険 シスコシステムズ - Cisco IOS および IOS XE の RSVP プロトコルの実装におけるサービス運用妨害 (DoS) の脆弱性 CWE-119
バッファエラー 		CVE-2013-1143 2013-04-1 20:19 2013-03-27 Show GitHub Exploit DB Packet Storm
228392 8.2 危険 マカフィー - McAfee Virtual Technician および ePO-MVT における任意のファイルを変更または作成される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2012-5879 2013-04-1 16:42 2013-03-15 Show GitHub Exploit DB Packet Storm
228393 7.5 危険 MySQL AB
オラクル		 - MySQL で使用される yaSSL におけるバッファオーバーフローの脆弱性性 CWE-119
バッファエラー 		CVE-2012-0553 2013-04-1 16:02 2012-09-28 Show GitHub Exploit DB Packet Storm
228394 4.9 警告 ISC, Inc. - ISC DHCP におけるサービス運用妨害 (メモリ消費) の脆弱性 CWE-119
バッファエラー 		CVE-2013-2494 2013-04-1 15:47 2013-03-26 Show GitHub Exploit DB Packet Storm
228395 9.3 危険 DELL EMC (旧 EMC Corporation) - EMC Smarts Network Configuration Manager の System Management Console における脆弱性 CWE-noinfo
情報不足 		CVE-2013-2717 2013-04-1 15:40 2013-03-28 Show GitHub Exploit DB Packet Storm
228396 4.3 警告 DELL EMC (旧 EMC Corporation) - 複数の EMC 製品におけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-0936 2013-04-1 15:36 2013-03-28 Show GitHub Exploit DB Packet Storm
228397 2.1 注意 Views Project - Drupal 用 Views モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1878 2013-04-1 15:00 2013-03-20 Show GitHub Exploit DB Packet Storm
228398 2.1 注意 Thomas Seidl - Drupal 用 Search API モジュールにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-2715 2013-04-1 14:58 2013-01-9 Show GitHub Exploit DB Packet Storm
228399 6.4 警告 Chris Desautels - Drupal 用 Node Parameter Control モジュールにおける設定オプションを編集される脆弱性 CWE-264
認可・権限・アクセス制御 		CVE-2013-1859 2013-04-1 14:57 2013-03-13 Show GitHub Exploit DB Packet Storm
228400 2.1 注意 Devsaran - Drupal 用 Simple Corporate テーマにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2013-1787 2013-04-1 14:56 2013-02-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 15, 2026, 4:10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194841 5.4 MEDIUM
Network 		gnu punbb An issue was discovered in PunBB before 1.4.6. An XSS vulnerability in the [email] BBcode tag allows (with authentication) injecting arbitrary JavaScript into any forum message. CWE-79
Cross-site Scripting 		CVE-2021-28968 2024-11-21 15:00 2021-03-23 Show GitHub Exploit DB Packet Storm
194842 4.7 MEDIUM
Local 		linux
fedoraproject
debian
netapp 		linux_kernel
fedora
debian_linux
cloud_backup
solidfire_baseboard_management_controller_firmware
aff_a250_firmware
fas_500f_firmware 		A race condition was discovered in get_old_root in fs/btrfs/ctree.c in the Linux kernel through 5.11.8. It allows attackers to cause a denial of service (BUG) because of a lack of locking on an exten… CWE-362
Race Condition 		CVE-2021-28964 2024-11-21 15:00 2021-03-22 Show GitHub Exploit DB Packet Storm
194843 5.3 MEDIUM
Network 		shibboleth
debian 		service_provider
debian_linux 		Shibboleth Service Provider before 3.2.1 allows content injection because template generation uses attacker-controlled parameters. CWE-74
Injection 		CVE-2021-28963 2024-11-21 15:00 2021-03-22 Show GitHub Exploit DB Packet Storm
194844 8.8 HIGH
Network 		sass_lint_project sass_lint The unofficial vscode-sass-lint (aka Sass Lint) extension through 1.0.7 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted workspace. NOTE: This vulnera… NVD-CWE-noinfo
CVE-2021-28956 2024-11-21 15:00 2021-03-22 Show GitHub Exploit DB Packet Storm
194845 9.8 CRITICAL
Network 		git-bug_project git-bug git-bug before 0.7.2 has an Uncontrolled Search Path Element. It will execute git.bat from the current directory in certain PATH situations (most often seen on Windows). CWE-427
 Uncontrolled Search Path Element 		CVE-2021-28955 2024-11-21 15:00 2021-03-22 Show GitHub Exploit DB Packet Storm
194846 8.8 HIGH
Network 		openwrt openwrt applications/luci-app-ddns/luasrc/model/cbi/ddns/detail.lua in the DDNS package for OpenWrt 19.07 allows remote authenticated users to inject arbitrary commands via POST requests. CWE-78
OS Command  		CVE-2021-28961 2024-11-21 15:00 2021-03-21 Show GitHub Exploit DB Packet Storm
194847 6.1 MEDIUM
Network 		lxml
debian
fedoraproject
netapp
oracle 		lxml
debian_linux
fedora
snapcenter
zfs_storage_appliance_kit 		An XSS vulnerability was discovered in python-lxml's clean module versions before 4.6.3. When disabling the safe_attrs_only and forms arguments, the Cleaner class does not remove the formaction attri… CWE-79
Cross-site Scripting 		CVE-2021-28957 2024-11-21 15:00 2021-03-21 Show GitHub Exploit DB Packet Storm
194848 7.8 HIGH
Local 		bit_project bit In Chris Walz bit before 1.0.5 on Windows, attackers can run arbitrary code via a .exe file in a crafted repository. CWE-427
 Uncontrolled Search Path Element 		CVE-2021-28954 2024-11-21 15:00 2021-03-21 Show GitHub Exploit DB Packet Storm
194849 7.8 HIGH
Local 		c\/c\+\+_advanced_lint_project c\/c\+\+_advanced_lint The unofficial C/C++ Advanced Lint extension before 1.9.0 for Visual Studio Code allows attackers to execute arbitrary binaries if the user opens a crafted repository. CWE-427
 Uncontrolled Search Path Element 		CVE-2021-28953 2024-11-21 15:00 2021-03-21 Show GitHub Exploit DB Packet Storm
194850 7.8 HIGH
Local 		linux
fedoraproject
netapp 		linux_kernel
fedora
cloud_backup
a250_firmware
aff_500f_firmware
fas_500f_firmware
solidfire_baseboard_management_controller_firmware 		An issue was discovered in the Linux kernel through 5.11.8. The sound/soc/qcom/sdm845.c soundwire device driver has a buffer overflow when an unexpected port ID number is encountered, aka CID-1c668e1… CWE-120
Classic Buffer Overflow 		CVE-2021-28952 2024-11-21 15:00 2021-03-21 Show GitHub Exploit DB Packet Storm