Vulnerability Search Top

Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

Vulnerability Information Search Top

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

Urgent
Important
Warning
Low

JVN Vulnerability Information

Update Date":June 12, 2026, 6 p.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Impact Show	Exploit PoC Search
228421	5	警告	シトリックス・システムズ	-	Citrix Access Gateway Standard Edition における脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-2263	2013-03-22 13:46	2013-03-5	Show	GitHub Exploit DB Packet Storm

228422	7.2	危険	アップル	-	Apple iOS および Apple TV のカーネルにおける権限を取得される脆弱性	CWE-noinfo 情報不足	CVE-2013-0981	2013-03-22 12:30	2013-03-19	Show	GitHub Exploit DB Packet Storm

228423	2.1	注意	アップル	-	Apple iOS のパスコードロックの実装におけるパスコード要求を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0980	2013-03-22 12:29	2013-03-19	Show	GitHub Exploit DB Packet Storm

228424	1.9	注意	アップル	-	Apple iOS の Lockdown における任意のファイルのパーミッションを変更される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2013-0979	2013-03-22 12:29	2013-03-19	Show	GitHub Exploit DB Packet Storm

228425	2.1	注意	アップル	-	Apple iOS および Apple TV のカーネルにおける ASLR 保護メカニズムを回避される脆弱性	CWE-200 情報漏えい	CVE-2013-0978	2013-03-22 12:28	2013-03-19	Show	GitHub Exploit DB Packet Storm

228426	4.6	警告	アップル	-	Apple iOS および Apple TV の dyld におけるコード署名の要求を回避される脆弱性	CWE-noinfo 情報不足	CVE-2013-0977	2013-03-22 12:27	2013-03-19	Show	GitHub Exploit DB Packet Storm

228427	7.2	危険	IBM	-	UNIX および Linux 上で稼働する IBM InfoSphere Information Server におけるアクセス制限を回避される脆弱性	CWE-264 認可・権限・アクセス制御	CVE-2012-5938	2013-03-22 11:19	2013-03-20	Show	GitHub Exploit DB Packet Storm

228428	4.3	警告	IBM	-	IBM Sterling Order Management におけるクロスサイトスクリプティングの脆弱性	CWE-79 クロスサイト・スクリプティング（XSS）	CVE-2013-0506	2013-03-22 11:18	2013-03-18	Show	GitHub Exploit DB Packet Storm

228429	5.5	警告	IBM	-	IBM Sterling Order Management における XPath インジェクション攻撃を実行される脆弱性	CWE-20 CWE-200	CVE-2013-0505	2013-03-22 11:18	2013-03-18	Show	GitHub Exploit DB Packet Storm

228430	4	警告	CloudBees	-	CloudBees Jenkins におけるサービス運用妨害 (DoS) の脆弱性	CWE-20 不適切な入力確認	CVE-2013-0331	2013-03-22 10:18	2013-02-16	Show	GitHub Exploit DB Packet Storm

NVD Vulnerability Information

Update Date:June 12, 2026, 4:20 a.m.

No	CVSS	Level Attach Vector	Vendor Name	Project Name	Title	CWE	CVE	Update Date	Publication Date	Show Affected	Exploit PoC Search
194171	7.8	HIGH Local	linux netapp	linux_kernel cloud_backup h410c_firmware h300s_firmware h500s_firmware h700s_firmware h300e_firmware h500e_firmware h700e_firmware h410s_firmware	Guest triggered use-after-free in Linux xen-netback A malicious or buggy network PV frontend can force Linux netback to disable the interface and terminate the receive kernel thread associated with q…	CWE-416 Use After Free	CVE-2021-28691	2024-11-21 15:00	2021-06-29	Show	GitHub Exploit DB Packet Storm

194172	5.5	MEDIUM Local	dovecot fedoraproject	dovecot fedora	Dovecot before 2.3.15 allows ../ Path Traversal. An attacker with access to the local filesystem can trick OAuth2 authentication into using an HS256 validation key from an attacker-controlled locatio…	CWE-22 Path Traversal	CVE-2021-29157	2024-11-21 15:00	2021-06-28	Show	GitHub Exploit DB Packet Storm

194173	9.8	CRITICAL Network	zohocorp	manageengine_adselfservice_plus	Zoho ManageEngine ADSelfService Plus through 6101 is vulnerable to unauthenticated Remote Code Execution while changing the password.	CWE-78 OS Command	CVE-2021-28958	2024-11-21 15:00	2021-06-25	Show	GitHub Exploit DB Packet Storm

194174	9.8	CRITICAL Network	qnap	qts	A command injection vulnerability has been reported to affect QNAP NAS running legacy versions of QTS. If exploited, this vulnerability allows attackers to execute arbitrary commands in a compromised…	-	CVE-2021-28800	2024-11-21 15:00	2021-06-24	Show	GitHub Exploit DB Packet Storm

194175	4.8	MEDIUM Network	get-simple	getsimplecms	Cross Site Scripting vulnerability in GetSimpleCMS 3.3.16 in admin/upload.php by adding comments or jpg and other file header information to the content of xla, pages, and gzip files,	CWE-79 Cross-site Scripting	CVE-2021-28977	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm

194176	7.2	HIGH Network	get-simple	getsimplecms	Remote Code Execution vulnerability in GetSimpleCMS before 3.3.16 in admin/upload.php via phar filess.	CWE-434 Unrestricted Upload of File with Dangerous Type	CVE-2021-28976	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm

194177	7.5	HIGH Network	synology	diskstation_manager diskstation_manager_unified_controller	Improper limitation of a pathname to a restricted directory ('Path Traversal') vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to …	-	CVE-2021-29087	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm

194178	7.5	HIGH Network	synology	diskstation_manager diskstation_manager_unified_controller	Exposure of sensitive information to an unauthorized actor vulnerability in webapi component in Synology DiskStation Manager (DSM) before 6.2.3-25426-3 allows remote attackers to obtain sensitive inf…	CWE-200 Information Exposure	CVE-2021-29086	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm

194179	7.5	HIGH Network	synology	diskstation_manager diskstation_manager_unified_controller	Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in file sharing management component in Synology DiskStation Manager (DSM) before 6.2.…	-	CVE-2021-29085	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm

194180	7.5	HIGH Network	synology	diskstation_manager diskstation_manager_unified_controller	Improper neutralization of special elements in output used by a downstream component ('Injection') vulnerability in Security Advisor report management component in Synology DiskStation Manager (DSM) …	-	CVE-2021-29084	2024-11-21 15:00	2021-06-23	Show	GitHub Exploit DB Packet Storm