Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":June 18, 2026, 12:01 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
228471 7.2 危険 ヒューレット・パッカード - HP Storage Data Protector における権限を取得される脆弱性 CWE-noinfo
情報不足 		CVE-2012-5220 2013-04-30 18:24 2013-04-24 Show GitHub Exploit DB Packet Storm
228472 4 警告 The phpMyAdmin Project - phpMyAdmin の export.php における値を挿入される脆弱性 CWE-noinfo
情報不足 		CVE-2013-3241 2013-04-30 18:23 2013-04-24 Show GitHub Exploit DB Packet Storm
228473 6.5 警告 The phpMyAdmin Project - phpMyAdmin のエクスポート機能におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2013-3240 2013-04-30 18:21 2013-04-24 Show GitHub Exploit DB Packet Storm
228474 6.8 警告 Crunchify - WordPress 用 FourSquare Checkins プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2709 2013-04-30 17:54 2013-04-22 Show GitHub Exploit DB Packet Storm
228475 6.8 警告 Crunchify - WordPress 用 All in One Webmaster プラグインにおけるクロスサイトリクエストフォージェリの脆弱性 CWE-352
同一生成元ポリシー違反 		CVE-2013-2696 2013-04-30 17:52 2013-04-22 Show GitHub Exploit DB Packet Storm
228476 5 警告 Blink Web Effects - WordPress 用 Social Media Widget プラグインにおける任意のファイルのアップロードを強制される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1949 2013-04-30 17:51 2013-04-9 Show GitHub Exploit DB Packet Storm
228477 10 危険 Rob Westgeest - Ruby 用 md2pdf gem の converter.rb における任意のコマンドを実行される脆弱性 CWE-noinfo
情報不足 		CVE-2013-1948 2013-04-30 17:51 2013-04-10 Show GitHub Exploit DB Packet Storm
228478 9.3 危険 Kelly D. Redding - Ruby 用 kelredd-pruview gem における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-1947 2013-04-30 17:50 2013-04-4 Show GitHub Exploit DB Packet Storm
228479 9.3 危険 karteek-docsplit - Ruby 用 Karteek Docsplit gem における任意のコマンドを実行される脆弱性 CWE-78
OSコマンド・インジェクション 		CVE-2013-1933 2013-04-30 17:49 2013-04-1 Show GitHub Exploit DB Packet Storm
228480 6.8 警告 Novell
plataformatec		 - Ruby 用 Devise gem における不正な結果が返される脆弱性 CWE-399
リソース管理の問題 		CVE-2013-0233 2013-04-30 17:48 2013-01-28 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:June 18, 2026, 4 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
194101 9.8 CRITICAL
Network 		phpnuke php-nuke There is a SQL Injection vulnerability in PHP-Nuke 8.3.3 in the User Registration section, leading to remote code execution. This occurs because the U.S. state is not validated to be two letters, and… CWE-89
SQL Injection 		CVE-2021-30177 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194102 8.8 HIGH
Network 		dmasoftlab radius_manager DMA Softlab Radius Manager 4.4.0 allows CSRF with impacts such as adding new manager accounts via admin.php. CWE-352
 Origin Validation Error 		CVE-2021-30147 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194103 5.5 MEDIUM
Local 		linux
fedoraproject 		linux_kernel
fedora 		An issue was discovered in the Linux kernel through 5.11.11. synic_get in arch/x86/kvm/hyperv.c has a NULL pointer dereference for certain accesses to the SynIC Hyper-V context, aka CID-919f4ebc5987. CWE-476
 NULL Pointer Dereference 		CVE-2021-30178 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194104 5.4 MEDIUM
Network 		seafile seafile Seafile 7.0.5 (2019) allows Persistent XSS via the "share of library functionality." CWE-79
Cross-site Scripting 		CVE-2021-30146 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194105 5.4 MEDIUM
Network 		liquidfiles liquidfiles LiquidFiles 3.4.15 has stored XSS through the "send email" functionality when sending a file via email to an administrator. When a file has no extension and contains malicious HTML / JavaScript conte… CWE-79
Cross-site Scripting 		CVE-2021-30140 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194106 7.5 HIGH
Network 		phpseclib
debian 		phpseclib
debian_linux 		phpseclib before 2.0.31 and 3.x before 3.0.7 mishandles RSA PKCS#1 v1.5 signature verification. CWE-347
 Improper Verification of Cryptographic Signature 		CVE-2021-30130 2024-11-21 15:03 2021-04-7 Show GitHub Exploit DB Packet Storm
194107 6.5 MEDIUM
Network 		vigra_computer_vision_library_project vigra_computer_vision_library VIGRA Computer Vision Library Version-1-11-1 contains a segmentation fault vulnerability in the impex.hxx read_image_band() function, in which a crafted file can cause a denial of service. CWE-755
 Improper Handling of Exceptional Conditions 		CVE-2021-30046 2024-11-21 15:03 2021-04-6 Show GitHub Exploit DB Packet Storm
194108 9.1 CRITICAL
Network 		serenityos serenityos SerenityOS 2021-03-27 contains a buffer overflow vulnerability in the EndOfCentralDirectory::read() function. CWE-120
Classic Buffer Overflow 		CVE-2021-30045 2024-11-21 15:03 2021-04-6 Show GitHub Exploit DB Packet Storm
194109 9.8 CRITICAL
Network 		redmine
debian 		redmine
debian_linux 		Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to bypass the add_issue_notes permission requirement by leveraging the Issues API. NVD-CWE-noinfo
CVE-2021-30164 2024-11-21 15:03 2021-04-6 Show GitHub Exploit DB Packet Storm
194110 7.5 HIGH
Network 		redmine
debian 		redmine
debian_linux 		Redmine before 4.0.8 and 4.1.x before 4.1.2 allows attackers to discover the names of private projects if issue-journal details exist that have changes to project_id values. NVD-CWE-noinfo
CVE-2021-30163 2024-11-21 15:03 2021-04-6 Show GitHub Exploit DB Packet Storm