Vulnerability Search Top
Show Search Menu
|
You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database). |
JVN Vulnerability Information
Update Date":June 15, 2026, 2 p.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Impact Show |
Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 228531 | 6.8 | 警告 | Verizon | - | Verizon FiOS Actiontec ルータ MI424WR-GEN3I にクロスサイトリクエストフォージェリの脆弱性 |
CWE-352
同一生成元ポリシー違反 |
CVE-2013-0126 | 2013-03-26 10:48 | 2013-03-19 | Show | GitHub Exploit DB Packet Storm |
| 228532 | 4.3 | 警告 | Askia | - | ASKIA askiaweb の管理インターフェイスにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0124 | 2013-03-25 19:10 | 2013-03-20 | Show | GitHub Exploit DB Packet Storm |
| 228533 | 7.5 | 危険 | Askia | - | ASKIA askiaweb の管理インターフェイスにおける SQL インジェクションの脆弱性 |
CWE-89
SQLインジェクション |
CVE-2013-0123 | 2013-03-25 19:09 | 2013-03-20 | Show | GitHub Exploit DB Packet Storm |
| 228534 | 3.5 | 注意 | IBM | - | IBM Tivoli Endpoint Manager の Web レポートにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2013-0453 | 2013-03-25 19:09 | 2013-03-20 | Show | GitHub Exploit DB Packet Storm |
| 228535 | 4.3 | 警告 | IBM | - | IBM Rational ClearQuest の Web クライアントにおけるクロスサイトスクリプティングの脆弱性 |
CWE-79
クロスサイト・スクリプティング(XSS) |
CVE-2012-5757 | 2013-03-25 19:08 | 2013-03-20 | Show | GitHub Exploit DB Packet Storm |
| 228536 | 7.5 | 危険 | CA Technologies | - | 複数の CA SiteMinder 製品における他のユーザを偽装される脆弱性 |
CWE-20
不適切な入力確認 |
CVE-2013-2279 | 2013-03-25 19:07 | 2013-03-19 | Show | GitHub Exploit DB Packet Storm |
| 228537 | 4 | 警告 | シーメンス | - | SIMATIC PCS7 および他の製品で使用される Siemens WinCC におけるディレクトリトラバーサルの脆弱性 |
CWE-22
パス・トラバーサル |
CVE-2013-0679 | 2013-03-25 19:07 | 2013-03-15 | Show | GitHub Exploit DB Packet Storm |
| 228538 | 4 | 警告 | シーメンス | - | SIMATIC PCS7 および他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性 |
CWE-255
証明書・パスワード管理 |
CVE-2013-0678 | 2013-03-25 19:05 | 2013-03-15 | Show | GitHub Exploit DB Packet Storm |
| 228539 | 5.8 | 警告 | シーメンス | - | SIMATIC PCS7 およびその他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性 |
CWE-200
情報漏えい |
CVE-2013-0677 | 2013-03-25 19:04 | 2013-03-15 | Show | GitHub Exploit DB Packet Storm |
| 228540 | 4 | 警告 | シーメンス | - | SIMATIC PCS7 および他の製品で使用される Siemens WinCC における重要な情報を取得される脆弱性 |
CWE-264
認可・権限・アクセス制御 |
CVE-2013-0676 | 2013-03-25 19:03 | 2011-04-29 | Show | GitHub Exploit DB Packet Storm |
NVD Vulnerability Information
Update Date:June 15, 2026, 4:10 a.m.
| No | CVSS | Level Attach Vector |
Vendor Name | Project Name | Title | CWE | CVE | Update Date | Publication Date | Show Affected | Exploit PoC Search |
|---|---|---|---|---|---|---|---|---|---|---|---|
| 194081 | 5.4 |
MEDIUM
Network |
ibm | infosphere_information_server | IBM InfoSphere Information Server 11.7 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality… |
CWE-79
Cross-site Scripting |
CVE-2021-29771 | 2024-11-21 15:01 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 194082 | 5.4 |
MEDIUM
Network |
ibm | infosphere_information_server | IBM InfoSphere Data Flow Designer (IBM InfoSphere Information Server 11.7 ) is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-29738 | 2024-11-21 15:01 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 194083 | 7.5 |
HIGH
Network |
ibm | infosphere_information_server | IBM InfoSphere Data Flow Designer Engine (IBM InfoSphere Information Server 11.7 ) component has improper validation of the REST API server certificate. IBM X-Force ID: 201301. |
CWE-295
Improper Certificate Validation |
CVE-2021-29737 | 2024-11-21 15:01 | 2021-11-3 | Show | GitHub Exploit DB Packet Storm |
| 194084 | 5.5 |
MEDIUM
Local |
ibm | i2_ibase | IBM i2 iBase 8.9.13 and 9.0.0 could allow a local attacker to obtain sensitive information due to insufficient session expiration. IBM X-Force ID: 206213. |
CWE-613
Insufficient Session Expiration |
CVE-2021-29868 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194085 | 6.5 |
MEDIUM
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products stores user credentials in clear text which can be read by an authenticated user. IBM X-Force ID: 203172. |
CWE-312
Cleartext Storage of Sensitive Information |
CVE-2021-29786 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194086 | 7.5 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management rational_collaborative_lifecycle_management engineering_life… |
IBM Jazz Team Server products could allow an authenticated user to obtain elevated privileges under certain configurations. IBM X-Force ID: 203025. |
NVD-CWE-noinfo
|
CVE-2021-29774 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194087 | 5.4 |
MEDIUM
Network |
ibm |
rational_doors_next_generation rational_engineering_lifecycle_manager rational_collaborative_lifecycle_management engineering_lifecycle_optimization rational_team_concert |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29713 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194088 | 8.8 |
HIGH
Network |
ibm |
rational_team_concert rational_doors_next_generation rational_engineering_lifecycle_manager engineering_workflow_management engineering_requirements_quality_assistant_on-premises engin… |
IBM Jazz Team Server products is vulnerable to server-side request forgery (SSRF). This may allow an authenticated attacker to send unauthorized requests from the system, potentially leading to netwo… |
CWE-918
Server-Side Request Forgery (SSRF) |
CVE-2021-29844 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194089 | 5.4 |
MEDIUM
Network |
ibm |
rational_team_concert rational_collaborative_lifecycle_management rational_engineering_lifecycle_manager engineering_workflow_management rational_doors_next_generation engineering_life… |
IBM Jazz Team Server products are vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potenti… |
CWE-79
Cross-site Scripting |
CVE-2021-29673 | 2024-11-21 15:01 | 2021-10-28 | Show | GitHub Exploit DB Packet Storm |
| 194090 | 6.1 |
MEDIUM
Network |
ibm | business_automation_workflow | IBM Business Automation Workflow 18.0, 19.0, 20.0, and 21.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the i… |
CWE-79
Cross-site Scripting |
CVE-2021-29835 | 2024-11-21 15:01 | 2021-10-23 | Show | GitHub Exploit DB Packet Storm |